Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 2101-2125 di 3853 risultati
Pagina 85 di 155

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2023-30589 The llhttp parser in the http module in Node v20.2.0 does not strictly use the CRLF sequence to delimit HTTP requests. This can lead to HTTP Request Smuggling (HRS). The CR character (without LF) is sufficient to delimit HTTP header fields in the llhttp parser. According to RFC7230 section 3 only the CRLF sequence should delimit each header-field. This impacts all Node.js active versions: v16 v18 and v20 18-02-20262101
MSRC Security UpdateCVE-2024-36013 Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect()18-02-20262102
MSRC Security UpdateCVE-2025-68324 scsi: imm: Fix use-after-free bug caused by unfinished delayed work18-02-20262103
MSRC Security UpdateCVE-2025-38149 net: phy: clear phydev->devlink when the link is deleted18-02-20262104
MSRC Security UpdateCVE-2023-3817 Excessive time spent checking DH q parameter value18-02-20262105
MSRC Security UpdateCVE-2024-50036 net: do not delay dst_entries_add() in dst_release()18-02-20262106
MSRC Security UpdateCVE-2024-56626 ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write18-02-20262107
MSRC Security UpdateCVE-2024-50061 i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition18-02-20262108
MSRC Security UpdateCVE-2022-34169 Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets18-02-20262109
MSRC Security UpdateCVE-2025-37992 net_sched: Flush gso_skb list too during ->change()18-02-20262110
MSRC Security UpdateCVE-2023-6546 Kernel: gsm multiplexing race condition leads to privilege escalation18-02-20262111
MSRC Security UpdateCVE-2023-4504 OpenPrinting CUPS/libppd Postscript Parsing Heap Overflow18-02-20262112
MSRC Security UpdateCVE-2024-38541 of: module: add buffer overflow check in of_modalias()18-02-20262113
MSRC Security UpdateCVE-2025-27152 Possible SSRF and Credential Leakage via Absolute URL in axios Requests18-02-20262114
MSRC Security UpdateCVE-2025-38075 scsi: target: iscsi: Fix timeout on deleted connection18-02-20262115
MSRC Security UpdateCVE-2024-6257 HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation18-02-20262116
MSRC Security UpdateCVE-2021-46023 An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash.18-02-20262117
MSRC Security UpdateCVE-2025-38136 usb: renesas_usbhs: Reorder clock handling and power management in probe18-02-20262118
MSRC Security UpdateCVE-2022-46146 Prometheus Exporter Toolkit vulnerable to basic authentication bypass18-02-20262119
MSRC Security UpdateCVE-2025-21981 ice: fix memory leak in aRFS after reset18-02-20262120
MSRC Security UpdateCVE-2024-49883 ext4: aovid use-after-free in ext4_ext_insert_extent()18-02-20262121
MSRC Security UpdateCVE-2023-5115 Ansible: malicious role archive can cause ansible-galaxy to overwrite arbitrary files18-02-20262122
MSRC Security UpdateCVE-2025-37812 usb: cdns3: Fix deadlock when using NCM gadget18-02-20262123
MSRC Security UpdateCVE-2024-34158 Stack exhaustion in Parse in go/build/constraint18-02-20262124
MSRC Security UpdateCVE-2024-53170 block: fix uaf for flush rq while iterating tags18-02-20262125
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter