2025-08-02 Daily Vulns
NEW:
| CVE | vendor-product | description | metric | Referenceurl | title | GithubURL | |
|---|---|---|---|---|---|---|---|
| CVE-2023-32256 | undefined - undefinedRed Hat - Red Hat Enterprise Linux 10Red Hat - Red Hat Enterprise Linux 6Red Hat - Red Hat Enterprise Linux 7Red Hat - Red Hat Enterprise Linux 7Red Hat - Red Hat Enterprise Linux 8Red Hat - Red Hat Enterprise Linux 8Red Hat - Red Hat Enterprise Linux 9Red Hat - Red Hat Enterprise Linux 9 | A flaw was found in the Linux kernel’s ksmbd component. A race condition between smb2 close operation and logoff in multichannel connections could result in a use-after-free issue. | CVSS3.1: 7.5 - HIGH | 0 1 2 3 | Exploitation: noneAutomatable: noTechnical Impact: partial | Kernel: ksmbd race issue from smb2 close and logoff with multichannel | github |
| CVE-2023-44976 | Hangzhou Shunwang - Rentdrv2 | Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023. | CVSS3.1: 3.2 - LOW | 0 1 | Exploitation: pocAutomatable: noTechnical Impact: partial | undefined | github |
| CVE-2019-19145 | Quantum - SuperLoader | Quantum SuperLoader 3 V94.0 005E.0h devices allow attackers to access the hardcoded fa account because there are only 65536 possible passwords. | CVSS3.1: 5.8 - MEDIUM | 0 1 2 | Exploitation: noneAutomatable: noTechnical Impact: partial | undefined | github |
| CVE-2025-6398 | ASUS - AI Suite | A null pointer dereference vulnerability exists in the IOMap64.sys driver of ASUS AI Suite 3. The vulnerability can be triggered by a specially crafted input, which may lead to a system crash (BSOD). Refer to the ‘ Security Update for for AI Suite 3 ‘ section on the ASUS Security Advisory for more information. | CVSS4.0: 6.7 - MEDIUM | 0 | Exploitation: noneAutomatable: noTechnical Impact: partial | undefined | github |
This post is licensed under CC BY 4.0 by the author.