Lucene search
+L

265 matches found

Citrix
Citrix
added 2024/07/13 12:0 a.m.13 views

Targets Booting Very Slowly - Windows Splash Seen for over 10 Minutes

New deployment targets taking over 10 minutes to boot. Background Target device gets to the Windows splash and then it takes over 15 minutes to load Windows. After Windows loads, there is no performance problem...

7.1AI score
Exploits0
CNNVD
CNNVD
added 2024/06/19 12:0 a.m.8 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the ALSA timer not having a lower limit on the boot time...

5.5CVSS6.5AI score0.00642EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/06/14 12:0 a.m.5 views

Huawei 手机安全漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. A memory management vulnerability exists in Huawei...

5.6CVSS6.6AI score0.00112EPSS
Exploits0References2
OSV
OSV
added 2024/06/09 8:15 p.m.9 views

CVE-2024-37569

An issue was discovered on Mitel 6869i through 4.5.0.41 and 5.x through 5.0.0.1018 devices. A command injection vulnerability exists in the hostname parameter taken in by the provis.html endpoint. The provis.html endpoint performs no sanitization on the hostname parameter sent by an authenticated...

8.8CVSS6.5AI score0.03199EPSS
Exploits3References3
SUSE CVE
SUSE CVE
added 2024/06/04 2:25 a.m.4 views

SUSE CVE-2024-36925

In the Linux kernel, the following vulnerability has been resolved: swiotlb: initialise restricted pool listhead when SWIOTLBDYNAMIC=y Using restricted DMA pools CONFIGDMARESTRICTEDPOOL=y in conjunction with dynamic SWIOTLB CONFIGSWIOTLBDYNAMIC=y leads to the following crash when initialising the...

5.5CVSS6.5AI score0.00227EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/05/21 1:59 a.m.5 views

SUSE CVE-2024-35875

In the Linux kernel, the following vulnerability has been resolved: x86/coco: Require seeding RNG with RDRAND on CoCo systems There are few uses of CoCo that don't rely on working cryptography and hence a working RNG. Unfortunately, the CoCo threat model means that the VM host cannot be trusted a...

5.6CVSS6.5AI score0.00235EPSS
Exploits0References17
NVD
NVD
added 2024/05/19 9:15 a.m.28 views

CVE-2024-35875

In the Linux kernel, the following vulnerability has been resolved: x86/coco: Require seeding RNG with RDRAND on CoCo systems There are few uses of CoCo that don't rely on working cryptography and hence a working RNG. Unfortunately, the CoCo threat model means that the VM host cannot be trusted a...

5.5CVSS6.5AI score0.00235EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/19 8:34 a.m.41 views

CVE-2024-35875 x86/coco: Require seeding RNG with RDRAND on CoCo systems

In the Linux kernel, the following vulnerability has been resolved: x86/coco: Require seeding RNG with RDRAND on CoCo systems There are few uses of CoCo that don't rely on working cryptography and hence a working RNG. Unfortunately, the CoCo threat model means that the VM host cannot be trusted a...

6.5AI score0.00235EPSS
Exploits0References4
OSV
OSV
added 2024/05/19 8:34 a.m.25 views

CVE-2024-35875 x86/coco: Require seeding RNG with RDRAND on CoCo systems

In the Linux kernel, the following vulnerability has been resolved: x86/coco: Require seeding RNG with RDRAND on CoCo systems There are few uses of CoCo that don't rely on working cryptography and hence a working RNG. Unfortunately, the CoCo threat model means that the VM host cannot be trusted a...

5.5CVSS6.3AI score0.00235EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/04/18 1:42 a.m.4 views

shim: Interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...

7.4CVSS7AI score0.00432EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/04/18 1:42 a.m.2 views

shim: Out-of-bound read in verify_buffer_sbat()

An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase...

5.5CVSS6.5AI score0.00394EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/04/18 12:0 a.m.6 views

PT-2024-26760 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a NULL pointer dereference in the zswap shrinker when memcg is disabled with the boot time flag. This can cause the zswap shrinker to be called with sc-memcg...

9.8CVSS6.6AI score0.01483EPSS
Exploits3References708
RedHat Linux
RedHat Linux
added 2024/04/16 1:45 p.m.4 views

shim: Out-of-bound read in verify_buffer_sbat()

An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase...

5.5CVSS6.5AI score0.00394EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/03/27 12:0 a.m.4 views

PT-2024-2750 · Cisco · Cisco Access Point +1

Name of the Vulnerable Software and Affected Versions: Cisco Access Point AP Software versions affected versions not specified Description: The issue is related to a security bypass in the boot process of Cisco Access Point AP Software. This could allow an unauthenticated, physical attacker to...

6.2CVSS6.9AI score0.00249EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/03/05 4:31 a.m.3 views

SUSE CVE-2023-52506

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Set all reserved memblocks on Node0 at initialization After commit 61167ad5fecdea "mm: pass nid to reservebootmemregion" we get a panic if DEFERREDSTRUCTPAGEINIT is enabled: 0.000000 CPU 0 Unable to handle kernel pagin...

5.5CVSS6.5AI score0.00222EPSS
Exploits0References3
OSV
OSV
added 2023/09/21 3:30 p.m.6 views

GHSA-6958-8CPR-XGRQ Duplicate Advisory: EVE's Debug Functions Unlockable Without Triggering Measured Boot

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4c4v-42hc-72p6. This link is maintained to preserve external references. Original Description On boot, the Pillar eve container checks for the existence and content of “/config/GlobalConfig/global.json”. If the...

8.8CVSS5.5AI score0.00159EPSS
Exploits0References3
OSV
OSV
added 2023/09/06 6:15 p.m.5 views

CVE-2023-38484

Vulnerabilities exist in the BIOS implementation of Aruba 9200 and 9000 Series Controllers and Gateways that could allow an attacker to execute arbitrary code early in the boot sequence. An attacker could exploit this vulnerability to gain access to and change underlying sensitive information in...

6.4CVSS6.1AI score0.00408EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/07/25 12:0 a.m.20 views

Cisco FXOS and NX-OS Software Secure Configuration Bypass (CVE-2019-1728)

A vulnerability in the Secure Configuration Validation functionality of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to run arbitrary commands at system boot time with the privileges of root. The vulnerability is due to a lack of proper validation of...

7.2CVSS6.8AI score0.00251EPSS
Exploits0References3
Citrix
Citrix
added 2023/04/24 12:0 a.m.171 views

PVS boot time message "Attempting to set IP address on Boot NIC.......complete after 51s."

Target devices show a boot time message "Attempting to set IP address on Boot NIC.......complete after 51s." This message was not observed in earlier versions of PVS target device software like PVS 1912...

7AI score
Exploits0
NVD
NVD
added 2023/03/23 5:15 p.m.27 views

CVE-2023-20082

A vulnerability in Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust. This...

6.8CVSS6.4AI score0.00375EPSS
Exploits0References1
Rows per page
Query Builder