Lucene search
K

584 matches found

CNVD
CNVD
added 2018/06/19 12:0 a.m.4 views

private_address_check ruby gem competition condition vulnerability

privateaddresscheck ruby gem is a Ruby-based checking tool for server-side request forgery attacks. A contention condition vulnerability exists in the privateaddresscheck ruby gem that stems from the program failing to detect the address used by a socket. No detailed vulnerability details are...

4.3CVSS4.7AI score0.00691EPSS
Exploits0References1
CNVD
CNVD
added 2018/03/09 12:0 a.m.2 views

Atlassian Floodlight Controller LoadBalancer Module Denial of Service Vulnerability

Atlassian Floodlight Controller is a Floodlight Controller product from Atlassian Australia.LoadBalancer module is one of the load balancing modules. A contention condition vulnerability exists in the LoadBalancer module in Atlassian Floodlight Controller versions prior to 1.2. A remote attacker...

5.9CVSS6.8AI score0.01903EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/07 12:0 a.m.3 views

Linux kernel denial of service vulnerability (CNVD-2017-27462)

Linux kernel is an open source operating system. A contention condition vulnerability in the Linux kernel fsnotify implementation allows local attackers to exploit the vulnerability to submit specially crafted requests for denial of service attacks...

7CVSS5.8AI score0.01223EPSS
Exploits3References1
OSV
OSV
added 2017/06/02 1:3 p.m.5 views

SUSE-SU-2017:1479-1 Security update for ceph

This update provides Ceph 10.2.6, which brings fixes and enhancements: This security issue was fixed: - CVE-2016-9579: Do not abort RGW server when accepting a CORS request with short origin. bsc1014986 These non-security issues were fixed: - common: Add rdbmap to ceph-common. bsc1029482 -...

7.5CVSS7.5AI score0.04396EPSS
Exploits1References10
CNVD
CNVD
added 2016/06/29 12:0 a.m.5 views

Linux kernel competitive conditions vulnerability (CNVD-2016-04425)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A contention condition vulnerability exists in the 'vopioctl' function in the drivers/misc/mic/vop/vopvringh.c file in Linux kernel 4.6 and earlier. A local attacker can explo...

6.3CVSS7.8AI score0.00404EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2016/05/12 12:0 a.m.77 views

kernel security and bug fix update

3.10.0-327.18.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.18.2 - lib keys: Fix ASN.1 indefinite length object parsing David Howells 1308814 1308815 CVE-2016-0758 3.10.0-327.18.1 - scsi bnx2fc: Fix FCP RSP residual parsing Maurizio Lombardi 1322279 1306342 - mm madvise: fix...

7.2CVSS0.4AI score0.00397EPSS
Exploits0
CNVD
CNVD
added 2016/04/03 12:0 a.m.4 views

Linux kernel Advanced Linux Sound Architecture Framework Competitive Conditions Vulnerability

Linux kernel is an open source operating system. A contention condition vulnerability exists in timer ioctls, the Advanced Linux Sound Architecture framework for Linux kernel, which can be exploited by a local attacker to cause the system to hang, resulting in a denial-of-service attack...

5.1CVSS6.4AI score0.00337EPSS
Exploits0References1
CNVD
CNVD
added 2016/04/03 12:0 a.m.5 views

Linux kernel Advanced Linux Sound Architecture Framework Competitive Conditions Vulnerability (CNVD-2016-01975)

Linux kernel is an open source operating system. A contention condition vulnerability exists in timer ioctls, the Advanced Linux Sound Architecture framework for Linux kernel, which can be exploited by a local attacker to cause the system to hang, resulting in a denial-of-service attack...

5.1CVSS7.5AI score0.00337EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/02/17 12:0 a.m.257 views

Scientific Linux Security Update : kernel on SL7.x x86_64 (20160216)

It was found that the Linux kernel's keys subsystem did not correctly garbage collect uninstantiated keyrings. A local attacker could use this flaw to crash the system or, potentially, escalate their privileges on the system. CVE-2015-7872, Important - A flaw was found in the way the Linux kernel...

