Lucene search
K

169 matches found

OSV
OSV
added 2024/06/14 3:39 p.m.15 views

USN-6821-4 linux-azure, linux-azure-fde vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the Atheros 802.11ac...

9.1CVSS6.7AI score0.01635EPSS
Exploits0References152
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.67 views

Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6821-4)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6821-4 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

9.1CVSS7.5AI score0.01635EPSS
Exploits0References152
OSV
OSV
added 2024/06/12 3:51 p.m.14 views

USN-6831-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities

It was discovered that the HugeTLB file system component of the Linux Kernel contained a NULL pointer dereference vulnerability. A privileged attacker could possibly use this to to cause a denial of service. CVE-2024-0841 Several security issues were discovered in the Linux kernel. An attacker...

7.8CVSS6.6AI score0.01287EPSS
Exploits0References43
Tenable Nessus
Tenable Nessus
added 2024/06/12 12:0 a.m.107 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6831-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6831-1 advisory. It was discovered that the HugeTLB file system component of the Linux Kernel contained a NULL pointer dereference vulnerability. A privileged...

7.8CVSS6.9AI score0.01287EPSS
Exploits0References42
Ubuntu
Ubuntu
added 2024/06/11 8:53 p.m.117 views

USN-6821-3: Linux kernel (AWS) vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the Atheros 802.11ac...

9.1CVSS7.5AI score0.01635EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/11 12:0 a.m.72 views

Ubuntu 22.04 LTS : Linux kernel (NVIDIA) vulnerabilities (USN-6820-2)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6820-2 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

9.1CVSS7.5AI score0.01635EPSS
Exploits0References153
OpenVAS
OpenVAS
added 2024/05/30 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1764)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.9AI score0.28058EPSS
Exploits18References4
OSV
OSV
added 2024/01/29 5:57 a.m.4 views

BELL-CVE-2024-0841

Bulletin has no description...

7.8CVSS7.8AI score0.00298EPSS
Exploits0References1
Circl
Circl
added 2024/01/28 1:26 p.m.1 views

CVE-2024-0841

creationtimestamp| type| source ---|---|--- 2024-01-28 13:26:38+00:00| seen| https://t.me/ctinow/174933 2024-01-31 05:36:57+00:00| seen| https://t.me/ctinow/176480 2024-02-21 09:36:23+00:00| seen| https://t.me/ctinow/189396 2025-08-14 10:00:00+00:00| seen|...

7.8CVSS6.3AI score0.00298EPSS
Exploits0References4
NVD
NVD
added 2024/01/28 12:15 p.m.29 views

CVE-2024-0841

A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs HugeTLB pages functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system...

7.8CVSS6.5AI score0.00298EPSS
Exploits0References6
OSV
OSV
added 2024/01/28 12:15 p.m.6 views

CVE-2024-0841

A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs HugeTLB pages functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system...

7.8CVSS7.7AI score0.00298EPSS
Exploits0References6
CVE
CVE
added 2024/01/28 11:20 a.m.224 views

CVE-2024-0841

CVE-2024-0841 : A null pointer dereference in the Linux kernel hugetlbfs (HugeTLB pages) causes local crash and could potentially enable privilege escalation via hugetlbfs_fill_super. Connected sources confirm the flaw is in the hugetlbfs path of the kernel. The available documents do not provide...

7.8CVSS7.1AI score0.00298EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2024/01/28 11:19 a.m.24 views

CVE-2024-0841

A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs HugeTLB pages functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system. Mitigation Mitigation for this issue is either not...

6.6CVSS6.9AI score0.00298EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/03/22 12:0 a.m.14 views

SUSE SLES15: dpdk / dpdk-devel / dpdk-kmp-default / dpdk-thunderx / etc (SUSE-SU-2023:0841-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0841-1 advisory. - rebuild the package with the new secure boot key bsc1209188. Tenable has extracted the preceding description block directly from the SUSE...

5.9AI score
Exploits0References2
Circl
Circl
added 2023/02/18 12:55 a.m.7 views

CVE-2023-0841

creationtimestamp| type| source ---|---|--- 2023-02-18 00:55:21+00:00| seen| https://t.me/cibsecurity/58221...

8.8CVSS6.8AI score0.01153EPSS
Exploits1References1
OSV
OSV
added 2023/02/15 2:15 p.m.4 views

DEBIAN-CVE-2023-0841

A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3dmxprocess of the file filters/reframemp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been...

8.8CVSS6.7AI score0.01153EPSS
Exploits1References1
OSV
OSV
added 2023/02/15 1:33 p.m.21 views

CVE-2023-0841 GPAC reframe_mp3.c mp3_dmx_process heap-based overflow

A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3dmxprocess of the file filters/reframemp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been...

6.3CVSS6.7AI score0.01153EPSS
Exploits1References9
CVE
CVE
added 2023/02/15 1:33 p.m.59 views

CVE-2023-0841

GPAC 2.3-DEV-rev40-g3602a5ded is affected by a vulnerability in the mp3_dmx_process function (filters/reframe_mp3.c) that causes a heap-based buffer overflow. The issue is exploitable remotely, with public disclosure of exploits. Affected component appears to be the mp3 demuxing path inside GPAC....

8.8CVSS7.5AI score0.01153EPSS
Exploits1References7Affected Software1
OpenVAS
OpenVAS
added 2022/03/16 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2022:0841-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00894EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/03/04 12:19 a.m.42 views

CVE-2022-0841

A flaw was found in npm-lockfile, where npm-lockfile v2 did not sanitize the only parameter before invoking sensitive command execution API with the input. This issue leads to a command injection vulnerability...

10CVSS3AI score0.02675EPSS
Exploits1References4
Rows per page
Query Builder