794 matches found
EulerOS Virtualization 3.0.6.6 : kernel (EulerOS-SA-2020-2443)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - btrfsrootnode in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because...
CVE-2020-9910
Multiple issues were addressed with improved logic. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A malicious attacker with arbitrary read and write capability may be able t...
CVE-2020-13995
U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. An overflow in a global variable sBuffer leads to a Write-What-Where outcome. Writing beyond sBuffer will clobber most global variables until reaching a pointer such as DESinfo or imageinfo...
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-1920)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In calcvmmayflags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local...
QEMU <= 4.1.0 Arbitrary Write Vulnerability
QEMU is prone to an arbitrary write vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2016-7063
A flaw was found in pritunl-client before version 1.0.1116.6. Arbitrary write to user specified path may lead to privilege escalation...
Privilege escalation
A flaw was found in pritunl-client before version 1.0.1116.6. Arbitrary write to user specified path may lead to privilege escalation...
CVE-2016-7063
A flaw was found in pritunl-client before version 1.0.1116.6. Arbitrary write to user specified path may lead to privilege escalation...
npm: Symlink reference outside of node_modules folder through the bin field upon installation
Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenodemodules folder through the bin field upon installation. A properly constructed entry in the package.json bin field would allow a package...
FarSite Communications FarLinX X25 Gateway Arbitrary Write Vulnerability
FarSite Communications FarLinX X25 Gateway is a gateway product from FarSite Communications, UK. It features a browser interface, online statistics set, connection logging, active session display and status change alerts. FarSite Communications FarLinX X25 Gateway An arbitrary write vulnerability...
CVE-2017-18648
An issue was discovered on Samsung mobile devices with KK4.4.x, L5.x, M6.x, and N7.x software. Arbitrary file read/write operations can occur in the locked state via a crafted MTP command. The Samsung ID is SVE-2017-10086 November 2017...
CVE-2017-18657
An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...
CVE-2017-18657
An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...
Code injection
An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...
CVE-2017-18657
CVE-2017-18657 concerns Samsung mobile devices running M(6.0)/N(7.x) software. The issue is an arbitrary write in a trustlet (Samsung ID SVE-2017-8893). Connected documents (Red Hat, NVD/NVD mirror, CVE lists) corroborate the same root cause description, with no publicly detailed exploit or affec...
CVE-2017-18657
An issue was discovered on Samsung mobile devices with M6.0 and N7.x software. There is an arbitrary write in a trustlet. The Samsung ID is SVE-2017-8893 August 2017...
Samsung Mobile Device Buffer Overflow Vulnerability (CNVD-2020-40835)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have a security vulnerability that can be exploited by attackers to perform arbitrary read and write operations...
CVE-2019-20601
An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 Exynos7570, 7580, 7870, 7880, and 8890 chipsets software. RKP memory corruption causes an arbitrary write to protected memory. The Samsung ID is SVE-2019-13921-2 May 2019...
CVE-2019-20601
An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 Exynos7570, 7580, 7870, 7880, and 8890 chipsets software. RKP memory corruption causes an arbitrary write to protected memory. The Samsung ID is SVE-2019-13921-2 May 2019...
Unspecified Vulnerability in Rivet Killer Control Center (CNVD-2020-19859)
Rivet Killer Control Center is a computer performance optimization and control software. The program mainly supports application checking and setting priorities. Rivet Killer Control Center has a security vulnerability that was discovered in Rivet Killer Control Center prior to 2.1.1352.IOCTL...