Lucene search
K

7654 matches found

CVE
CVE
added 2024/09/11 4:3 a.m.52 views

CVE-2024-24972

The CVE-2024-24972 issue affects Gallagher Controller 6000 and Controller 7000 via a Buffer Copy without Checking Size of Input in the diagnostic web interface, enabling an authorized and authenticated operator to reboot the controller and cause a Denial of Service. Affected firmware histories in...

6.5CVSS6.7AI score0.00324EPSS
Exploits0References1
NVD
NVD
added 2024/09/09 10:15 a.m.22 views

CVE-2024-6572

Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem' in Checkmk before Checkmk 2.3.0p15, 2.2.0p33, 2.1.0p48 and 2.0.0 EOL allows man-in-the-middle attackers to intercept traffic...

7.4CVSS0.00338EPSS
Exploits0References1
OSV
OSV
added 2024/09/09 10:15 a.m.5 views

CVE-2024-6572

Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem' in Checkmk before Checkmk 2.3.0p15, 2.2.0p33, 2.1.0p48 and 2.0.0 EOL allows man-in-the-middle attackers to intercept traffic...

6.3CVSS7AI score
Exploits0References1
OSV
OSV
added 2024/09/09 10:15 a.m.1 views

UBUNTU-CVE-2024-6572

Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem' in Checkmk before Checkmk 2.3.0p15, 2.2.0p33, 2.1.0p48 and 2.0.0 EOL allows man-in-the-middle attackers to intercept traffic...

7.4CVSS5.8AI score0.00338EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/09 9:39 a.m.17 views

CVE-2024-6572 Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem'

Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem' in Checkmk before Checkmk 2.3.0p15, 2.2.0p33, 2.1.0p48 and 2.0.0 EOL allows man-in-the-middle attackers to intercept traffic...

6.3CVSS6.8AI score0.00338EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/09 12:0 a.m.9 views

PT-2024-37728 · Checkmk · Checkmk

Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.3.0p15 Checkmk versions prior to 2.2.0p33 Checkmk versions prior to 2.1.0p48 Checkmk version 2.0.0 Description: The issue concerns improper host key checking in the active check 'Check SFTP Service' and the special...

7.4CVSS7AI score0.00338EPSS
Exploits0References15
CloudLinux
CloudLinux
added 2024/09/06 8:50 p.m.24 views

git: Fix of CVE-2024-32004

CVE-2024-32004: integrating ownership checking to detect dubious local repositories during cloning...

8.1CVSS7.3AI score0.01271EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/05 12:0 a.m.117 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.6.6)

The version of AOS installed on the remote host is prior to 6.5.6.6. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.6.6 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the stri...

8.6CVSS7.7AI score0.70561EPSS
Exploits5References8
RedhatCVE
RedhatCVE
added 2024/09/04 8:45 p.m.17 views

CVE-2024-44960

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: Check for unset descriptor Make sure the descriptor has been set before looking at maxpacket. This fixes a null pointer panic in this case. This may happen if the gadget doesn't properly set up the endpoint for...

5.5CVSS6.9AI score0.00232EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/09/04 6:35 p.m.20 views

CVE-2024-44955

...

5.9AI score
Exploits0
OSV
OSV
added 2024/09/03 10:15 p.m.10 views

AZL-48801 CVE-2024-45618 affecting package opensc 0.23.0-5

A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions leads to unexpected work with variables that have...

3.9CVSS7AI score0.00287EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/03 9:21 p.m.21 views

CVE-2024-45618 Libopensc: uninitialized values after incorrect or missing checking return values of functions in pkcs15init

A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions leads to unexpected work with variables that have...

3.9CVSS4AI score0.00287EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/03 9:20 p.m.21 views

CVE-2024-45617 Libopensc: uninitialized values after incorrect or missing checking return values of functions in libopensc

A vulnerability was found in OpenSC, OpenSC tools, PKCS11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions leads to...

3.9CVSS6.7AI score0.00302EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/02 10:22 a.m.14 views

CVE-2024-33052 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in FM Host

Memory corruption when user provides data for FM HCI command control operations...

7.8CVSS7.3AI score0.00127EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/02 12:0 a.m.5 views

MediaTek 芯片 安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. A security vulnerability exists in the MediaTek chips that stems from a lack of boundary checking in the vdec component, which could result in an out-of-bounds write...

7.8CVSS6.7AI score0.00081EPSS
Exploits0References2
CNVD
CNVD
added 2024/08/30 12:0 a.m.9 views

Google Chrome heap buffer overflow vulnerability (CNVD-2024-38577)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability, which is caused by incorrect boundary checking in Skia. An attacker can exploit this vulnerability to cause an overflow buffer to execute arbitrary code on the system ...

8.8CVSS7.8AI score0.00384EPSS
Exploits0References1
CNVD
CNVD
added 2024/08/30 12:0 a.m.11 views

Google Chrome heap buffer overflow vulnerability (CNVD-2024-38578)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability that is caused by incorrect boundary checking in Skia. An attacker can exploit this vulnerability to cause an overflow buffer to execute arbitrary code on the system or...

8.8CVSS7.8AI score0.00396EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/08/28 12:34 p.m.4 views

No title provided

REJECTED CVE In the Linux kernel, the following vulnerability has been resolved: x86/xen: Add some null pointer checking to smp.c The Linux kernel CVE team has assigned CVE-2024-26908 to this issue...

6.2AI score
Exploits0References2
NVD
NVD
added 2024/08/26 11:15 a.m.18 views

CVE-2024-43891

In the Linux kernel, the following vulnerability has been resolved: tracing: Have format file honor EVENTFILEFLFREED When eventfs was introduced, special care had to be done to coordinate the freeing of the file meta data with the files that are exposed to user space. The file meta data would hav...

4.7CVSS0.00225EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/08/26 10:10 a.m.12 views

CVE-2024-43891

In the Linux kernel, the following vulnerability has been resolved: tracing: Have format file honor EVENTFILEFLFREED When eventfs was introduced, special care had to be done to coordinate the freeing of the file meta data with the files that are exposed to user space. The file meta data would hav...

4.7CVSS6AI score0.00225EPSS
Exploits0
Rows per page
Query Builder