Lucene search
K

183 matches found

Tenable Nessus
Tenable Nessus
added 2022/09/23 12:0 a.m.53 views

ESXi 6.5 / 6.7 / 7.0 Heap Overflow RCE (VMSA-2022-0001)

The remote VMware ESXi host is version 6.5, 6.7 or 7.0 and is affected by a heap overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able to exploit this vulnerability in conjunction with other issues to execute...

7.8CVSS7.5AI score0.04681EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-3822-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.3AI score0.00552EPSS
Exploits0References2
OSV
OSV
added 2022/06/28 8:27 a.m.28 views

RLSA-2022:5252 Moderate: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

6.5CVSS6.6AI score0.01877EPSS
Exploits1References2
NVD
NVD
added 2022/06/08 4:15 p.m.20 views

CVE-2022-28385

An issue was discovered in certain Verbatim drives through 2022-03-31. Due to missing integrity checks, an attacker can manipulate the content of the emulated CD-ROM drive containing the Windows and macOS client software. The content of this emulated CD-ROM drive is stored as an ISO-9660 image in...

4.6CVSS0.00316EPSS
Exploits1References6
Prion
Prion
added 2022/06/08 4:15 p.m.27 views

Input validation

An issue was discovered in certain Verbatim drives through 2022-03-31. Due to missing integrity checks, an attacker can manipulate the content of the emulated CD-ROM drive containing the Windows and macOS client software. The content of this emulated CD-ROM drive is stored as an ISO-9660 image in...

2.1CVSS4.6AI score0.00316EPSS
Exploits1References6Affected Software2
CVE
CVE
added 2022/06/08 3:39 p.m.67 views

CVE-2022-28385

Affected products: Verbatim Executive Fingerprint Secure SSD GDMSFE01-INI3637-C VER1.1 and Fingerprint Secure Portable Hard Drive (Part Number #53650). Root cause: missing integrity checks allow manipulation of the ISO-9660 image stored in hidden USB drive sectors that backs the emulated CD-ROM c...

4.6CVSS4.5AI score0.00316EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2022/06/08 3:39 p.m.23 views

CVE-2022-28385

An issue was discovered in certain Verbatim drives through 2022-03-31. Due to missing integrity checks, an attacker can manipulate the content of the emulated CD-ROM drive containing the Windows and macOS client software. The content of this emulated CD-ROM drive is stored as an ISO-9660 image in...

4.9AI score0.00316EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/06/08 12:0 a.m.6 views

Verbatim Keypad Secure USB Drive 数据伪造问题漏洞

The Verbatim Keypad Secure USB Drive is a hardware encrypted USB flash drive from Verbatim, a Chinese company. A security vulnerability in the Verbatim Keypad Secure USB Drive, which stems from a lack of integrity checking, can be exploited by an attacker to store and execute malware on an emulat...

4.6CVSS5.3AI score0.00316EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2022/03/15 10:25 a.m.53 views

Moderate: Red Hat Security Advisory: libarchive security update

An update for libarchive is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS6.6AI score0.00367EPSS
Exploits0References3
OSV
OSV
added 2022/03/15 9:11 a.m.54 views

ALSA-2022:0892 Moderate: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

7.8CVSS7.8AI score0.00367EPSS
Exploits0References3
CNVD
CNVD
added 2022/03/10 12:0 a.m.30 views

MIcrosoft Windows CD-ROM Driver Elevation of Privilege Vulnerability

Microsoft Windows is a CD-ROM driver from Microsoft Corporation, and an elevation of privilege vulnerability exists in the Microsoft Windows CD-ROM Driver, which could be exploited by attackers to execute arbitrary code with elevated privileges...

7.8CVSS7.2AI score0.00895EPSS
Exploits0References1
OSV
OSV
added 2022/03/09 5:15 p.m.3 views

CVE-2022-24455

Windows CD-ROM Driver Elevation of Privilege Vulnerability...

7.8CVSS7.3AI score0.00895EPSS
Exploits0References1
NVD
NVD
added 2022/03/09 5:15 p.m.22 views

CVE-2022-24455

Windows CD-ROM Driver Elevation of Privilege Vulnerability...

7.8CVSS0.00895EPSS
Exploits0References1
Prion
Prion
added 2022/03/09 5:15 p.m.24 views

Privilege escalation

Windows CD-ROM Driver Elevation of Privilege Vulnerability...

7.2CVSS7.6AI score0.00895EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2022/03/09 5:7 p.m.45 views

CVE-2022-24455 Windows CD-ROM Driver Elevation of Privilege Vulnerability

...

7.8CVSS8.3AI score0.00895EPSS
Exploits0References1
CVE
CVE
added 2022/03/09 5:7 p.m.235 views

CVE-2022-24455

CVE-2022-24455 affects the Microsoft Windows CD-ROM Driver. The vulnerability is an Elevation of Privilege in the CD-ROM driver that could allow an attacker to execute arbitrary code with elevated privileges on Windows systems. The CNVD entry corroborates a Windows CD-ROM Driver EoP and notes pot...

7.8CVSS8.1AI score0.00895EPSS
Exploits0References1Affected Software6
Zero Day Initiative
Zero Day Initiative
added 2022/03/09 12:0 a.m.39 views

Microsoft Windows CD-ROM Driver Uninitialized Pointer Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CD-ROM drive...

7.8CVSS7.8AI score0.00895EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/03/09 12:0 a.m.48 views

Microsoft Windows CD-ROM Driver Uninitialized Pointer Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CD-ROM drive...

7.8CVSS7.8AI score0.00895EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/03/09 12:0 a.m.24 views

Microsoft Windows Multiple Vulnerabilities (KB5011485)

This host is missing an important security update according to Microsoft KB5011485 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9CVSS7AI score0.56376EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2022/03/08 8:0 a.m.323 views

Windows CD-ROM Driver Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.00895EPSS
Exploits0
Rows per page
Query Builder