Aggregator

CVE-2025-40087 | Linux Kernel up to 6.18-rc1 NFSD proc_layoutcommit denial of service (Nessus ID 272051 / WID-SEC-2025-2450)

Vuldb Updates
8 hours 41 minutes ago
A vulnerability was found in Linux Kernel up to 6.18-rc1. It has been declared as critical. The impacted element is the function proc_layoutcommit of the component NFSD. The manipulation results in denial of service. This vulnerability is identified as CVE-2025-40087. The attack can only be performed from the local network. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-40086 | Linux Kernel up to 6.17.4/6.18-rc1 allow_res_evict null pointer dereference (Nessus ID 272065 / WID-SEC-2025-2450)

Vuldb Updates
8 hours 41 minutes ago
A vulnerability identified as critical has been detected in Linux Kernel up to 6.17.4/6.18-rc1. Affected is the function allow_res_evict. Performing a manipulation results in null pointer dereference. This vulnerability is cataloged as CVE-2025-40086. The attack must originate from the local network. There is no exploit available. You should upgrade the affected component.
vuldb.com

CVE-2025-40081 | Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2 perf PERF_IDX2OFF buffer overflow (Nessus ID 271896 / WID-SEC-2025-2431)

Vuldb Updates
8 hours 41 minutes ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected by this vulnerability is the function PERF_IDX2OFF of the component perf. The manipulation leads to buffer overflow. This vulnerability is referenced as CVE-2025-40081. The attack needs to be initiated within the local network. No exploit is available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-40082 | Linux Kernel up to 6.17.2 hfsplus_uni2asc out-of-bounds (Nessus ID 271867 / WID-SEC-2025-2431)

Vuldb Updates
8 hours 41 minutes ago
A vulnerability described as critical has been identified in Linux Kernel up to 6.17.2. Impacted is the function hfsplus_uni2asc. The manipulation results in out-of-bounds read. This vulnerability was named CVE-2025-40082. The attack needs to be approached within the local network. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-40078 | Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2 bpf_sock_addr privilege escalation (Nessus ID 271870 / WID-SEC-2025-2431)

Vuldb Updates
8 hours 41 minutes ago
A vulnerability classified as critical was found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected is the function bpf_sock_addr. Executing a manipulation can lead to privilege escalation. The identification of this vulnerability is CVE-2025-40078. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-40080 | Linux Kernel up to 6.1.155/6.6.111/6.12.52/6.17.2 nbd shutdown privilege escalation (Nessus ID 271869 / WID-SEC-2025-2431)

Vuldb Updates
8 hours 41 minutes ago
A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.1.155/6.6.111/6.12.52/6.17.2. Affected by this issue is the function shutdown of the component nbd. Such manipulation leads to privilege escalation. This vulnerability is traded as CVE-2025-40080. Access to the local network is required for this attack to succeed. There is no exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-40079 | Linux Kernel up to 6.12.52/6.17.2 bpf ns_bpf_qdisc return value (Nessus ID 271906 / WID-SEC-2025-2431)

Vuldb Updates
8 hours 41 minutes ago
A vulnerability was found in Linux Kernel up to 6.12.52/6.17.2. It has been rated as critical. This affects the function ns_bpf_qdisc of the component bpf. The manipulation leads to unchecked return value. This vulnerability is traded as CVE-2025-40079. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

INC

Dark Feed IO
8 hours 42 minutes ago

You must login to view this content

cohenido

Can businesses truly trust Agentic AI with sensitive data handling?

Security Boulevard
8 hours 50 minutes ago

How Can Non-Human Identities Shape Data Security? Have you ever wondered how organizations manage to keep their sensitive data secure in rising cybersecurity threats? With digital expanding rapidly, handling sensitive data securely has never been more crucial. One key player is the management of Non-Human Identities (NHIs), especially in cloud environments. Cybersecurity experts have long […]

The post Can businesses truly trust Agentic AI with sensitive data handling? appeared first on Entro.

The post Can businesses truly trust Agentic AI with sensitive data handling? appeared first on Security Boulevard.

Alison Mack

How are NHIs ensuring protected data exchanges in financial services?

Security Boulevard
8 hours 50 minutes ago

Are Machine Identities the Missing Link in Financial Services Security? What role do machine identities, often referred to as Non-Human Identities (NHIs), play in ensuring the robustness of protected data exchanges? Where digital transformation is both a boon and a challenge, machine identities have become pivotal for a seamless yet secure operation across various sectors, […]

The post How are NHIs ensuring protected data exchanges in financial services? appeared first on Entro.

