Linux Distros Unpatched Vulnerability : CVE-2017-16534

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cdcparsecdcheader function in drivers/usb/core/message.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service out-of-bounds rea...

SUSE: Security Advisory (SUSE-SU-2018:0031-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:0115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1534)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-16534

On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. NOTE: this is an end-of-life product...

CVE-2019-16534

CVE-2019-16534 affects DrayTek Vigor2925 devices running firmware 3.8.4.3, where an XSS flaw can be triggered by a crafted WAN name on the General Setup screen. The vulnerability is tied to an end-of-life product. The provided sources describe the existence of the XSS but do not specify the under...

CVE-2019-16534

On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. NOTE: this is an end-of-life product...

CVE-2018-16534

...

CVE-2018-16534

CVE-2018-16534 is rejected and not used; it does not represent an active vulnerability entry.

Ubuntu 14.04 LTS : Linux kernel (AWS) vulnerabilities (USN-3485-3)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3485-3 advisory. It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker...

USN-3485-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-15265 Eric Biggers discovered that the key...

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3485-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3485-1 advisory. It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker...

CVE-2017-16534

creationtimestamp| type| source ---|---|--- 2017-11-06 16:55:44+00:00| seen| https://t.me/HackerOne/1214...

CVE-2017-16534

The cdcparsecdcheader function in drivers/usb/core/message.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service out-of-bounds read and system crash or possibly have unspecified other impact via a crafted USB device...

CVE-2017-16534

CVE-2017-16534 affects the Linux kernel before 4.13.6, specifically the cdc_parse_cdc_header function in drivers/usb/core/message.c. A crafted USB device can trigger an out-of-bounds read, causing a local denial of service (system crash) and potentially other impact. The advisory notes this is a ...