CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

675 matches found

CNNVD•added 2024/12/27 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the incorrect handling of aggregation IDs in the scsi:hisisas module, which could lead to a kernel crash...

7.8CVSS7.4AI score0.00039EPSS

Exploits0References4

CNNVD•added 2024/12/27 12:0 a.m.•2 views

Linux kernel 安全漏洞

7.8CVSS6.4AI score0.00011EPSS

Exploits0References7

Circl•added 2024/12/25 2:49 p.m.•6 views

CVE-2024-47102

creationtimestamp| type| source ---|---|--- 2024-12-25 14:49:34+00:00| seen| https://infosec.exchange/users/cve/statuses/113714015336154746 2024-12-25 15:15:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3le5atjwt3a2f 2024-12-25 17:09:28+00:00| seen|...

5.5CVSS4.8AI score0.00023EPSS

Exploits0References3

OSV•added 2024/12/10 2:30 p.m.•2 views

DEBIAN-CVE-2024-5660

Use of Hardware Page Aggregation HPA and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 may permit bypass o...

9.8CVSS7.9AI score0.00136EPSS

Exploits0References1

OSV•added 2024/12/10 2:30 p.m.•4 views

ALPINE-CVE-2024-5660

9.8CVSS6.8AI score0.00136EPSS

Exploits0References1

NVD•added 2024/12/10 2:30 p.m.•13 views

CVE-2024-5660

9.8CVSS0.00136EPSS

Exploits0References1

OSV•added 2024/12/10 2:30 p.m.•0 views

UBUNTU-CVE-2024-5660

9.8CVSS7.3AI score0.00136EPSS

Exploits0References3

CVE•added 2024/12/10 1:55 p.m.•132 views

CVE-2024-5660

CVE-2024-5660 : Affected hardware includes ARM Cortex-A77/A78/A78C/A78AE, Cortex-A710, Cortex-X1/X1C/X2/X3/X4, Cortex-X925, Neoverse V1/V2/V3/V3AE, and Neoverse N2. The issue arises from the use of Hardware Page Aggregation (HPA) and Stage-1/Stage-2 translation, which may permit bypassing Stage-2...

9.8CVSS9.6AI score0.00136EPSS

Exploits0References1Affected Software1

Debian CVE•added 2024/12/10 1:55 p.m.•8 views

CVE-2024-5660

9.8CVSS7.9AI score0.00136EPSS

Exploits0

Vulnrichment•added 2024/12/10 1:55 p.m.•13 views

CVE-2024-5660

9.7AI score0.00136EPSS

Exploits0References1

Cvelist•added 2024/12/10 1:55 p.m.•24 views

CVE-2024-5660

0.00136EPSS

Exploits0References1

AlpineLinux•added 2024/12/10 1:55 p.m.•3 views

CVE-2024-5660

9.8CVSS7AI score0.00136EPSS

Exploits0

Positive Technologies•added 2024/12/10 12:0 a.m.•3 views

PT-2024-36907

Name of the Vulnerable Software and Affected Versions Arm Cortex processors versions A77 through X925, including A78, A78C, A78AE, A710, X1, X1C, X2, X3, X4, Neoverse V1, Neoverse V2, Neoverse V3, Neoverse V3AE, Neoverse N2 Description The use of Hardware Page Aggregation HPA and Stage-1 and/or...

9.8CVSS8.4AI score0.02589EPSS

Exploits7References1987

Wallarm Lab•added 2024/11/12 7:9 p.m.•5 views

Context is King: Using API Sessions for Security Context

There’s no doubt that API security is a hot topic these days. The continued growth in API-related breaches and increase in publicized API vulnerabilities has pushed API security to the top of CISO’s lists. The tools in the market for API security still have room for improvement, of course. One of...

7.3AI score

Exploits0

Tenable Nessus•added 2024/10/26 12:0 a.m.•14 views

Fortinet Fortigate Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification (FragAttacks) (FG-IR-21-071)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-071 advisory. - The 802.11 standard that underpins Wi-Fi Protected Access WPA, WPA2, and WPA3 and Wired Equivalent Privacy WEP doesn't...

2.6CVSS7AI score0.0055EPSS

Exploits2References4

RedHat Linux•added 2024/10/22 6:29 p.m.•7 views

Camel-CassandraQL: Unsafe Deserialization from CassandraAggregationRepository

A deserialization of untrusted data flaw was found in the Apache Camel CassandraQL Component AggregationRepository. The affected versions of Apache Camel are vulnerable to unsafe deserialization, where, under specific conditions, it is possible to deserialize a malicious payload...

9.8CVSS5.8AI score0.01348EPSS

Exploits1References6

Rapid7 Blog•added 2024/10/17 1:0 p.m.•8 views

Understanding your Attack Surface: Different Approaches to Asset Discovery

Over the past two blogs Help, I can’t see! A Primer for Attack Surface Management Blog Series and The Main Components of an Attack Surface Management ASM Strategy in our series on Attack Surface Management, we’ve focused on the drivers and core elements of an Attack Surface Management solution. I...

7AI score

Exploits0

NVD•added 2024/10/03 11:15 p.m.•11 views

CVE-2024-41925

The web service for ONS-S8 - Spectra Aggregation Switch includes functions which do not properly validate user input, allowing an attacker to traverse directories, bypass authentication, and execute remote code...

9.8CVSS0.00082EPSS

Exploits0References1

Cvelist•added 2024/10/03 10:19 p.m.•19 views

CVE-2024-45367 Optigo Networks ONS-S8 Spectra Aggregation Switch Weak Authentication

The web server for ONS-S8 - Spectra Aggregation Switch includes an incomplete authentication process, which can lead to an attacker authenticating without a password...

9.3CVSS0.00134EPSS

Exploits0References1

Vulnrichment•added 2024/10/03 10:19 p.m.•14 views

CVE-2024-45367 Optigo Networks ONS-S8 Spectra Aggregation Switch Weak Authentication

The web server for ONS-S8 - Spectra Aggregation Switch includes an incomplete authentication process, which can lead to an attacker authenticating without a password...

9.3CVSS7.2AI score0.00134EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by