Lucene search
+L

171 matches found

OSV
OSV
added 2023/05/09 12:29 p.m.16 views

SUSE-SU-2023:2141-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-2235: A use-after-free vulnerability in the Performance Events system can be exploited to achieve local privilege escalation bsc1210986. -...

8.8CVSS8.4AI score0.0788EPSS
Exploits18References62
Circl
Circl
added 2023/04/21 12:31 a.m.4 views

CVE-2023-2176

creationtimestamp| type| source ---|---|--- 2023-04-21 00:31:06+00:00| seen| https://t.me/cibsecurity/62561 2023-11-29 16:50:04+00:00| seen| https://t.me/arpsyndicate/771...

7.8CVSS6.7AI score0.0024EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/04/20 12:0 a.m.29 views

CVE-2023-2176

A vulnerability was found in comparenetdevandip in drivers/infiniband/core/cma.c in RDMA in the Linux Kernel. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege...

7.9AI score0.0024EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/20 12:0 a.m.5 views

CVE-2023-2176

A vulnerability was found in comparenetdevandip in drivers/infiniband/core/cma.c in RDMA in the Linux Kernel. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege...

7.7AI score0.0024EPSS
Exploits0References2
CVE
CVE
added 2023/04/20 12:0 a.m.221 views

CVE-2023-2176

CVE-2023-2176 affects the Linux kernel RDMA path: a use of compare_netdev_and_ip in drivers/infiniband/core/cma.c can trigger an out-of-bounds read, allowing a local attacker to crash or escalate privileges. Multiple vendor advisories (e.g., SUSE SU-2025-02848-1, SUSE SU-2025-02846-1) reference a...

7.8CVSS7.5AI score0.0024EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/02/23 6:15 p.m.8 views

CVE-2022-2176

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.6AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:19 p.m.113 views

K07538415: Multiple OpenSSL vulnerabilities

Security Advisory Description On May 3, 2016, OpenSSL announced the discovery of the following vulnerabilities: CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 CVE-2016-2109 CVE-2016-2176 For the complete announcement from OpenSSL, refer to OpenSSL Security Advisory 3rd May 2016. Note :...

10CVSS7.9AI score0.89058EPSS
Exploits7
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.5 views

SUSE CVE-2011-2176

GNOME NetworkManager before 0.8.6 does not properly enforce the authadmin element in PolicyKit, which allows local users to bypass intended wireless network sharing restrictions via unspecified vectors...

2.1CVSS8.3AI score0.00324EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/08/01 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2022-2176)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.3AI score0.0325EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/27 9:58 a.m.56 views

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect WebSphere Application Server shipped with IBM InfoSphere Master Data Management Server (CVE-2016-2108 CVE-2016-2107 CVE-2016-2105 CVE-2016-2106 CVE-2016-2109 CVE-2016-2176)

Summary IBM WebSphere Application Server is shipped as a component of IBM InfoSphere Master Data Management Server . Information about a security vulnerabilities affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Consult the security bullet...

10CVSS2AI score0.89058EPSS
Exploits7Affected Software1
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.32 views

Slackware: Security Advisory (SSA:2016-124-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.5AI score0.89058EPSS
Exploits7References3
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/11 3:7 p.m.42 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Cisco SAN switches and directors (CVE-2016-2108, CVE-2016-2107, CVE-2016-2105, CVE-2016-2106, CVE-2016-2109, CVE-2016-2176)

Summary OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by IBM Cisco SAN switches and directors. IBM Cisco SAN switches and directors has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-2108DESCRIPTION: OpenSSL could allow a remot...

10CVSS2.3AI score0.89058EPSS
Exploits7Affected Software10
OpenVAS
OpenVAS
added 2020/10/12 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-2176)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.01308EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/06/16 12:0 a.m.39 views

Huawei EulerOS: Security Advisory for openssl098e (EulerOS-SA-2020-1637)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.6AI score0.85784EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/05/15 12:0 a.m.63 views

Debian: Security Advisory (DLA-2176-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.7AI score0.74513EPSS
Exploits2References3
CVE
CVE
added 2020/04/07 12:25 p.m.74 views

CVE-2020-2176

CVE-2020-2176 describes an XSS vulnerability in Jenkins with the useMango Runner Plugin 1.4 and earlier, where multiple form validation endpoints do not escape values received from the useMango service. This allows an attacker who can control returned values to execute scripts in a user’s browser...

5.4CVSS5.3AI score0.00705EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/23 8:41 p.m.28 views

Security Bulletin: Multiple vulnerabilities in OpenSSL affect WebSphere Message Broker and IBM Integration Bus ( CVE-2016-2107,CVE-2016-2176)

Summary OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. The DataDirect ODBC Drivers used by WebSphere Message Broker and IBM Integration Bus have addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-2107 DESCRIPTION: OpenSSL could allow a remote...

8.2CVSS0.9AI score0.89058EPSS
Exploits6Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/05 12:53 a.m.48 views

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Sterling B2B Integrator

Summary OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by IBM Sterling B2B Integrator. IBM Sterling B2B Integrator has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-2107 DESCRIPTION: OpenSSL could allow a remote attacker to...

8.2CVSS1.3AI score0.89058EPSS
Exploits6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 2:26 p.m.44 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM i (CVE-2016-2108, CVE-2016-2107, CVE-2016-2105, CVE-2016-2106, CVE-2016-2109, CVE-2016-2176)

Summary OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by IBM i. IBM i has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-2108 DESCRIPTION: OpenSSL could allow a remote attacker to execute arbitrary code on the system, caused by...

10CVSS1.5AI score0.89058EPSS
Exploits7Affected Software1
CVE
CVE
added 2019/09/05 9:36 p.m.181 views

CVE-2019-2176

CVE-2019-2176 affects Android 8.0–9 where ihevcd_parse_buffering_period_sei in ihevcd_parse_headers.c can write out of bounds due to a missing bounds check, enabling remote code execution with user interaction required. The issue resides in the Android Media framework, with high/critical severity...

9.3CVSS8AI score0.01038EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder