Lucene search
K

5112 matches found

ATTACKERKB
ATTACKERKB
added 2022/04/12 9:15 a.m.2 views

CVE-2022-28329

A vulnerability has been identified in SCALANCE W1788-1 M12 All versions V3.0.0, SCALANCE W1788-2 EEC M12 All versions V3.0.0, SCALANCE W1788-2 M12 All versions V3.0.0, SCALANCE W1788-2IA M12 All versions V3.0.0. Affected devices do not properly handle malformed TCP packets received over the...

6.5CVSS5.7AI score0.00354EPSS
Exploits0References2
NVD
NVD
added 2022/04/06 2:15 a.m.13 views

CVE-2021-45104

An issue was discovered in HTCondor 9.0.x before 9.0.10 and 9.1.x before 9.5.1. An attacker who can capture HTCondor network data can interfere with users' jobs and data...

7.4CVSS0.00569EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/04/06 12:0 a.m.4 views

The vulnerability of the pcapngoptionwalk function in the hcxpcapngtool.c component of the WiFi dump file conversion software, which converts cap/pcap/pcapng files into hashcat and John the Ripper Hcxtools formats. This vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the pcapngoptionwalk function in the hcxpcapngtool.c component of the WiFi dump file conversion software, which converts WiFi cap/pcap/pcapng files into hashcat and John the Ripper format, is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker...

9.3CVSS7.5AI score0.01029EPSS
Exploits1References5Affected Software2
hivepro
hivepro
added 2022/04/05 12:57 p.m.251 views

Deep Panda deploys new rootkit “Fire Chili” by exploiting Log4shell in VMware horizon

THREAT LEVEL: Red For a detailed advisory, download the pdf file here Deep Panda, a Chinese APT group, took advantage of the well-known Log4Shell vulnerability in VMware Horizon servers to deploy a backdoor, rootkit, and steal sensitive data. This threat actor is primarily targeting firms in the...

9.3CVSS0.3AI score0.99999EPSS
Exploits347
OSV
OSV
added 2022/04/05 2:15 a.m.4 views

CVE-2021-42324

An issue was discovered on DCN Digital China Networks S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell...

7.4CVSS7.2AI score0.00614EPSS
Exploits1References2
NVD
NVD
added 2022/04/05 2:15 a.m.10 views

CVE-2021-42324

An issue was discovered on DCN Digital China Networks S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell...

7.4CVSS0.00614EPSS
Exploits1References2
Prion
Prion
added 2022/04/05 2:15 a.m.23 views

Design/Logic Flaw

An issue was discovered on DCN Digital China Networks S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell...

7.2CVSS7.7AI score0.00614EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/05 1:15 a.m.5 views

CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.1AI score0.00761EPSS
Exploits0References3
NVD
NVD
added 2022/04/05 1:15 a.m.14 views

CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS0.00761EPSS
Exploits0References2
OSV
OSV
added 2022/04/05 1:15 a.m.4 views

CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.4AI score
Exploits0References2
OSV
OSV
added 2022/04/05 1:15 a.m.0 views

DEBIAN-CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.00761EPSS
Exploits0References1
Prion
Prion
added 2022/04/05 1:15 a.m.15 views

Design/Logic Flaw

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

6.8CVSS9AI score0.00761EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2022/04/05 1:15 a.m.33 views

CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7AI score0.00761EPSS
Exploits0References1
OSV
OSV
added 2022/04/05 1:15 a.m.2 views

UBUNTU-CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7AI score0.00761EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/04/05 1:5 a.m.12 views

CVE-2021-42324

An issue was discovered on DCN Digital China Networks S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell...

7.9AI score0.00614EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2022/04/05 12:51 a.m.54 views

CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.2AI score0.00761EPSS
Exploits0
Cvelist
Cvelist
added 2022/04/05 12:51 a.m.17 views

CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

9.3AI score0.00761EPSS
Exploits0References2
CVE
CVE
added 2022/04/05 12:51 a.m.158 views

CVE-2022-0459

CVE-2022-0459 concerns a use-after-free vulnerability in Chrome’s Screen Capture code, leading to potential heap corruption. The issue affects Chrome/Chromium prior to version 98.0.4758.80, with exploitation described as requiring a crafted HTML page and user interaction to trigger the vulnerabil...

8.8CVSS9AI score0.00761EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2022/04/05 12:51 a.m.42 views

CVE-2022-0459

Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.8AI score0.00761EPSS
Exploits0
CNNVD
CNNVD
added 2022/04/05 12:0 a.m.3 views

Digital China Networks S4600-10P-SI 操作系统命令注入漏洞

The Digital China Networks S4600-10P-SI is a switch from Digital China Networks Beijing Co. A security vulnerability exists in DCN Digital China Networks S4600-10P-SI versions prior to R0241.0470, which stems from incorrect validation of parameters in the console interface. An authenticated,...

7.4CVSS7.5AI score0.00614EPSS
Exploits1References4
Rows per page
Query Builder