Lucene search
K

7654 matches found

BDU FSTEC
BDU FSTEC
added 2024/08/14 12:0 a.m.9 views

The vulnerability of the software for detecting vulnerabilities and errors in PT Application Inspector, due to improper checking of query parameters, allows a perpetrator to execute arbitrary code.

The vulnerability of the PT Application Inspector’s software for detecting vulnerabilities and errors is related to improper checking of query parameters. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS5.9AI score
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/08/14 12:0 a.m.4 views

MediaTek 芯片 安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company MediaTek. A security vulnerability exists in the MediaTek chips that stems from a lack of boundary checking and possible memory corruption that could lead to remote code execution...

9.8CVSS7.7AI score0.01364EPSS
Exploits0References2
NVD
NVD
added 2024/08/13 5:15 p.m.19 views

CVE-2022-23815

Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution...

8.2CVSS0.00163EPSS
Exploits0References1
CVE
CVE
added 2024/08/13 4:51 p.m.53 views

CVE-2022-23817

CVE-2022-23817 concerns insufficient memory-buffer checking in the AMD Secure Processor’s ASP Secure OS, enabling a local attacker with a malicious Trusted Application to read/write into the kernel virtual address space and potentially escalate privileges. Connected documents (AMD security bullet...

7.3CVSS5.9AI score0.00182EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/08/13 4:51 p.m.22 views

CVE-2022-23817

Insufficient checking of memory buffer in AMD Secure Processor ASP Secure OS may allow an attacker with a malicious trusted application to read/write to the ASP Secure OS kernel virtual address space, potentially resulting in privilege escalation...

7.3CVSS5.9AI score0.00182EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/08/13 4:51 p.m.36 views

CVE-2022-23817

Insufficient checking of memory buffer in AMD Secure Processor ASP Secure OS may allow an attacker with a malicious trusted application to read/write to the ASP Secure OS kernel virtual address space, potentially resulting in privilege escalation...

7.3CVSS0.00182EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/08/13 4:51 p.m.16 views

CVE-2022-23815

Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution...

7.5CVSS8AI score0.00163EPSS
Exploits0References1
CVE
CVE
added 2024/08/13 4:51 p.m.84 views

CVE-2022-23815

CVE-2022-23815 concerns APCB firmware and is supported by multiple connected sources that describe an out-of-bounds write due to improper bounds checking, potentially enabling arbitrary code execution. The affected component is APCB firmware within AMD platform firmware/PI firmware stack, with ex...

8.2CVSS8AI score0.00163EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/08/13 4:51 p.m.21 views

CVE-2022-23815

Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution...

7.5CVSS0.00163EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/13 3:51 p.m.53 views

CVE-2024-36505

An improper access control vulnerability CWE-284 in FortiOS 7.4.0 through 7.4.3, 7.2.5 through 7.2.7, 7.0.12 through 7.0.14 and 6.4.x may allow an attacker who has already successfully obtained write access to the underlying system via another hypothetical exploit to bypass the file integrity...

5.1CVSS0.00159EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/13 3:51 p.m.22 views

CVE-2024-36505

An improper access control vulnerability CWE-284 in FortiOS 7.4.0 through 7.4.3, 7.2.5 through 7.2.7, 7.0.12 through 7.0.14 and 6.4.x may allow an attacker who has already successfully obtained write access to the underlying system via another hypothetical exploit to bypass the file integrity...

5.1CVSS7AI score0.00159EPSS
Exploits0References1
CVE
CVE
added 2024/08/13 3:51 p.m.87 views

CVE-2024-36505

FortiOS contains an improper access control vulnerability (CWE-284) that could allow an attacker who already has write access to bypass the real-time file integrity checking system. Affected versions: FortiOS 7.4.0–7.4.3, 7.2.5–7.2.7, 7.0.12–7.0.14, and all 6.4.x. Root cause: bypass of file integ...

5.5CVSS5.3AI score0.00159EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.5 views

PT-2024-11523 · Unknown +1 · Apcb Firmware +1

Name of the Vulnerable Software and Affected Versions: APCB firmware affected versions not specified Description: The issue is related to improper bounds checking in the APCB firmware, which may allow an attacker to perform an out of bounds write, corrupting the APCB entry. This could potentially...

8.2CVSS6.8AI score0.00163EPSS
Exploits0References10
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.1 views

AMD Graphics Driver 安全漏洞

AMD Graphics Driver is an integrated graphics driver from Ultraviolet Semiconductor AMD. A security vulnerability exists in AMD Graphics Driver that stems from insufficient boundary checking, which allows an attacker to cause a denial of service by sending a malformed message using a malicious VF...

3.3CVSS6.4AI score0.00147EPSS
Exploits0References2
NVD
NVD
added 2024/08/12 4:15 p.m.21 views

CVE-2024-42482

fish-shop/syntax-check is a GitHub action for syntax checking fish shell files. Improper neutralization of delimiters in the pattern input specifically the command separator ; and command substitution characters and mean that arbitrary command injection is possible by modification of the input...

6.5CVSS0.00821EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/08/12 3:35 p.m.16 views

CVE-2024-42482 fish-shop/syntax-check Improper Neutralization of Delimiters

fish-shop/syntax-check is a GitHub action for syntax checking fish shell files. Improper neutralization of delimiters in the pattern input specifically the command separator ; and command substitution characters and mean that arbitrary command injection is possible by modification of the input...

4.8CVSS7.3AI score0.00821EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/08/12 3:35 p.m.37 views

CVE-2024-42482 fish-shop/syntax-check Improper Neutralization of Delimiters

fish-shop/syntax-check is a GitHub action for syntax checking fish shell files. Improper neutralization of delimiters in the pattern input specifically the command separator ; and command substitution characters and mean that arbitrary command injection is possible by modification of the input...

4.8CVSS0.00821EPSS
Exploits0References3
Redos
Redos
added 2024/08/12 12:0 a.m.45 views

ROS-20240812-15

Apache HTTP Server kernel vulnerability is related to ignoring outdated configuration of the of handlers by the "AddType" function. Exploitation of the vulnerability could allow an attacker acting remotely to disclose protected information. remotely to disclose protected information Vulnerability...

7.5CVSS6.8AI score0.35447EPSS
Exploits3
CNVD
CNVD
added 2024/08/09 12:0 a.m.10 views

Google Chrome Buffer Overflow Vulnerability (CNVD-2024-35261)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a buffer overflow vulnerability, which is caused by incorrect bounds checking in Layout. An attacker can exploit the vulnerability to cause a buffer overflow to execute arbitrary code on the system or caus...

8.8CVSS7.8AI score0.00645EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/08 5:27 p.m.40 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Vim-minimal Package Issues

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Vim-minimal Package Issues. This package has been removed from the base image used by our Speech Services and the following vulnerabilities have been addressed. Please read the details for remediatio...

9.8CVSS8.8AI score0.02075EPSS
Exploits12Affected Software1
Rows per page
Query Builder