Lucene search
K

83 matches found

CNVD
CNVD
added 2020/02/26 12:0 a.m.2 views

Microsoft Windows Network Driver Interface Specification Information Disclosure Vulnerability

The Microsoft Windows operating system is a set of operating systems developed by Microsoft Corporation in the United States. An information disclosure vulnerability exists in the implementation when the Windows Network Driver Interface Specification component fails to properly handle memory, whi...

5.5CVSS6.1AI score0.01454EPSS
Exploits0References1
OSV
OSV
added 2020/02/11 10:15 p.m.2 views

CVE-2020-0705

An information disclosure vulnerability exists when the Windows Network Driver Interface Specification NDIS improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Network Driver Interface Specification NDIS...

5.5CVSS6.7AI score0.01454EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/02/11 9:23 p.m.30 views

CVE-2020-0705

An information disclosure vulnerability exists when the Windows Network Driver Interface Specification NDIS improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Network Driver Interface Specification NDIS...

6.5AI score0.01454EPSS
Exploits0References1
NVD
NVD
added 2019/08/13 9:15 p.m.15 views

CVE-2019-5223

PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution...

7.8CVSS7.9AI score0.00941EPSS
Exploits0References1
OSV
OSV
added 2019/08/13 9:15 p.m.3 views

CVE-2019-5223

PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution...

7.8CVSS7.2AI score0.00941EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/08/13 8:33 p.m.16 views

CVE-2019-5223

PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution...

7.9AI score0.00941EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/22 12:0 a.m.2 views

Huawei PC Manager Authorization Issues Vulnerability

Huawei PC Manager is a computer management application from Huawei China. An authorization issue vulnerability exists in Huawei PC Manager version 9.1.3.1, which arises from the driver's interface not adequately validating data from the userland. An attacker could exploit the vulnerability to...

7.8CVSS7AI score0.00941EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/06/14 12:0 a.m.6 views

The vulnerability in the implementation of the Network Driver Interface Standard (NDIS) on Windows operating systems allows a hacker to increase their privileges.

The vulnerability in the implementation of the Network Driver Interface Standard NDIS for Windows operating systems exists due to the lack of checks for buffer size. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created application...

7CVSS5.7AI score0.00947EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/05/30 12:0 a.m.70 views

CentOS Update for libvirt CESA-2019:1264 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.01411EPSS
Exploits0References2
OSV
OSV
added 2019/05/16 7:29 p.m.4 views

CVE-2019-0707

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it.To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

7CVSS7.4AI score0.00947EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/05/16 6:17 p.m.19 views

CVE-2019-0707

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it.To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

7.1AI score0.00947EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2019/05/14 7:0 a.m.31 views

Windows NDIS Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it. To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

7CVSS2.7AI score0.00947EPSS
Exploits0
OSV
OSV
added 2018/08/15 5:29 p.m.2 views

CVE-2018-8343

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT...

7.8CVSS6AI score0.01193EPSS
Exploits0References3
CNVD
CNVD
added 2018/08/15 12:0 a.m.2 views

Microsoft Windows NDIS Local Elevation of Privilege Vulnerability

Microsoft Windows Network Driver Interface Specification NDIS is a component of Microsoft's Network Driver Interface Specification for use in Windows systems. A local elevation of privilege vulnerability exists in Microsoft Windows NDIS, which stems from ndis.sys not detecting the length of a...

7.8CVSS8AI score0.01193EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2018/08/14 7:0 a.m.32 views

Windows NDIS Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it. To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

7.8CVSS2.7AI score0.01193EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2018/08/14 7:0 a.m.35 views

Windows NDIS Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Network Driver Interface Specification NDIS when ndis.sys fails to check the length of a buffer prior to copying memory to it. To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to...

7.8CVSS2.7AI score0.01193EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/08/14 12:0 a.m.161 views

KB4343909: Windows 10 Version 1803 and Windows Server Version 1803 August 2018 Security Update (Foreshadow)

The remote Windows host is missing security update 4343909. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtai...

9.3CVSS8.3AI score0.73968EPSS
Exploits14References47
Tenable Nessus
Tenable Nessus
added 2018/08/14 12:0 a.m.170 views

KB4343897: Windows 10 Version 1709 And Windows Server Version 1709 August 2018 Security Update (Foreshadow)

The remote Windows host is missing security update 4343897. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtai...

9.3CVSS8.3AI score0.73968EPSS
Exploits14References44
CNVD
CNVD
added 2018/05/17 12:0 a.m.4 views

Intel Online Connect Access NDIS filter driver denial of service vulnerability

Intel Online Connect Access is a two-factor authentication program from Intel Corporation USA. The program is used to protect identity information, login information, etc. NDIS filter driver is one of the NDIS Network Driver Interface Speification filter driver. A security vulnerability exists in...

5.5CVSS5.4AI score0.00304EPSS
Exploits0References1
OSV
OSV
added 2016/06/16 6:59 p.m.3 views

DEBIAN-CVE-2016-2392

The isrndis function in the USB Net device emulator hw/usb/dev-network.c in QEMU before 2.5.1 does not properly validate USB configuration descriptor objects, which allows local guest OS administrators to cause a denial of service NULL pointer dereference and QEMU process crash via vectors...

6.5CVSS6.3AI score0.004EPSS
Exploits0References1
Rows per page
Query Builder