CVE-2019-0148

Resource leak in i40e driver for IntelR Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable a denial of service via local access...

CVE-2019-0147

Insufficient input validation in i40e driver for IntelR Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable a denial of service via local access...

CVE-2019-0147

CVE-2019-0147 affects the i40e driver for Intel Ethernet 700 Series Controllers. Insufficient input validation in the i40e driver versions before 7.0 may allow an authenticated local user to cause a denial of service. Connected advisories reference this CVE across Linux distributions (e.g., Euler...

CVE-2019-0146

The CVE-2019-0146 issue affects the i40e driver for Intel Ethernet 700 Series Controllers. A resource leak in the i40e driver has been observed in versions prior to 2.8.43, which may allow an authenticated local attacker to cause a denial of service. The connected advisories corroborate that expl...

CVE-2019-0146

Resource leak in i40e driver for IntelR Ethernet 700 Series Controllers versions before 2.8.43 may allow an authenticated user to potentially enable a denial of service via local access...

CVE-2019-0146

Resource leak in i40e driver for IntelR Ethernet 700 Series Controllers versions before 2.8.43 may allow an authenticated user to potentially enable a denial of service via local access...

CVE-2019-0143

Intel Ethernet 700 Series Controllers (firmware/software prior to version 7.0) are affected by CVE-2019-0143 due to an unhandled exception in kernel-mode drivers, potentially allowing a locally authenticated user to cause a denial of service. Intel’s advisory INTEL-SA-00255 and vendor mitigations...

CVE-2019-0145

CVE-2019-0145 : Buffer overflow in the i40e driver for Intel(R) Ethernet 700 Series Controllers, affecting versions before 7.0. An authenticated local user can potentially escalate privileges. The vulnerability arises in the i40e driver implementation and is documented in multiple advisories refe...

CVE-2019-0145

Buffer overflow in i40e driver for IntelR Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable an escalation of privilege via local access...

CVE-2019-0140

CVE-2019-0140 is a buffer overflow in firmware for Intel Ethernet 700 Series Controllers affecting Citrix ADC/ Gateway platforms. The issue can enable privilege escalation for an unauthenticated attacker with Layer 2 access to the device, via adjacent access on affected MPX/SDX configurations. Ci...

CVE-2019-15948

Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller devices, when LE scan mode is used, allow remote attackers to trigger a buffer overflow via a malformed Bluetooth Low Energy advertising packet, to cause a denial of service or potentially execute arbitrary code. This affects...

Intel Releases Security Updates

Intel has released security updates to address vulnerabilities in multiple products. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the following Intel advisories and apply the necessary updates: BMC Advisory INTEL-SA-00313 UEFI Advisory...

PT-2019-6021

Name of the Vulnerable Software and Affected Versions Modicon Controllers versions affected versions not specified Description A vulnerability exists in Modicon Controllers, which could cause the disclosure of FTP hardcoded credentials when using the Web server of the controller on an unsecure...

2019.2 IPU – Intel® Ethernet 700 Series Controllers Advisory

Summary: Potential security vulnerabilities in Intel® Ethernet 700 Series Controllers may allow an escalation of privilege, denial of service or information disclosure. Intel is releasing software and firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID:...

HPSBHF03635 rev. 3 - Intel 2019.2 IPU Ethernet 700 Series Controllers Security Updates

Potential Security Impact Escalation of Privilege, Denial of Service, or Information Disclosure Source: Intel, HP, HP Product Security Response Team PSRT Reported by: Intel VULNERABILITY SUMMARY Multiple potential security vulnerabilities have been identified with Intel® Ethernet 700 Series...

Rockwellautomation 1763-l16awa Exposure of Sensitive Information to an Unauthorized Actor

An Information Exposure issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00...

Rockwellautomation Micrologix URL Redirection to Untrusted Site ('Open Redirect')

In Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earlier, MicroLogix 1100 Controllers v14.00 and earlier, CompactLogix 5370 L1 controllers v30.014 and earlier, CompactLogix 5370 L2 controllers v30.014 and earlier, CompactLogix 5370 L3 controllers...

Rockwellautomation Ethernet\/ip Improper Restriction of Operations within the Bounds of a Memory Buffer

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...

Rockwellautomation 1763-l16awa Use of Insufficiently Random Values

A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A...

CVE-2019-18818

strapi before 3.0.0-beta.17.5 mishandles password resets within packages/strapi-admin/controllers/Auth.js and packages/strapi-plugin-users-permissions/controllers/Auth.js...