Ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 1351-1375 di 3799 risultati

Pagina 55 di 152

Avvisi di Sicurezza

CERT	Alert	Data	#
MSRC Security Update	CVE-2026-28417 Vim has OS Command Injection in netrw	10-03-2026	1351
MSRC Security Update	CVE-2026-28364 In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock() function, which performs unbounded memcpy() operations using attacker-controlled lengths from crafted Marshal data.	08-03-2026	1352
MSRC Security Update	CVE-2026-22701 filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock	07-03-2026	1353
MSRC Security Update	CVE-2025-68146 filelock has TOCTOU race condition that allows symlink attacks during lock file creation	07-03-2026	1354
MSRC Security Update	CVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure Vulnerability	06-03-2026	1355
MSRC Security Update	CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability	06-03-2026	1356
MSRC Security Update	CVE-2026-26124 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability	06-03-2026	1357
MSRC Security Update	CVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure Vulnerability	06-03-2026	1358
MSRC Security Update	CVE-2026-23865 An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2.	06-03-2026	1359
MSRC Security Update	CVE-2026-3336 PKCS7_verify Certificate Chain Validation Bypass in AWS-LC	06-03-2026	1360
MSRC Security Update	CVE-2026-3338 PKCS7_verify Signature Validation Bypass in AWS-LC	06-03-2026	1361
MSRC Security Update	CVE-2026-24821 A heap-based buffer over-read that might affect a system that compiles untrusted Lua code in turanszkij/WickedEngine.	06-03-2026	1362
MSRC Security Update	CVE-2026-23238 romfs: check sb_set_blocksize() return value	06-03-2026	1363
MSRC Security Update	CVE-2026-23237 platform/x86: classmate-laptop: Add missing NULL pointer checks	06-03-2026	1364
MSRC Security Update	CVE-2026-23235 f2fs: fix out-of-bounds access in sysfs attribute read/write	06-03-2026	1365
MSRC Security Update	CVE-2026-23234 f2fs: fix to avoid UAF in f2fs_write_end_io()	06-03-2026	1366
Center of Internet Security	A Vulnerability in pac4j-jwt (JwtAuthenticator) Could Allow for Authentication Bypass	05-03-2026	1367
Center of Internet Security	Multiple Vulnerabilities in Cisco Products Could Allow for Remote Code Execution	05-03-2026	1368
MSRC Security Update	CVE-2026-21536 Microsoft Devices Pricing Program Remote Code Execution Vulnerability	05-03-2026	1369
MSRC Security Update	CVE-2026-26125 Payment Orchestrator Service Elevation of Privilege Vulnerability	05-03-2026	1370
MSRC Security Update	CVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure Vulnerability	05-03-2026	1371
MSRC Security Update	CVE-2026-26124 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability	05-03-2026	1372
MSRC Security Update	CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability	05-03-2026	1373
MSRC Security Update	CVE-2024-42317 mm/huge_memory: avoid PMD-size page cache if needed	05-03-2026	1374
MSRC Security Update	CVE-2024-24856 NULL pointer deference in acpi_db_convert_to_package of Linux acpi module	05-03-2026	1375