Lucene search

K

Windows Kernel Security Vulnerabilities

cve
cve

CVE-2023-30446

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253361...

7.5CVSS

7.1AI Score

0.001EPSS

2023-07-10 04:15 PM
23
cve
cve

CVE-2023-30448

IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-07-10 04:15 PM
26
cve
cve

CVE-2023-30447

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-07-10 04:15 PM
22
cve
cve

CVE-2023-30449

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-07-10 04:15 PM
26
cve
cve

CVE-2023-30442

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 federated server is vulnerable to a denial of service as the server may crash when using a specially crafted wrapper using certain options. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-07-10 04:15 PM
108
cve
cve

CVE-2023-30431

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 db2set is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow the buffer and execute arbitrary code. IBM X-Force ID: ...

8.4CVSS

7.7AI Score

0.0004EPSS

2023-07-10 04:15 PM
108
cve
cve

CVE-2023-30445

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-07-10 04:15 PM
29
cve
cve

CVE-2023-27869

IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unchecked logger injection. By sending a specially crafted request using the named traceFile property, an attacker could...

8.8CVSS

8.6AI Score

0.002EPSS

2023-07-10 04:15 PM
24
cve
cve

CVE-2023-29256

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to an information disclosure due to improper privilege management when certain federation features are used. IBM X-Force ID: ...

6.5CVSS

6.1AI Score

0.001EPSS

2023-07-10 04:15 PM
22
cve
cve

CVE-2023-27868

IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unchecked class instantiation when providing plugin classes. By sending a specially crafted request using the named...

8.8CVSS

8.4AI Score

0.002EPSS

2023-07-10 04:15 PM
21
cve
cve

CVE-2023-27867

IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code via JNDI Injection. By sending a specially crafted request using the property clientRerouteServerListJNDIName, an attacker could exploit this...

8.8CVSS

8.4AI Score

0.002EPSS

2023-07-10 04:15 PM
24
cve
cve

CVE-2023-23487

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to insufficient audit logging. IBM X-Force ID: ...

4.3CVSS

4.3AI Score

0.001EPSS

2023-07-10 04:15 PM
25
cve
cve

CVE-2021-42083

An authenticated attacker is able to create alerts that trigger a stored XSS...

8.7CVSS

5.1AI Score

0.001EPSS

2023-07-10 04:15 PM
9
cve
cve

CVE-2023-25523

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the nvdisasm binary file, where an attacker may cause a NULL pointer dereference by providing a user with a malformed ELF file. A successful exploit of this vulnerability may lead to a partial denial of...

3.3CVSS

3.7AI Score

0.0004EPSS

2023-07-04 12:15 AM
8
cve
cve

CVE-2023-32019

Windows Kernel Information Disclosure...

4.7CVSS

5.3AI Score

0.049EPSS

2023-06-14 12:15 AM
125
cve
cve

CVE-2022-35758

Windows Kernel Memory Information Disclosure...

5.5CVSS

5.1AI Score

0.001EPSS

2023-05-31 07:15 PM
58
cve
cve

CVE-2023-20884

VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information...

6.1CVSS

5.9AI Score

0.001EPSS

2023-05-30 04:15 PM
49
cve
cve

CVE-2023-32336

IBM InfoSphere Information Server 11.7 is affected by a remote code execution vulnerability due to insecure deserialization in an RMI service. IBM X-Force ID: ...

9.8CVSS

9.3AI Score

0.006EPSS

2023-05-22 01:15 AM
35
cve
cve

CVE-2023-28529

IBM InfoSphere Information Server 11.7 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: ...

5.5CVSS

5.1AI Score

0.001EPSS

2023-05-19 04:15 PM
21
cve
cve

CVE-2023-28950

IBM MQ 8.0, 9.0, 9.1, 9.2, and 9.3 could disclose sensitive user information from a trace file if that functionality has been enabled. IBM X-Force ID: ...

5.5CVSS

5.1AI Score

0.0004EPSS

2023-05-19 04:15 PM
55
cve
cve

CVE-2023-22878

IBM InfoSphere Information Server 11.7 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: ...

6.2CVSS

5AI Score

0.0004EPSS

2023-05-19 04:15 PM
21
cve
cve

CVE-2022-47984

IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: ...

9.8CVSS

9.2AI Score

0.001EPSS

2023-05-19 04:15 PM
19
cve
cve

CVE-2023-28514

IBM MQ 8.0, 9.0, and 9.1 could allow a local user to obtain sensitive credential information when a detailed technical error message is returned in a stack trace. IBM X-Force ID: ...

6.2CVSS

4.9AI Score

0.0004EPSS

2023-05-19 03:15 PM
41
cve
cve

CVE-2022-45458

Sensitive information disclosure and manipulation due to improper certification validation. The following products are affected: Acronis Agent (Windows, macOS, Linux) before build 29633, Acronis Cyber Protect 15 (Windows, macOS, Linux) before build...

7.5CVSS

7.2AI Score

0.001EPSS

2023-05-18 10:15 AM
10
cve
cve

CVE-2022-45453

TLS/SSL weak cipher suites enabled. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build...

7.5CVSS

7.5AI Score

0.001EPSS

2023-05-18 10:15 AM
8
cve
cve

CVE-2022-45450

Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build 28610, Acronis Cyber Protect 15 (Linux, macOS, Windows) before build...