The post How are NHIs ensuring protected data exchanges in financial services? appeared first on Security Boulevard.

Alison Mack

What makes an Agentic AI system safe for medical records management?

Security Boulevard
8 hours 50 minutes ago

How Are Non-Human Identities Transforming Cybersecurity in Healthcare? What happens when machine identities outstrip human ones in a healthcare setting? The proliferation of Non-Human Identities (NHIs) in cybersecurity is reshaping how we think about securing medical records. While these machine identities—secure passports if you will—navigate our digital environments, they reveal both vulnerabilities and opportunities. Understanding […]

The post What makes an Agentic AI system safe for medical records management? appeared first on Entro.

The post What makes an Agentic AI system safe for medical records management? appeared first on Security Boulevard.

Alison Mack

How satisfied are companies after integrating NHIs in compliance frameworks?

Security Boulevard
8 hours 50 minutes ago

The Role of NHIs in Compliance Frameworks: What Do Companies Think? Are organizations truly satisfied with integrating Non-Human Identities (NHIs) into their compliance frameworks? The conversation around machine identities and their management in cybersecurity is gaining momentum, especially given the rapid shift to cloud environments. Companies across sectors like finance, healthcare, and travel are keen […]

The post How satisfied are companies after integrating NHIs in compliance frameworks? appeared first on Entro.

The post How satisfied are companies after integrating NHIs in compliance frameworks? appeared first on Security Boulevard.

Alison Mack

CVE-2025-13781 | GitLab Enterprise Edition up to 18.5.4/18.6.2/18.7.0 AI Feature Provider Setting authorization (Issue 578756 / EUVD-2026-1767)

Vuldb Updates
8 hours 52 minutes ago
A vulnerability was found in GitLab Enterprise Edition up to 18.5.4/18.6.2/18.7.0 and classified as problematic. This affects an unknown function of the component AI Feature Provider Setting Handler. The manipulation results in missing authorization. This vulnerability is known as CVE-2025-13781. It is possible to launch the attack remotely. No exploit is available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-25924 | Kanboard up to 1.2.49 Plugin Installation Interface authorization (GHSA-grch-p7vf-vc4f / Nessus ID 298891)

Vuldb Updates
8 hours 52 minutes ago
A vulnerability was found in Kanboard up to 1.2.49. It has been declared as critical. This impacts an unknown function of the component Plugin Installation Interface. Such manipulation leads to incorrect authorization. This vulnerability is documented as CVE-2026-25924. The attack can be executed remotely. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-68322 | Linux Kernel up to 6.12.57/6.17.7 parisc unwind_once recursion (Nessus ID 298897)

Vuldb Updates
8 hours 53 minutes ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.12.57/6.17.7. Affected by this vulnerability is the function unwind_once of the component parisc. Such manipulation leads to uncontrolled recursion. This vulnerability is uniquely identified as CVE-2025-68322. The attack can only be initiated within the local network. No exploit exists. You should upgrade the affected component.
vuldb.com

CVE-2025-68319 | Linux Kernel up to 6.17.7 netconsole update_userdata state issue (Nessus ID 298897)

Vuldb Updates
8 hours 53 minutes ago
A vulnerability has been found in Linux Kernel up to 6.17.7 and classified as critical. Affected by this issue is the function update_userdata of the component netconsole. Performing a manipulation results in state issue. This vulnerability was named CVE-2025-68319. The attack needs to be approached within the local network. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2025-68318 | Linux Kernel up to 6.17.7 clk privilege escalation (Nessus ID 298897)

Vuldb Updates
8 hours 53 minutes ago
A vulnerability was found in Linux Kernel up to 6.17.7. It has been declared as critical. The impacted element is an unknown function of the component clk. Such manipulation leads to privilege escalation. This vulnerability is referenced as CVE-2025-68318. The attack needs to be initiated within the local network. No exploit is available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-68315 | Linux Kernel up to 6.12.57/6.17.7 f2fs f2fs_alloc_nid denial of service (EUVD-2025-203754 / Nessus ID 298897)

Vuldb Updates
8 hours 53 minutes ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.12.57/6.17.7. This vulnerability affects the function f2fs_alloc_nid of the component f2fs. Executing a manipulation can lead to denial of service. This vulnerability is handled as CVE-2025-68315. The attack can only be done within the local network. There is not any exploit available. You should upgrade the affected component.
vuldb.com

Managed ad