Insufficient bounds checking in the ASP (AMD Secure Processor) may allow an attacker to access memory outside the bounds of what is permissible to a TA (Trusted Application) resulting in a potential denial of...
5.5CVSS
5.9AI Score
0.0004EPSS
Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code...
9.8CVSS
9.2AI Score
0.013EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
6.1CVSS
5.6AI Score
0.0004EPSS
8.8CVSS
8.8AI Score
0.001EPSS
6.1CVSS
5.5AI Score
0.0004EPSS
6.1CVSS
5.5AI Score
0.0004EPSS
6.1CVSS
5.5AI Score
0.0004EPSS
Information Disclosure in Qualcomm IPC while reading values from shared memory in...
6.1CVSS
5.3AI Score
0.0004EPSS
7.8CVSS
7.6AI Score
0.0004EPSS
Memory Corruption in Core due to secure memory access by user while loading modem...
8.4CVSS
7.5AI Score
0.0004EPSS
6.1CVSS
5.3AI Score
0.0004EPSS
9.8CVSS
9.3AI Score
0.001EPSS
8.2CVSS
7.7AI Score
0.0004EPSS
browserify-sign is a package to duplicate the functionality of node's crypto public key functions, much of this is based on Fedor Indutny's work on indutny/tls.js. An upper bound check issue in dsaVerify function allows an attacker to construct signatures that can be successfully verified by any...
7.5CVSS
6.8AI Score
0.001EPSS
7.1AI Score
7.4AI Score
TEM Opera Plus FM Family Transmitter 35.45 XSRF
Title: TEM Opera Plus FM Family Transmitter 35.45 XSRF Advisory ID: ZSL-2023-5800 Type: Local/Remote Impact: Cross-Site Scripting Risk: (4/5) Release Date: 25.10.2023 Summary This new line of Opera plus FM Transmitters combines very high efficiency, high reliability and low energy consumption in...
6.7AI Score
Rockwell Automation Stratix 5800 & 5200 Cisco IOS XE Web UI Privilege Escalation (CVE-2023-20198)
This vulnerability in the Web UI feature of Cisco IOS XE Software allows a remote, unauthenticated threat actor to create an account on a vulnerable system with privilege level 15 access. The threat actor could then potentially use that account to gain control of the affected system. This plugin...
10CVSS
8.8AI Score
0.915EPSS
Ubuntu 16.04 LTS : Firefox vulnerabilities (USN-4278-2)
The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4278-2 advisory. A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This...
8.8CVSS
7.6AI Score
0.013EPSS
An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code...
7.8CVSS
7.6AI Score
0.0004EPSS
Exploit for OS Command Injection in Paloaltonetworks Prisma Access
CVE-2021-3060 POC/ Exploit Description: An OS command...
8.1CVSS
8.5AI Score
0.005EPSS
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via...
6.1CVSS
6.2AI Score
0.0004EPSS
Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available...
7.8CVSS
7.8AI Score
0.0004EPSS
8.2CVSS
7.3AI Score
0.001EPSS
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted...
7.8CVSS
7.5AI Score
0.0004EPSS
8.4CVSS
7.6AI Score
0.0004EPSS
Memory corruption in Modem while processing security related configuration before AS Security...
9.8CVSS
8.4AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
7.5CVSS
7.5AI Score
0.0005EPSS
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line...
8.2CVSS
7.3AI Score
0.001EPSS
Memory Corruption in Core while invoking a call to Access Control core library with hardware protected address...
8.4CVSS
7.5AI Score
0.0004EPSS
9.8CVSS
9.3AI Score
0.001EPSS
8.7CVSS
7.5AI Score
0.0004EPSS
Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local...
5.5CVSS
5AI Score
0.0004EPSS
Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local...
4.4CVSS
4.5AI Score
0.0004EPSS
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2023-12800)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12800 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...
5.5CVSS
6AI Score
0.0004EPSS
Unbreakable Enterprise kernel security update
[4.1.12-124.78.4.1] - rds: Fix lack of reentrancy for connection reset with dst addr zero (Haakon Bugge) [Orabug: 35741584] ...
5.5CVSS
6.5AI Score
0.0004EPSS
Information Disclosure Vulnerability on some Huawei Products (huawei-sa-20200715-03-informationleak)
There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get...
3.3CVSS
3.8AI Score
0.0004EPSS
Oracle Linux 8 : firefox (ELSA-2020-0512)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0512 advisory. A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This...
8.8CVSS
7.3AI Score
0.013EPSS
Oracle Linux 6 : thunderbird (ELSA-2020-0574)
The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0574 advisory. Mozilla developers and community members reported memory safety bugs present in Firefox 72 and Firefox ESR 68.4. Some of these bugs showed...
8.8CVSS
7.4AI Score
0.013EPSS
Oracle Linux 6 : firefox (ELSA-2020-0521)
The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0521 advisory. A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This...
8.8CVSS
7.3AI Score
0.013EPSS
Oracle Linux 8 : thunderbird (ELSA-2020-0577)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0577 advisory. Mozilla developers and community members reported memory safety bugs present in Firefox 72 and Firefox ESR 68.4. Some of these bugs showed...
8.8CVSS
7.4AI Score
0.013EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon...
7.5CVSS
7.5AI Score
0.0005EPSS
8.4CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
9.8CVSS
9.5AI Score
0.001EPSS
7.8CVSS
7.9AI Score
0.0004EPSS