7.2CVSS6.2AI score0.00624EPSS
Exploits0References3
CNVD
CNVD
added 2015/12/06 12:0 a.m.3 views

OpenSSL Competitive Conditional Denial of Service Vulnerability

OpenSSL is an open source implementation of SSL for strong encryption of network communications. A security vulnerability exists in OpenSSL, which can be exploited by a remote attacker to send a special PSK identity that triggers a contention condition and then triggers two releases of memory,...

4.3CVSS8.6AI score0.12814EPSS
Exploits1References1
CNVD
CNVD
added 2015/11/13 12:0 a.m.4 views

IBM System Networking Switch Center Contention Condition Vulnerability

IBM System Networking Switch Center is a suite of applications used to remotely monitor and manage Ethernet converged switches from IBM USA, which was acquired by Lenovo of China. A contention condition vulnerability exists in IBM System Networking Switch Center versions prior to 7.3.1.5 and Leno...

7.1CVSS7AI score0.01413EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.62 views

CentOS Update for kernel CESA-2015:1042 centos5

Check the version of kernel SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882189";...

7.2CVSS6.9AI score0.01407EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2015/06/04 12:0 a.m.49 views

CentOS 5 : kernel (CESA-2015:1042)

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

7.2CVSS7AI score0.01407EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2015/06/03 12:0 a.m.77 views

RHEL 5 : kernel (RHSA-2015:1042)

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

7.2CVSS7AI score0.01407EPSS
Exploits3References3
RedHat Linux
RedHat Linux
added 2015/05/12 3:43 p.m.36 views

Important: Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update

Updated kernel-rt packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which giv...

9.3CVSS6.7AI score0.10108EPSS
Exploits0References3
CNVD
CNVD
added 2015/04/09 12:0 a.m.2 views

Apple iOS setreuid Call Denial of Service Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A contention condition error in the Apple iOS kernel setreuid system call allows local attackers to exploit the vulnerability to crash the system...

4CVSS6.2AI score0.00249EPSS
Exploits0References1
CNVD
CNVD
added 2015/02/21 12:0 a.m.2 views

Red Hat JBoss Weld Competitive Conditions Information Disclosure Vulnerability

Red Hat JBoss Weld is a Java EE 6 platform in the CDI Contexts and Dependency Injection, context and dependency injection standard implementation , which provides the Java framework for standard dependency injection DI and component lifecycle management and other functions . A contention conditio...

4.3CVSS7.2AI score0.02051EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/30 12:0 a.m.2 views

Linux Kernel 'fs/fhandle.c' Local Contention Condition Vulnerability

Linux is an open source computer operating system kernel. Linux Kernel 'fs/fhandle.c' has a local competitive condition vulnerability that can be exploited by a local attacker to obtain sensitive information...

1.9CVSS6.5AI score0.00362EPSS
Exploits0References1
CNVD
CNVD
added 2014/12/26 12:0 a.m.2 views

Puppet Server Contention Condition Vulnerability

Puppet is IT automation software that helps system administrators manage their infrastructure. A contention condition vulnerability exists in Puppet Server 0.2.0 that allows local users to obtain sensitive information by accessing the package installation or upgrade service...

1.9CVSS6.2AI score0.00227EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.46 views

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2013:0777-1)

java-160-openjdk was updated to 1.12.5 bnc817157 - Security fixes - S6657673, CVE-2013-1518: Issues with JAXP - S7200507: Refactor Introspector internals - S8000724, CVE-2013-2417: Improve networking serialization - S8001031, CVE-2013-2419: Better font processing - S8001040, CVE-2013-1537: Rework...

10CVSS7.1AI score0.86963EPSS
Exploits15References21
Rows per page
Query Builder