"vendor:linux" CVE Search Results | CoreDepth Security Research

Advanced Filters

CVE Vulnerabilities for "vendor:linux"

Showing 1-10 of 12,748 CVEs (filtered from 316,443 total)

CVE-2025-36128

IBM MQ 9.1, 9.2, 9.3, 9.4 LTS and 9.3, 9.4 CD is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting slowloris-type attacks, a remote attacker could exploit this vulnerability to cause a denial of service.

HIGH 7.5

EPSS 0.1%

10/16/2025

2025

CVE-2025-36002

IBM Sterling B2B Integrator 6.2.0.0 through 6.2.0.5, and 6.2.1.0 and IBM Sterling File Gateway 6.2.0.0 through 6.2.0.5, and 6.2.1.0 stores user credentials in configuration files which can be read by a local user.

MEDIUM 5.5

EPSS 0.0%

10/16/2025

2025

CVE-2025-55248

Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network.

MEDIUM 4.8

EPSS 0.0%

10/14/2025

2025

CVE-2025-55247

Improper link resolution before file access ('link following') in .NET allows an authorized attacker to elevate privileges locally.

HIGH 7.3

EPSS 0.0%

10/14/2025

2025

CVE-2025-27906

IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to a user; however, the contents of the files cannot be read obtained or modified.

MEDIUM 5.3

EPSS 0.0%

10/14/2025

2025

CVE-2025-33096

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by uploading specially crafted files using uncontrolled recursion.

MEDIUM 6.5

EPSS 0.0%

10/12/2025

2025

CVE-2025-2140

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to spoof email identity of the sender due to improper verification of source data.

MEDIUM 5.7

EPSS 0.0%

10/12/2025

2025

CVE-2025-2139

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete reviews from other users due to client-side enforcement of server-side security.

LOW 3.5

EPSS 0.0%

10/12/2025

2025

CVE-2025-2138

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete comments from other users due to client-side enforcement of server-side security.

LOW 3.5

EPSS 0.0%

10/12/2025

2025

CVE-2025-36225

IBM Aspera 5.0.0 through 5.0.13.1 could disclose sensitive user information from the system to an authenticated user due to an observable discrepancy of returned data.

MEDIUM 4.3

EPSS 0.0%

10/9/2025

2025

	Description				Year
CVE-2025-36128	IBM MQ 9.1, 9.2, 9.3, 9.4 LTS and 9.3, 9.4 CD is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting slowloris-type attacks, a remote attacker could exploit this vulnerability to cause a denial of service. IBM MQ 9.1, 9.2, 9.3, 9.4 LTS and 9.3, 9.4 CD is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read o... 7.50	7.5HIGH	0.1%Minimal	-	2025
CVE-2025-36002	IBM Sterling B2B Integrator 6.2.0.0 through 6.2.0.5, and 6.2.1.0 and IBM Sterling File Gateway 6.2.0.0 through 6.2.0.5, and 6.2.1.0 stores user credentials in configuration files which can be read by a local user. IBM Sterling B2B Integrator 6.2.0.0 through 6.2.0.5, and 6.2.1.0 and IBM Sterling File Gateway 6.2.0.0 through 6.2.0.5, and 6.2.1.0 stores user creden... 5.50	5.5MEDIUM	0.0%Minimal	-	2025
CVE-2025-55248	Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network. Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network. 4.80	4.8MEDIUM	0.0%Minimal	-	2025
CVE-2025-55247	Improper link resolution before file access ('link following') in .NET allows an authorized attacker to elevate privileges locally. Improper link resolution before file access ('link following') in .NET allows an authorized attacker to elevate privileges locally. 7.30	7.3HIGH	0.0%Minimal	-	2025
CVE-2025-27906	IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to a user; however, the contents of the files cannot be read obtained or modified. IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Applicatio... 5.30	5.3MEDIUM	0.0%Minimal	-	2025
CVE-2025-33096	IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by uploading specially crafted files using uncontrolled recursion. IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by uploading s... 6.50	6.5MEDIUM	0.0%Minimal	-	2025
CVE-2025-2140	IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to spoof email identity of the sender due to improper verification of source data. IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to spoof email identity of t... 5.70	5.7MEDIUM	0.0%Minimal	-	2025
CVE-2025-2139	IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete reviews from other users due to client-side enforcement of server-side security. IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete reviews from other... 3.50	3.5LOW	0.0%Minimal	-	2025
CVE-2025-2138	IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete comments from other users due to client-side enforcement of server-side security. IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete comments from ot... 3.50	3.5LOW	0.0%Minimal	-	2025
CVE-2025-36225	IBM Aspera 5.0.0 through 5.0.13.1 could disclose sensitive user information from the system to an authenticated user due to an observable discrepancy of returned data. IBM Aspera 5.0.0 through 5.0.13.1 could disclose sensitive user information from the system to an authenticated user due to an observable discrepanc... 4.30	4.3MEDIUM	0.0%Minimal	-	2025

Page 1 of 2