Lucene search
+L

23 matches found

OSV
OSV
added 2026/06/19 8:47 p.m.7 views

GHSA-48PQ-2XQ3-C2M4 CoreWCF: SAML SubjectConfirmation methods and holder-of-key proof keys are not enforced

Impact The relying application is given a ClaimsPrincipal for a subject whose authority over the assertion the sender never proved. There are two distinct exploit shapes: - Holder-of-key downgrade. An attacker who obtains a holder-of-key SAML assertion that was issued without KeyInfo issuer bug,...

7.4CVSS6AI score0.00178EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/06/19 8:47 p.m.7 views

CoreWCF: SAML SubjectConfirmation methods and holder-of-key proof keys are not enforced

Impact The relying application is given a ClaimsPrincipal for a subject whose authority over the assertion the sender never proved. There are two distinct exploit shapes: - Holder-of-key downgrade. An attacker who obtains a holder-of-key SAML assertion that was issued without KeyInfo issuer bug,...

7.4CVSS6AI score0.00178EPSS
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2025/11/24 12:0 a.m.157 views

📄 Flowise Custom MCP Remote Code Execution

This Metasploit module exploits a remote code execution vulnerability in Flowise versions greater than or equal to 2.2.7-patch.1 and less than 3.0.1. The vulnerability exists in the customMCP endpoint /api/v1/node-load-method/customMCP located in...

9.8CVSS8.6AI score0.7231EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-46966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when...

7.8CVSS6.4AI score0.0023EPSS
Exploits0References2
OSV
OSV
added 2024/04/25 7:33 p.m.18 views

CLSA-2024-1714073581 Fix of 16 CVEs

Jammy update: v5.15.81 upstream stable release LP: 2003130 // CVE-url: https://ubuntu.com/security/CVE-2023-1382 - tipc: set con sock in tipcconnalloc - tipc: add an extra connget in tipcconnalloc CVE-url: https://ubuntu.com/security/CVE-2023-1998 - x86/speculation: Allow enabling STIBP with lega...

7.8CVSS7AI score0.01377EPSS
Exploits4References1
SUSE CVE
SUSE CVE
added 2024/02/29 3:56 a.m.4 views

SUSE CVE-2021-46966

In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent cal...

6.7CVSS6.4AI score0.0023EPSS
Exploits0References11
OSV
OSV
added 2024/02/27 7:4 p.m.2 views

DEBIAN-CVE-2021-46966

In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent cal...

7.8CVSS5.7AI score0.0023EPSS
Exploits0References1
OSV
OSV
added 2024/02/27 7:4 p.m.13 views

CVE-2021-46966

In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent cal...

7.8CVSS7.5AI score
Exploits0References9
OSV
OSV
added 2024/02/27 7:4 p.m.6 views

UBUNTU-CVE-2021-46966

In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent cal...

7.8CVSS6.2AI score0.0023EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 5:54 a.m.4 views

SUSE CVE-2011-1021

drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custommethod file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347...

3.6CVSS6.5AI score0.00928EPSS
Exploits1References3
OSV
OSV
added 2021/05/31 3:39 p.m.9 views

UVI-2021-1000121 ACPI: custom_method: fix potential use-after-free issue

ACPI: custommethod: fix potential use-after-free issue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11.20 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.11 views

GSD-2021-1000081 ACPI: custom_method: fix potential use-after-free issue

ACPI: custommethod: fix potential use-after-free issue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.16 views

GSD-2021-1000154 ACPI: custom_method: fix potential use-after-free issue

ACPI: custommethod: fix potential use-after-free issue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.14 views

UVI-2021-1000159 ACPI: custom_method: fix potential use-after-free issue

ACPI: custommethod: fix potential use-after-free issue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.13 views

GSD-2021-1000183 ACPI: custom_method: fix potential use-after-free issue

ACPI: custommethod: fix potential use-after-free issue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.118 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.15 views

GSD-2021-1000159 ACPI: custom_method: fix potential use-after-free issue

ACPI: custommethod: fix potential use-after-free issue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...

7.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.71 views

Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation

No description provided by source. / american-sign-language.c Linux Kernel 2.6.37-rc2 ACPI custommethod Privilege Escalation Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4347 This custommethod file allows to inject...

6.9CVSS0.2AI score0.02203EPSS
Exploits6
OSV
OSV
added 2012/06/21 11:55 p.m.9 views

UBUNTU-CVE-2011-1021

drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custommethod file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347...

3.6CVSS5.9AI score0.00928EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/09/12 7:40 p.m.8 views

kernel: /sys/kernel/debug/acpi/custom_method can bypass module restrictions

drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custommethod file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347...

3.6CVSS7.3AI score0.00928EPSS
Exploits1References4
Prion
Prion
added 2010/12/22 9:0 p.m.22 views

Design/Logic Flaw

The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custommethod file, which allows local users to gain privileges by placing a custom ACPI method in the ACPI interpreter tables, related to the acpidebugfsinit function in drivers/acpi/debugfs.c...

6.9CVSS6.8AI score0.02203EPSS
Exploits6References13Affected Software3
Rows per page
Query Builder