Lucene search
+L

63 matches found

Cloud Foundry
Cloud Foundry
added 2017/08/04 12:0 a.m.116 views

USN-3364-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description USN-3364-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.0...

5.5CVSS6.5AI score0.01261EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/07/31 12:0 a.m.91 views

Ubuntu 16.04 LTS : Linux kernel (HWE) kernel vulnerabilities (USN-3371-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3371-1 advisory. It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive...

5.5CVSS6.5AI score0.00721EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2017/07/25 11:9 p.m.106 views

USN-3364-3: Linux kernel (AWS, GKE) vulnerabilities

It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 It was discovered that the Linux kernel did not properly restrict access to /proc/iomem. A local attacker...

5.5CVSS6.3AI score0.01261EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/07/25 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-3364-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.2AI score0.01261EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/07/25 12:0 a.m.58 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3364-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3364-2 advisory. USN-3364-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

5.5CVSS6.5AI score0.01261EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2017/07/21 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-3359-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.1081EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2017/07/20 11:18 p.m.170 views

USN-3358-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 Alexander Potapenko discovered a race condition in the Advanced Linux Sound Architecture ALSA subsystem i...

5.5CVSS6.3AI score0.00721EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.269 views

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:1853-1) (Stack Clash)

The SUSE Linux Enterprise 12 SP2 kernel was updated to 4.4.74 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-1000365: The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMITSTACK/RLIMINFINITY 1/4 o...

7.8CVSS6.6AI score0.04257EPSS
Exploits5References208
Tenable Nessus
Tenable Nessus
added 2017/06/30 12:0 a.m.51 views

openSUSE Security Update : the Linux Kernel (openSUSE-2017-716) (Stack Clash)

The openSUSE Leap 42.2 kernel was updated to 4.4.72 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-1000364: An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be...

7.4CVSS7.2AI score0.05186EPSS
Exploits3References43
OPENSUSE Linux
OPENSUSE Linux
added 2017/06/21 12:12 p.m.59 views

Security update for the Linux Kernel (important)

The openSUSE Leap 42.2 kernel was updated to 4.4.72 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000364: An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be...

4.9CVSS7.6AI score0.05186EPSS
Exploits3References39
OpenVAS
OpenVAS
added 2017/06/21 12:0 a.m.57 views

openSUSE: Security Advisory for kernel (openSUSE-SU-2017:1633-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4CVSS7.4AI score0.05186EPSS
Exploits3References1
NVD
NVD
added 2017/06/07 9:29 p.m.18 views

CVE-2015-7346

SQL injection vulnerability in ZCMS 1.1...

9.8CVSS9.8AI score0.037EPSS
Exploits4References3
CVE
CVE
added 2017/06/07 9:0 p.m.48 views

CVE-2015-7346

CVE-2015-7346 affects ZCMS 1.1 (Zeyuan Web Content Management System). The connected documents confirm a SQL injection vulnerability in ZCMS 1.1 that can bypass authentication to reach the admin area, caused by constructing queries via string concatenation (e.g., vulnerable login query). Public e...

9.8CVSS9.8AI score0.037EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2017/06/07 9:0 p.m.26 views

CVE-2015-7346

SQL injection vulnerability in ZCMS 1.1...

9.9AI score0.037EPSS
Exploits4References3
CVE
CVE
added 2017/05/11 2:1 p.m.24 views

CVE-2016-7346

CVE-2016-7346 entry is rejected/not used; not an active vulnerability entry.

6.9AI score
Exploits0
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.11 views

CVE-2016-7346

...

Exploits0
OSV
OSV
added 2017/03/30 11:59 p.m.6 views

CVE-2017-7346

The vmwgbsurfacedefineioctl function in drivers/gpu/drm/vmwgfx/vmwgfxsurface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows local users to cause a denial of service system hang via a crafted ioctl call for a /dev/dri/renderD device...

5.5CVSS5.7AI score
Exploits0References6
CVE
CVE
added 2017/03/30 11:0 p.m.164 views

CVE-2017-7346

The CVE-2017-7346 issue is a Linux kernel vulnerability in vmwgfx where vmw_gb_surface_define_ioctl in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c fails to validate certain levels data, enabling a local attacker to cause a denial of service (system hang) via a crafted ioctl to /dev/dri/renderD* on ke...

5.5CVSS5.4AI score0.00378EPSS
Exploits0References6Affected Software1
Circl
Circl
added 2015/06/12 12:0 a.m.5 views

CVE-2015-7346

creationtimestamp| type| source ---|---|--- 2015-06-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37272...

9.8CVSS7.3AI score0.037EPSS
Exploits4References1
CVE
CVE
added 2014/10/19 10:0 a.m.37 views

CVE-2014-7346

The CVE-2014-7346 entry concerns the Bespoke Android app (com.magzter.bespoke) version 3.0, which does not verify X.509 certificates when establishing SSL connections. The root cause is missing certificate validation, enabling potential man‑in‑the‑middle attackers to spoof servers and extract sen...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder