Lucene search
K

61 matches found

NVD
NVD
added 2024/10/21 1:15 p.m.5 views

CVE-2024-49851

In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...

5.5CVSS0.00219EPSS
Exploits0References12
OSV
OSV
added 2024/10/21 1:15 p.m.1 views

DEBIAN-CVE-2024-49851

In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...

5.5CVSS5.7AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 1:15 p.m.1 views

UBUNTU-CVE-2024-49851

In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References43
Vulnrichment
Vulnrichment
added 2024/10/21 12:18 p.m.22 views

CVE-2024-49851 tpm: Clean up TPM space after command failure

In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...

7.2AI score0.00219EPSS
Exploits0References8
CVE
CVE
added 2024/10/21 12:18 p.m.170 views

CVE-2024-49851

The CVE CVE-2024-49851 affects the Linux kernel TPM subsystem. The vulnerability originated from tpm_dev_transmit preparing TPM space before transmission and not rolling back this preparation if a command fails, potentially leaking transient TPM handles when the device is closed afterwards. The p...

5.5CVSS7.1AI score0.00219EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2024/10/21 12:18 p.m.18 views

CVE-2024-49851 tpm: Clean up TPM space after command failure

In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...

0.00219EPSS
Exploits0References8
OSV
OSV
added 2024/10/21 12:18 p.m.7 views

CVE-2024-49851 tpm: Clean up TPM space after command failure

In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...

5.5CVSS6.5AI score0.00219EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the failure of the tpm driver to clean up TPM space after a command failure...

5.5CVSS6.7AI score0.00219EPSS
Exploits0References10
OSV
OSV
added 2024/09/04 8:15 p.m.4 views

AZL-48807 CVE-2024-45006 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration re-enumerating full-speed devices after a failed address device command can trigger a NULL pointer dereference. Full-speed devices may need to reconfigure th...

5.5CVSS6.3AI score0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/21 6:10 a.m.26 views

CVE-2022-48884 net/mlx5: Fix command stats access after free

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix command stats access after free Command may fail while driver is reloading and can't accept FW commands till command interface is reinitialized. Such command failure is being logged to command stats. This results in...

0.00205EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/05/25 3:34 a.m.4 views

SUSE CVE-2021-47443

In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digitaltglistenmdaa 'params' is allocated in digitaltglistenmdaa, but not free when digitalsendcmd failed, which will cause memory leak. Fix it by freeing 'params' if digitalsendcmd retur...

5.5CVSS6.5AI score0.00226EPSS
Exploits0References11
OSV
OSV
added 2024/05/22 7:15 a.m.1 views

DEBIAN-CVE-2021-47442

In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digitalinsendsddreq 'skb' is allocated in digitalinsendsddreq, but not free when digitalinsendcmd failed, which will cause memory leak. Fix it by freeing 'skb' if digitalinsendcmd return...

5.5CVSS5.1AI score0.00226EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 6:0 a.m.2 views

SUSE CVE-2010-1083

The processcomplcompat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for physically proximate attackers to obtain sensiti...

4.7CVSS4.9AI score0.00361EPSS
Exploits1References6
CNVD
CNVD
added 2021/04/27 12:0 a.m.5 views

Sentry Hardware Sentry KM Information Disclosure Vulnerability

Hardware Sentry KM is a hardware device view from Sentry France. It takes hardware monitoring in TrueSight to a new level by providing a dedicated view in TrueSight Presentation Server. An information disclosure vulnerability exists in Hardware Sentry KM versions prior to 10.0.01, which stems fro...

7.5CVSS6.4AI score0.00602EPSS
Exploits0References1
OSV
OSV
added 2021/04/23 10:15 p.m.1 views

CVE-2021-31791

In Hardware Sentry KM before 10.0.01 for BMC PATROL, a cleartext password may be discovered after a failure or timeout of a command...

7.5CVSS7.1AI score0.00602EPSS
Exploits0References1
OSV
OSV
added 2020/03/20 9:15 p.m.3 views

DEBIAN-CVE-2019-15522

An issue was discovered in LINBIT csync2 through 2.0. csyncdaemonsession in daemon.c neglects to force a failure of a hello command when the configuration requires use of SSL...

9.8CVSS6.8AI score0.01854EPSS
Exploits0References1
Citrix
Citrix
added 2019/10/03 12:0 a.m.6 views

Unable to unlock iOS or iPadOS devices via Administration Console after upgrading to 13.1

Unable to unlock iPhone/iPad from Citrix Endpoint Management administration console after upgrading to iOS/iPadOS 13.1+. Note:No error message is displayed when command fails. The device ignores the command...

7.1AI score
Exploits0
Citrix
Citrix
added 2018/10/09 12:0 a.m.7 views

Windows 10 v1903 and v1909 – Citrix Known Issues

Microsoft releases software updates for Windows 10 twice a year through the Semi-Annual Channel. Microsoft released its Semi-Annual Channel called 'May 2019 Update' v1903 in May 2019 and released its nextSemi-Annual Channel called 'November 2019 Update' v1909 in November 2019. This article is...

6.9AI score
Exploits0
Citrix
Citrix
added 2016/08/26 12:0 a.m.10 views

Propagation Fails with error "Failed to get the end status of the server configuration update."

"Failed to get the end status of the server configuration update." "Failure to notify of configuration update." "An erorr occurred running the command : 'Add-DSFeatureInstances'...

7.2AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/09/29 2:49 p.m.4 views

kernel: information leak via userspace USB interface

The processcomplcompat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for physically proximate attackers to obtain sensiti...

4.7CVSS6.2AI score0.00361EPSS
Exploits1References4
Rows per page
Query Builder