Lucene search
+L

88 matches found

Tenable Nessus
Tenable Nessus
added 2024/08/02 12:0 a.m.141 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6895-4)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6895-4 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

7.8CVSS7.5AI score0.00756EPSS
Exploits1References100
OSV
OSV
added 2024/07/29 4:15 p.m.3 views

UBUNTU-CVE-2023-52887

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: enhanced error handling for tightly received RTS messages in xtprxrtssessionnew This patch enhances error handling in scenarios with RTS Request to Send messages arriving closely. It replaces the less informative...

5.5CVSS5.8AI score0.00226EPSS
Exploits0References32
Tenable Nessus
Tenable Nessus
added 2024/07/19 12:0 a.m.81 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6895-3)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6895-3 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

7.8CVSS7.5AI score0.00756EPSS
Exploits1References100
Ubuntu
Ubuntu
added 2024/07/17 3:48 p.m.82 views

USN-6900-1: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the HugeTLB file syst...

7.8CVSS7.4AI score0.01287EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/17 12:0 a.m.93 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6900-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6900-1 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

7.8CVSS7.5AI score0.01287EPSS
Exploits1References104
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.63 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6895-2)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6895-2 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

7.8CVSS6.9AI score0.00756EPSS
Exploits1References100
Ubuntu
Ubuntu
added 2024/07/12 10:2 a.m.66 views

USN-6895-1: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the HugeTLB file syst...

7.8CVSS7.4AI score0.00756EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/05/29 12:0 a.m.110 views

Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-6795-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6795-1 advisory. Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use-...

7.8CVSS7.6AI score0.78388EPSS
Exploits2References94
OSV
OSV
added 2024/05/21 4:15 p.m.6 views

UBUNTU-CVE-2023-52878

In the Linux kernel, the following vulnerability has been resolved: can: dev: canputechoskb: don't crash kernel if canpriv::echoskb is accessed out of bounds If the "struct canpriv::echooskb" is accessed out of bounds, this would cause a kernel crash. Instead, issue a meaningful warning message a...

5.5CVSS6.2AI score0.0022EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2024/05/15 3:15 p.m.109 views

USN-6766-2: Linux kernel vulnerabilities

It was discovered that the Open vSwitch implementation in the Linux kernel could overflow its stack during recursive action operations under certain conditions. A local attacker could use this to cause a denial of service system crash. CVE-2024-1151 Sander Wiebing, Alvise de Faveri Tron, Herbert...

7.8CVSS7.3AI score0.78388EPSS
Exploits2
Ubuntu
Ubuntu
added 2024/05/14 9:0 a.m.84 views

USN-6767-2: Linux kernel (BlueField) vulnerabilities

Chenyuan Yang discovered that the RDS Protocol implementation in the Linux kernel contained an out-of-bounds read vulnerability. An attacker could use this to possibly cause a denial of service system crash. CVE-2024-23849 Several security issues were discovered in the Linux kernel. An attacker...

7.8CVSS6.9AI score0.00316EPSS
Exploits1
Ubuntu
Ubuntu
added 2024/05/07 7:36 p.m.92 views

USN-6767-1: Linux kernel vulnerabilities

Chenyuan Yang discovered that the RDS Protocol implementation in the Linux kernel contained an out-of-bounds read vulnerability. An attacker could use this to possibly cause a denial of service system crash. CVE-2024-23849 Several security issues were discovered in the Linux kernel. An attacker...

7.8CVSS6.9AI score0.00316EPSS
Exploits1
OSV
OSV
added 2024/05/07 7:36 p.m.12 views

USN-6767-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities

Chenyuan Yang discovered that the RDS Protocol implementation in the Linux kernel contained an out-of-bounds read vulnerability. An attacker could use this to possibly cause a denial of service system crash. CVE-2024-23849 Several security issues were discovered in the Linux kernel. An attacker...

7.8CVSS6.7AI score0.00316EPSS
Exploits1References49
Ubuntu
Ubuntu
added 2024/05/07 7:22 p.m.112 views

USN-6766-1: Linux kernel vulnerabilities

It was discovered that the Open vSwitch implementation in the Linux kernel could overflow its stack during recursive action operations under certain conditions. A local attacker could use this to cause a denial of service system crash. CVE-2024-1151 Sander Wiebing, Alvise de Faveri Tron, Herbert...

7.8CVSS7.3AI score0.78388EPSS
Exploits2
SUSE CVE
SUSE CVE
added 2023/02/15 5:56 a.m.4 views

SUSE CVE-2010-3874

Heap-based buffer overflow in the bcmconnect function in net/can/bcm.c aka the Broadcast Manager in the Controller Area Network CAN implementation in the Linux kernel before 2.6.36.2 on 64-bit platforms might allow local users to cause a denial of service memory corruption via a connect operation...

4CVSS6.6AI score0.00395EPSS
Exploits1References7
NVD
NVD
added 2022/10/31 6:15 p.m.25 views

CVE-2022-2741

The denial-of-service can be triggered by transmitting a carefully crafted CAN frame on the same CAN network as the vulnerable node. The frame must have a CAN ID matching an installed filter in the vulnerable node this can easily be guessed based on CAN traffic analyses. The frame must contain th...

8.2CVSS0.00591EPSS
Exploits0References1
Prion
Prion
added 2022/10/31 6:15 p.m.21 views

Code injection

The denial-of-service can be triggered by transmitting a carefully crafted CAN frame on the same CAN network as the vulnerable node. The frame must have a CAN ID matching an installed filter in the vulnerable node this can easily be guessed based on CAN traffic analyses. The frame must contain th...

5CVSS7.5AI score0.00591EPSS
Exploits0References1Affected Software1
n0where
n0where
added 2016/10/28 6:0 a.m.142 views

Open Source CAN Network Analysis: BUSMASTER

Open Source CAN Network Analysis BUSMASTER is an open source PC software for the design, monitoring, analysis, and simulation of CAN networks. Using its powerful functions and user-programmability one can simulate CAN system of any complexity. Additionally it provides options to analyze data byte...

7AI score
Exploits0References2
Kitploit
Kitploit
added 2016/05/09 10:15 p.m.67 views

CANToolz aka YACHT (Yet Another Car Hacking Tool) - Framework for Black-Box CAN Network Analysis

CANToolz is a framework for analysing CAN networks and devices. This tool based on different modules which can be assembled in pipe together and can be used by security researchers and automotive/OEM security testers for black-box analysis and etc. You can use this software for ECU discovery, MIT...

7.3AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.44 views

openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)

The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable 'customdebug' file, allowing local privilege escalation. CVE-2010-4258: A local attack...

7.8CVSS6.2AI score0.05542EPSS
Exploits50References57
Rows per page
Query Builder