100 matches found
SUSE: Security Advisory (SUSE-SU-2022:2741-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for the (SUSE-SU-2022:2741-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE: Security Advisory (SUSE-SU-2022:2723-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:2719-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:2720-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12: kernel-default / kernel-default-base / kernel-default-devel / etc (SUSE-SU-2022:2721-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2721-1 advisory. The SUSE Linux Enterprise 12 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-36946:...
Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.15.58 and fixes at least the following security issues: Kernel lockdown bypass when UEFI secure boot is disabled / unavailable and IMA appraisal is enabled CVE-2022-21505. Aliases in the branch predictor may cause some AMD processors to predict the wrong...
CVE-2022-36946
nfqnlmangle in net/netfilter/nfnetlinkqueue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service panic because, in the case of an nfqueue verdict with a one-byte nftapayload attribute, an skbpull can encounter a negative skb-len...
CVE-2022-36946
nfqnlmangle in net/netfilter/nfnetlinkqueue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service panic because, in the case of an nfqueue verdict with a one-byte nftapayload attribute, an skbpull can encounter a negative skb-len...
CVE-2022-36946
nfqnlmangle in net/netfilter/nfnetlinkqueue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service panic because, in the case of an nfqueue verdict with a one-byte nftapayload attribute, an skbpull can encounter a negative skb-len...
CVE-2022-36946
The CVE-2022-36946 issue affects nfqnl_mangle in net/netfilter/nfnetlink_queue.c of the Linux kernel (through 5.18.14). When nf_queue verdicts include a one-byte nfta_payload attribute, skb_pull can encounter a negative skb->len, enabling a remote attacker to trigger a denial of service (panic...
CVE-2021-36946
creationtimestamp| type| source ---|---|--- 2021-08-12 22:40:05+00:00| seen| https://t.me/cibsecurity/27259...
CVE-2021-36946
Microsoft Dynamics Business Central Cross-site Scripting Vulnerability...
CVE-2021-36946
CVE-2021-36946 is a Cross-site Scripting (XSS) vulnerability in Microsoft Dynamics Business Central (and related NAV products in linked updates). The connected docs confirm the issue, with references to Microsoft Dynamics BC NAV exposure and multiple security updates in 2021 that address the XSS ...
CVE-2021-36946 Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
...
Security Updates for Microsoft Dynamics NAV (August 2021)
The Microsoft Dynamics NAV install is missing a security update. It is, therefore, affected by a Cross-site Scripting Vulnerability. Note that Nessus has not attempted to exploit this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenabl...
Security Updates for Microsoft Dynamics 365 (on-premises) (August 2021)
The Microsoft Dynamics 365 on-premises installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote Code Execution Vulnerability CVE-2021-34524 - Cross-site Scripting Vulnerabilities CVE-2021-36946, CVE-2021-36950 Note that Nessus h...
Vulnerabilities fixed in Microsoft Dynamics
Microsoft has fixed three vulnerabilities in Dynamics. A malicious party can exploit the vulnerabilities to impersonate as another user or to execute arbitrary code. Below is an overview of the affected vulnerabilities: Microsoft Dynamics:...
KLA12260 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Dynamics 365 on-premises can be exploite...
Microsoft Excel畸形BIFF记录远程代码执行漏洞(MS09-067)
Bugraq ID: 36946 CVE ID:CVE-2009-3130 Microsoft Excel是一款微软开发的电子表格处理程序。 Microsoft Office Excel存在一个远程代码执行漏洞,如果用户打开一个特殊构建的包含畸形的BIFF记录的Excel文件可允许远程代码执行。 成功利用此漏洞允许完全控制受影响系统,攻击者成功利用此漏洞可以以内核权限安装程序;查看,更改或删除数据等。 Microsoft Open XML File Format Converter for Mac Microsoft Office 2008 for Mac Microsoft Offic...