Lucene search
K

794 matches found

Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.47 views

EulerOS Virtualization 3.0.6.6 : kernel (EulerOS-SA-2020-2443)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - btrfsrootnode in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because...

7.8CVSS6.8AI score0.05228EPSS
Exploits8References15
Cvelist
Cvelist
added 2020/10/16 4:44 p.m.27 views

CVE-2020-9910

Multiple issues were addressed with improved logic. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A malicious attacker with arbitrary read and write capability may be able t...

8.3AI score0.02163EPSS
Exploits1References7
OSV
OSV
added 2020/09/25 1:15 p.m.5 views

CVE-2020-13995

U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. An overflow in a global variable sBuffer leads to a Write-What-Where outcome. Writing beyond sBuffer will clobber most global variables until reaching a pointer such as DESinfo or imageinfo...

9.8CVSS7.7AI score0.02714EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2020/09/02 12:0 a.m.33 views

EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-1920)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In calcvmmayflags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local...

6.7CVSS6.8AI score0.04505EPSS
Exploits6References11
OpenVAS
OpenVAS
added 2020/07/22 12:0 a.m.21 views

QEMU <= 4.1.0 Arbitrary Write Vulnerability

QEMU is prone to an arbitrary write vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.8CVSS6.4AI score0.02409EPSS
Exploits0References1
OSV
OSV
added 2020/07/21 5:15 p.m.19 views

CVE-2016-7063

A flaw was found in pritunl-client before version 1.0.1116.6. Arbitrary write to user specified path may lead to privilege escalation...

9.8CVSS6.8AI score0.02392EPSS
Exploits1References3
Prion
Prion
added 2020/07/21 5:15 p.m.15 views

Privilege escalation

A flaw was found in pritunl-client before version 1.0.1116.6. Arbitrary write to user specified path may lead to privilege escalation...

7.5CVSS7AI score0.02392EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/07/21 4:52 p.m.20 views

CVE-2016-7063

A flaw was found in pritunl-client before version 1.0.1116.6. Arbitrary write to user specified path may lead to privilege escalation...

9.5AI score0.02392EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2020/06/19 3:46 a.m.13 views

npm: Symlink reference outside of node_modules folder through the bin field upon installation

Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenodemodules folder through the bin field upon installation. A properly constructed entry in the package.json bin field would allow a package...

7.7CVSS7.5AI score0.03266EPSS
Exploits0References4
CNVD
CNVD
added 2020/06/02 12:0 a.m.5 views

FarSite Communications FarLinX X25 Gateway Arbitrary Write Vulnerability

FarSite Communications FarLinX X25 Gateway is a gateway product from FarSite Communications, UK. It features a browser interface, online statistics set, connection logging, active session display and status change alerts. FarSite Communications FarLinX X25 Gateway An arbitrary write vulnerability...

9.8CVSS6.9AI score0.01295EPSS
Exploits1References1
OSV
OSV
added 2020/04/07 4:15 p.m.2 views

CVE-2017-18648

An issue was discovered on Samsung mobile devices with KK4.4.x, L5.x, M6.x, and N7.x software. Arbitrary file read/write operations can occur in the locked state via a crafted MTP command. The Samsung ID is SVE-2017-10086 November 2017...

9.1CVSS5.8AI score0.00401EPSS
Exploits0References1
OSV
OSV
added 2020/04/07 4:15 p.m.2 views

CVE-2017-18657

An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...

5.3CVSS5.9AI score0.00302EPSS
Exploits0References1
NVD
NVD
added 2020/04/07 4:15 p.m.20 views

CVE-2017-18657

An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...

5.3CVSS5.5AI score0.00302EPSS
Exploits0References1
Prion
Prion
added 2020/04/07 4:15 p.m.14 views

Code injection

An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...

5CVSS5.5AI score0.00302EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/04/07 3:43 p.m.47 views

CVE-2017-18657

CVE-2017-18657 concerns Samsung mobile devices running M(6.0)/N(7.x) software. The issue is an arbitrary write in a trustlet (Samsung ID SVE-2017-8893). Connected documents (Red Hat, NVD/NVD mirror, CVE lists) corroborate the same root cause description, with no publicly detailed exploit or affec...

5.3CVSS5.5AI score0.00302EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/07 3:43 p.m.28 views

CVE-2017-18657

An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...

5.5AI score0.00302EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/25 12:0 a.m.2 views

Samsung Mobile Device Buffer Overflow Vulnerability (CNVD-2020-40835)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have a security vulnerability that can be exploited by attackers to perform arbitrary read and write operations...

9.8CVSS7AI score0.00443EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 8:15 p.m.2 views

CVE-2019-20601

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 Exynos7570, 7580, 7870, 7880, and 8890 chipsets software. RKP memory corruption causes an arbitrary write to protected memory. The Samsung ID is SVE-2019-13921-2 May 2019...

7.5CVSS7.2AI score0.00346EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/24 7:12 p.m.24 views

CVE-2019-20601

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 Exynos7570, 7580, 7870, 7880, and 8890 chipsets software. RKP memory corruption causes an arbitrary write to protected memory. The Samsung ID is SVE-2019-13921-2 May 2019...

7.9AI score0.00346EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/23 12:0 a.m.3 views

Unspecified Vulnerability in Rivet Killer Control Center (CNVD-2020-19859)

Rivet Killer Control Center is a computer performance optimization and control software. The program mainly supports application checking and setting priorities. Rivet Killer Control Center has a security vulnerability that was discovered in Rivet Killer Control Center prior to 2.1.1352.IOCTL...

9CVSS7.7AI score0.02556EPSS
Exploits0References1
Rows per page
Query Builder