7.5CVSS

7.2AI Score

0.001EPSS

2023-05-18 10:15 AM
11
cve
cve

CVE-2023-24949

Windows Kernel Elevation of Privilege...

7.8CVSS

8.4AI Score

0.001EPSS

2023-05-09 06:15 PM
138
cve
cve

CVE-2022-3405

Code execution and sensitive information disclosure due to excessive privileges assigned to Acronis Agent. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build...

8.8CVSS

8.2AI Score

0.001EPSS

2023-05-03 11:15 AM
22
cve
cve

CVE-2022-30995

Sensitive information disclosure due to improper authentication. The following products are affected: Acronis Cyber Protect 15 (Windows, Linux) before build 29486, Acronis Cyber Backup 12.5 (Windows, Linux) before build...

7.5CVSS

7.2AI Score

0.001EPSS

2023-05-03 11:15 AM
12
cve
cve

CVE-2023-26021

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service as the server may crash when compiling a specially crafted SQL query using a LIMIT clause. IBM X-Force ID: ...

7.5CVSS

7.3AI Score

0.001EPSS

2023-04-28 07:15 PM
51
cve
cve

CVE-2023-26022

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as the server may crash when an Out of Memory occurs using the DBMS_OUTPUT module. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-04-28 07:15 PM
45
cve
cve

CVE-2023-25930

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.1, 11.1, and 11.5 is vulnerable to a denial of service. Under rare conditions, setting a special register may cause the Db2 server to terminate abnormally. IBM X-Force ID: ...

5.9CVSS

5.4AI Score

0.001EPSS

2023-04-28 06:15 PM
59
cve
cve

CVE-2023-27555

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 is vulnerable to a denial of service when attempting to use ACR client affinity for unfenced DRDA federation wrappers. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-04-28 06:15 PM
43
cve
cve

CVE-2023-29255

IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as it may trap when compiling a variation of an anonymous block. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-04-27 01:15 PM
46
cve
cve

CVE-2022-45456

Denial of service due to unauthenticated API endpoint. The following products are affected: Acronis Agent (Windows, macOS, Linux) before build...

7.5CVSS

7.5AI Score

0.001EPSS

2023-04-26 08:15 PM
17
cve
cve

CVE-2023-27559

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash when using a specially crafted subquery. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-04-26 08:15 PM
101
cve
cve

CVE-2023-29257

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to remote code execution as a database administrator of one database may execute code or read/write files from another database within the same instance. IBM X-Force ID: ...

7.2CVSS

7.1AI Score

0.003EPSS

2023-04-26 01:15 PM
58
cve
cve

CVE-2023-25511

NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in cuobjdump, where a division-by-zero error may enable a user to cause a crash, which may lead to a limited denial of...

3.3CVSS

4.1AI Score

0.0004EPSS

2023-04-22 03:15 AM
26
cve
cve

CVE-2023-25513

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds read by tricking a user into running cuobjdump on a malformed input file. A successful exploit of this vulnerability may lead to limited denial of service, code execution,.....

6.6CVSS

6.3AI Score

0.0005EPSS

2023-04-22 03:15 AM
26
cve
cve

CVE-2023-25512

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds memory read by running cuobjdump on a malformed input file. A successful exploit of this vulnerability may lead to limited denial of service, code execution, and limited...

6.6CVSS

6.3AI Score

0.0005EPSS

2023-04-22 03:15 AM
22
cve
cve

CVE-2023-25510

NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump, where a local user running the tool against a malformed binary may cause a limited denial of...

3.3CVSS

4.1AI Score

0.0004EPSS

2023-04-22 03:15 AM
25
cve
cve

CVE-2023-25514

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in cuobjdump, where an attacker may cause an out-of-bounds read by tricking a user into running cuobjdump on a malformed input file. A successful exploit of this vulnerability may lead to limited denial of service, code execution,.....

6.6CVSS

6.3AI Score

0.0005EPSS

2023-04-22 03:15 AM
26
cve
cve

CVE-2023-28298

Windows Kernel Denial of Service...

5.5CVSS

6.1AI Score

0.0004EPSS

2023-04-11 09:15 PM
73
cve
cve

CVE-2023-28293

Windows Kernel Elevation of Privilege...

7.8CVSS

7.5AI Score

0.001EPSS

2023-04-11 09:15 PM
180
cve
cve

CVE-2023-28272

Windows Kernel Elevation of Privilege...

7.8CVSS

7.9AI Score

0.0004EPSS

2023-04-11 09:15 PM
53
cve
cve

CVE-2023-28271

Windows Kernel Memory Information Disclosure...

5.5CVSS

5.9AI Score

0.0004EPSS

2023-04-11 09:15 PM
64
2
cve
cve

CVE-2023-28253

Windows Kernel Information Disclosure...

5.5CVSS

5.9AI Score

0.0004EPSS

2023-04-11 09:15 PM
95
2
cve
cve

CVE-2023-28237

Windows Kernel Remote Code Execution...

7.8CVSS

8.2AI Score

0.001EPSS

2023-04-11 09:15 PM
70
cve
cve

CVE-2023-28248

Windows Kernel Elevation of Privilege...

7.8CVSS

7.9AI Score

0.0004EPSS

2023-04-11 09:15 PM
73
cve
cve

CVE-2023-28236

Windows Kernel Elevation of Privilege...

7.8CVSS

7.9AI Score

0.0004EPSS

2023-04-11 09:15 PM
72
Total number of security vulnerabilities2875