Lucene search
K

4967 matches found

AlpineLinux
AlpineLinux
added 2018/02/23 10:0 p.m.20 views

CVE-2018-7420

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in wiretap/pcapng.c by adding a block-size check for sysdig event blocks...

7.5CVSS7.5AI score0.02845EPSS
Exploits0
Debian CVE
Debian CVE
added 2018/02/23 10:0 p.m.18 views

CVE-2018-7420

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in wiretap/pcapng.c by adding a block-size check for sysdig event blocks...

7.5CVSS2.5AI score0.02845EPSS
Exploits0
Drupal
Drupal
added 2018/02/14 12:0 a.m.14 views

Dynamic Banner - Less critical - Cross site scripting - SA-CONTRIB-2018-011

This module enables a site to display different banners via blocks on different pages depending upon specific criteria. The module doesn't sufficiently filter output of banner data. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "administer...

6.4AI score
Exploits0References5
OSV
OSV
added 2018/01/23 2:29 p.m.3 views

CVE-2018-1000015

On Jenkins instances with Authorize Project plugin, the authentication associated with a build may lack the Computer/Build permission on some agents. This did not prevent the execution of Pipeline node blocks on those agents due to incorrect permissions checks in Pipeline: Nodes and Processes...

4.8CVSS5.9AI score0.01051EPSS
Exploits0References1
OSV
OSV
added 2018/01/16 10:29 p.m.1 views

UBUNTU-CVE-2018-5727

In OpenJPEG 2.3.0, there is an integer overflow vulnerability in the opjt1encodecblks function openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...

6.5CVSS5.9AI score0.01894EPSS
Exploits1References4
Cvelist
Cvelist
added 2017/12/22 11:0 p.m.28 views

CVE-2017-17844

An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content by sending an encrypted data block that the attacker cannot directly decrypt to a victim, and relying on the victim to automatically decrypt that block and then send it back to the attacker as quoted...

6.8AI score0.01353EPSS
Exploits0References5
Check Point Advisories
Check Point Advisories
added 2017/12/17 12:0 a.m.3 views

Apple WebKit Out-of-bounds Read (CVE-2017-13785)

An arbitrary code execution vulnerability has been discovered in Apple WebKit. The vulnerability is due to an error in Apple Webkit while handling certain display properties within the style blocks. A remote attacker could exploit this issue by enticing the target user to open a maliciously craft...

6.8CVSS2.4AI score0.05787EPSS
Exploits4
Check Point Advisories
Check Point Advisories
added 2017/12/12 12:0 a.m.3 views

Apple WebKit out-of-bounds read (CVE-2017-13783)

An arbitrary code execution vulnerability has been discovered in Apple WebKit. The vulnerability is due to an error in Apple Webkit while handling certain display properties within the style blocks. A remote attacker could exploit this issue by enticing the target user to open a maliciously craft...

6.8CVSS2.4AI score0.0582EPSS
Exploits4
NVD
NVD
added 2017/12/05 7:29 p.m.16 views

CVE-2017-14908

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the SafeSwitch test application does not properly validate the number of blocks to verify...

10CVSS7.9AI score0.00726EPSS
Exploits0References2
OSV
OSV
added 2017/11/28 11:29 p.m.2 views

DEBIAN-CVE-2017-17046

An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled...

6.5CVSS8.6AI score0.00364EPSS
Exploits0References1
OSV
OSV
added 2017/11/28 11:29 p.m.2 views

ALPINE-CVE-2017-17046

An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled...

6.5CVSS6.1AI score0.00364EPSS
Exploits0References1
OSV
OSV
added 2017/11/28 11:29 p.m.1 views

UBUNTU-CVE-2017-17046

An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled...

6.5CVSS6.9AI score0.00364EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2017/11/28 11:0 p.m.34 views

CVE-2017-17046

An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled...

6.5CVSS6.8AI score0.00364EPSS
Exploits0
NVD
NVD
added 2017/11/16 7:29 a.m.17 views

CVE-2017-12299

A vulnerability exists in the process of creating default IP blocks during device initialization for Cisco ASA Next-Generation Firewall Services that could allow an unauthenticated, remote attacker to send traffic to the local IP address of the device, bypassing any filters that are configured to...

5.3CVSS5.3AI score0.01163EPSS
Exploits0References2
Prion
Prion
added 2017/11/16 7:29 a.m.14 views

Design/Logic Flaw

A vulnerability exists in the process of creating default IP blocks during device initialization for Cisco ASA Next-Generation Firewall Services that could allow an unauthenticated, remote attacker to send traffic to the local IP address of the device, bypassing any filters that are configured to...

5CVSS5.2AI score0.01163EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/11/16 7:29 a.m.2 views

CVE-2017-12299

A vulnerability exists in the process of creating default IP blocks during device initialization for Cisco ASA Next-Generation Firewall Services that could allow an unauthenticated, remote attacker to send traffic to the local IP address of the device, bypassing any filters that are configured to...

5.3CVSS5.8AI score0.01163EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/11/16 7:0 a.m.13 views

CVE-2017-12299

A vulnerability exists in the process of creating default IP blocks during device initialization for Cisco ASA Next-Generation Firewall Services that could allow an unauthenticated, remote attacker to send traffic to the local IP address of the device, bypassing any filters that are configured to...

5.3AI score0.01163EPSS
Exploits0References2
Cisco
Cisco
added 2017/11/15 4:0 p.m.44 views

Cisco Firepower 4100 and 9300 Security Appliance Local Management Filtering Bypass Vulnerability

A vulnerability in the process for creating default IP blocks during device initialization for Cisco Firepower 4100 Series and Firepower 9300 Security Appliances running Cisco FXOS Software could allow an unauthenticated, remote attacker to send traffic to the local IP address of the device,...

5.3CVSS5.3AI score0.01163EPSS
Exploits0References1
OSV
OSV
added 2017/10/19 9:29 p.m.3 views

DEBIAN-CVE-2012-4380

MediaWiki before 1.18.5, and 1.19.x before 1.19.2 allows remote attackers to bypass GlobalBlocking extension IP address blocking and create an account via unspecified vectors...

7.5CVSS7AI score0.01649EPSS
Exploits0References1
Kitploit
Kitploit
added 2017/09/18 9:0 p.m.95 views

dnsenum - Multithreaded perl script to enumerate DNS information

Multithreaded perl script to enumerate DNS information of a domain and to discover non-contiguous ip blocks. OPERATIONS: Get the host’s addresse A record. Get the namservers threaded. Get the MX record threaded. Perform axfr queries on nameservers and get BIND VERSION threaded. Get extra names an...

7.8AI score
Exploits0References1
Rows per page
Query Builder