CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3787 matches found

Positive Technologies•added 2022/09/02 12:0 a.m.•4 views

PT-2022-15219 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to memory corruption in audio due to the lack of a check for an invalid routing address into the APR Routing table. This affects various Qualcomm Snapdragon...

7.8CVSS7.7AI score0.00119EPSS

Exploits0References2

Positive Technologies•added 2022/09/02 12:0 a.m.•3 views

PT-2022-15223 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to improper validation of backend id in the PCM routing process, which can lead to memory corruption. This affects various Qualcomm Snapdragon products,...

8.4CVSS7.4AI score0.00119EPSS

Exploits0References3

Positive Technologies•added 2022/09/02 12:0 a.m.•3 views

PT-2022-15211 · Qualcomm · Snapdragon Connectivity +2

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to out of bounds writing while verifying device IDs due to an improper length check before copying the data. This affects Snapdragon Compute, Snapdragon...

7.8CVSS7.5AI score0.00119EPSS

Exploits0References3

ATTACKERKB•added 2022/08/22 3:15 p.m.•1 views

CVE-2021-3590

A flaw was found in Foreman project. A credential leak was identified which will expose Azure Compute Profile password through JSON of the API output. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS5.4AI score0.00536EPSS

Exploits0References3

NVD•added 2022/08/22 3:15 p.m.•16 views

CVE-2021-3590

8.8CVSS0.00536EPSS

Exploits0References2

Prion•added 2022/08/22 3:15 p.m.•20 views

Design/Logic Flaw

6.5CVSS8.6AI score0.00536EPSS

Exploits0References2Affected Software2

Cvelist•added 2022/08/22 2:48 p.m.•18 views

CVE-2021-3590

8.9AI score0.00536EPSS

Exploits0References2

CVE•added 2022/08/22 2:48 p.m.•2045 views

CVE-2021-3590

The CVE-2021-3590 entry concerns the Foreman project, where a credential leak could expose the Azure Compute Profile password through the JSON output of the API. The described impact affects data confidentiality, integrity, and availability. There are no concrete remediation steps or exploit spec...

8.8CVSS8.6AI score0.00536EPSS

Exploits0References2Affected Software1

CNNVD•added 2022/08/22 12:0 a.m.•3 views

Foreman 安全漏洞

Foreman is a set of lifecycle management tools for use in physical and virtual servers. The tool provides features such as service provisioning, configuration management, and reporting status. Foreman has a security vulnerability that stems from an identified credential leak, which exposes Azure...

8.8CVSS7.7AI score0.00536EPSS

Exploits0References3

Virtuozzo•added 2022/08/22 12:0 a.m.•16 views

Virtuozzo Hybrid Infrastructure 5.2 Hotfix 1 (5.2.0-141)

This update provides important fixes for the compute service. Vulnerability id: VSTOR-56942 If a virtual machine is connected to a VLAN-based physical network, the VM may have no network connectivity after its migration due to a missing ARP announcement. Vulnerability id: VSTOR-56792, VSTOR-56789...

1.9AI score

Exploits0

Tenable Nessus•added 2022/08/18 12:0 a.m.•33 views

SUSE SLED15 / SLES15 : Recommended update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures, python-coverage, python-oniconfig, python-unittest-mixins (SUSE-SU-2022:2831-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2831-1 advisory. - A denial of service via regular expression in the py.path.svnwc component of py aka python-py through 1.9.0 could be...

7.5CVSS6.8AI score0.04607EPSS

Exploits0References5

CNNVD•added 2022/08/16 12:0 a.m.•2 views

SWFTools 缓冲区错误漏洞

SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools that stems from a segmentation violation in FoFiTrueType::computeTableChecksumunsigned char, int in the file /xpdf/FoFiTrueType.cc...

5.5CVSS5.6AI score0.00284EPSS

Exploits1References2

Rockylinux•added 2022/08/15 1:29 p.m.•21 views

vulkan bug fix and enhancement update

An update is available for shaderc, glslang, spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

0.8AI score

Exploits0

Virtuozzo•added 2022/08/15 12:0 a.m.•18 views

Virtuozzo Hybrid Infrastructure 5.2 (5.2.0-135)

In this release, Virtuozzo Hybrid Infrastructure provides a range of new features that enhance compute services, the cluster management and upgrade process, monitoring and alerts, the user interface, and the documentation. Additionally, this release delivers stability improvements and addresses...

0.5AI score

Exploits0

Github Security Blog•added 2022/08/04 12:0 a.m.•23 views

OpenStack Nova Changing vnic_type breaks compute service restart

An issue was discovered in OpenStack Nova before 23.2.2, 24.x before 24.1.2, and 25.x before 25.0.2. By creating a neutron port with the direct vnictype, creating an instance bound to that port, and then changing the vnictype of the bound port to macvtap, an authenticated user may cause the compu...

3.3CVSS6.9AI score0.00294EPSS

Exploits1References11Affected Software1