Poster - CVE CyberSecurity Database News (Page 247)

Feb 10, 2025 API Exploit

CVE-2025-25186 - Denial of Service in Ruby net-imap via Malicious `uid-set` Ranges

A new vulnerability has been identified in net-imap, the Ruby library that provides IMAP client support. Labeled as CVE-2025-25186, this flaw allows a denial of

Feb 10, 2025 Microsoft Exploit

CVE-2025-21690 - Linux Kernel SCSI Storvsc Log Flood Leads to VM Denial of Service

CVE-2025-21690 uncovers a vulnerability in the Linux kernel's SCSI storvsc driver used in Hyper-V virtual machines. When the underlying hypervisor produces persistent errors,

Feb 10, 2025 Exploit

CVE-2025-21692 - Out-of-Bounds ETS Class Indexing in Linux Kernel Can Lead to Local Privilege Escalation

A serious vulnerability tracked as CVE-2025-21692 was discovered in the Linux kernel’s network scheduler subsystem, specifically in the ETS (Enhanced Transmission Selection) queuing discipline.

Feb 10, 2025 Exploit

CVE-2025-21687 - Linux Kernel vfio/platform Out-of-bounds Read/Write via Unchecked User Input (Explained & Exploited)

A new flaw, CVE-2025-21687, was found and fixed in the Linux kernel's vfio/platform subsystem. This weakness could allow local attackers to read

Feb 10, 2025

CVE-2025-21689 - Null Pointer Dereference Fixed in Linux Kernel's USB Serial Driver (quatech2)

Published: June 2024 Affected Component: Linux Kernel drivers/usb/serial/quatech2.c Vulnerability Type: Null Pointer Dereference (null-ptr-deref) Fixed in: Linux kernel mainline as of