Lucene search
K

2567 matches found

Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.2 views

PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal

...

7.8CVSS6.7AI score0.00228EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/09/09 4:0 p.m.5 views

keycloak: potential bypass of brute force protection

A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. Thi...

6.5CVSS5.8AI score0.00793EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/09/09 12:0 a.m.5 views

The vulnerability of the signal handler in the sshd(8) program of the FreeBSD operating system allows a hacker to execute arbitrary code in the root context.

The vulnerability of the signal handler in the sshd8 program of the FreeBSD operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the root context...

8.1CVSS7.5AI score0.02038EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/09/05 5:15 a.m.5 views

CVE-2024-43102

Concurrent removals of certain anonymous shared memory mappings by using the UMTXSHMDESTROY sub-request of UMTXOPSHM can lead to decreasing the reference count of the object representing the mapping too many times, causing it to be freed too early. A malicious code exercizing the UMTXSHMDESTROY...

10CVSS6.1AI score0.00681EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/05 4:54 a.m.59 views

CVE-2024-43102 umtx Kernel panic or Use-After-Free

Concurrent removals of certain anonymous shared memory mappings by using the UMTXSHMDESTROY sub-request of UMTXOPSHM can lead to decreasing the reference count of the object representing the mapping too many times, causing it to be freed too early. A malicious code exercizing the UMTXSHMDESTROY...

7.4AI score0.00681EPSS
Exploits0References1
CVE
CVE
added 2024/09/05 4:54 a.m.172 views

CVE-2024-43102

CVE-2024-43102 describes a kernel-level issue in FreeBSD involving concurrent removals of anonymous shared memory mappings via the UMTX_SHM_DESTROY sub-request of UMTX_OP_SHM. The root cause is that the reference count for the mapping object can be decremented too many times, causing premature fr...

10CVSS9.6AI score0.00681EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/09/04 8:15 p.m.14 views

CVE-2024-44991

In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...

5.5CVSS0.00245EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/09/04 7:54 p.m.13 views

CVE-2024-44991 tcp: prevent concurrent execution of tcp_sk_exit_batch

In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...

0.00245EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/09/04 7:54 p.m.18 views

CVE-2024-44991 tcp: prevent concurrent execution of tcp_sk_exit_batch

In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...

7AI score0.00245EPSS
Exploits0References4
OSV
OSV
added 2024/09/04 7:54 p.m.14 views

CVE-2024-44991 tcp: prevent concurrent execution of tcp_sk_exit_batch

In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...

5.5CVSS6AI score0.00245EPSS
Exploits0References8
CVE
CVE
added 2024/09/04 7:54 p.m.103 views

CVE-2024-44991

CVE-2024-44991 affects the Linux kernel TCP stack: concurrent calls to tcp_sk_exit_batch() can race with inet_twsk_purge() across dying netns, risking timewait sockets of the exiting netns. The root cause: after the net/core/net_namespace change (commit that batches inet_twsk_purge), tcp_twsk_pur...

5.5CVSS6.1AI score0.00245EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2024/09/04 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible concurrent execution of the tcpskexitbatch function of the tcp component...

5.5CVSS6.5AI score0.00245EPSS
Exploits0References6
NVD
NVD
added 2024/09/02 12:15 p.m.31 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously...

8.4CVSS0.00165EPSS
Exploits0References1
NVD
NVD
added 2024/09/02 12:15 p.m.19 views

CVE-2024-38401

Memory corruption while processing concurrent IOCTL calls...

7.8CVSS0.00127EPSS
Exploits0References1
CVE
CVE
added 2024/09/02 10:22 a.m.58 views

CVE-2024-38401

CVE-2024-38401 describes a memory corruption issue due to a use-after-free in the Qualcomm IPC component when processing concurrent IOCTL calls on Qualcomm chipsets. Affected software: Qualcomm IPC on Qualcomm chipsets (per CVE listing). Root cause: improper handling of concurrent IOCTL processin...

7.8CVSS7.9AI score0.00127EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/09/02 10:22 a.m.31 views

CVE-2024-38401 Use After Free in Qualcomm IPC

Memory corruption while processing concurrent IOCTL calls...

7.8CVSS0.00127EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/02 12:0 a.m.7 views

PT-2024-25100 · Qualcomm · Qualcomm Snapdragon Auto

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Auto affected versions not specified Description: The issue is related to memory corruption that occurs when two threads attempt to map and unmap a single node at the same time. This can lead to unpredictable behavior and...

8.4CVSS7.2AI score0.00165EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/09/02 12:0 a.m.6 views

PT-2024-27982 · Qualcomm · Snapdragon +41

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: Memory corruption can occur when processing multiple IOCTL calls concurrently. This issue is related to the processing of concurrent IOCTL calls, which...

7.8CVSS7.1AI score0.00127EPSS
Exploits0References7
CVE
CVE
added 2024/08/31 1:22 p.m.179 views

CVE-2024-44946

CVE-2024-44946 affects the Linux kernel kcm subsystem (kcm_sendmsg). The issue was a use-after-free/race: while MSG_MORE skb construction was in progress, another thread could touch it, leading to a double-free in kcm_release() when the skb remained in the write queue. The fix serialises kcm_send...

5.5CVSS6.4AI score0.00824EPSS
Exploits0References10Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/29 12:0 a.m.5 views

PT-2024-33715

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A dentry leak may occur in the Linux kernel when a lookup cookie and a cull are concurrent. This happens because the reference count obtained by lookup one positive unlocked in cachefiles loo...

5.5CVSS5.5AI score0.00234EPSS
Exploits0
Rows per page
Query Builder