Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

100 matches found

Vulnrichment
Vulnrichmentadded 2024/08/28 11:30 p.m.21 views

CVE-2024-8250 Expired Pointer Dereference in Wireshark

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file...

7.8CVSS7.6AI score0.00032EPSS
Exploits1References2
CNNVD
CNNVDadded 2024/08/07 12:0 a.m.0 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from the filemap module's use of pteoffsetmap in filemapfaultrecheckptenone could lead to the use of a PTL pointer...

3.3CVSS4AI score0.00029EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2024/04/25 12:0 a.m.27 views

Fedora 38 : squid (2024-a414a81d47)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-a414a81d47 advisory. - New squid 6.9 - security update Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

8.6CVSS7.1AI score0.12145EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2024/04/10 12:0 a.m.59 views

Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : Squid vulnerabilities (USN-6728-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6728-1 advisory. Joshua Rogers discovered that Squid incorrectly handled collapsed forwarding. A remote attacker could possibly use this issue to caus...

8.6CVSS6.8AI score0.12145EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2024/04/03 12:0 a.m.63 views

Amazon Linux 2023 : squid (ALAS2023-2024-578)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-578 advisory. Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing...

9.8CVSS8.2AI score0.12145EPSS
Exploits2References14
Redos
Redosadded 2024/03/29 12:0 a.m.37 views

ROS-20240329-02

A vulnerability in the Squid proxy server is related to the dereferencing of an expired pointer. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS6.7AI score0.12145EPSS
Exploits1
BDU FSTEC
BDU FSTECadded 2024/03/18 12:0 a.m.2 views

The vulnerability of the sopen_FAMOS_read function in the libbiosig medical signal processing library allows a attacker to execute arbitrary code using a specially created file.

The vulnerability of the sopenFAMOSread function in the libbiosig library is related to the output of an operation outside the buffer in memory, as a result of a pointer being reassigned with an expired value. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS8.4AI score0.00543EPSS
Exploits1References5Affected Software2
Tenable Nessus
Tenable Nessusadded 2024/02/06 12:0 a.m.41 views

Amazon Linux 2 : squid (ALAS-2024-2433)

The version of squid installed on the remote host is prior to 3.5.20-17. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2433 advisory. Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial...

6.5CVSS6.6AI score0.12145EPSS
Exploits1References4
Amazon
Amazonadded 2024/02/05 12:0 a.m.38 views

Medium: squid

Issue Overview: Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error page...

6.5CVSS7.3AI score0.12145EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2024/02/02 12:0 a.m.38 views

SUSE SLES15 Security Update : squid (SUSE-SU-2024:0298-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0298-1 advisory. - Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1...

8.6CVSS7AI score0.12145EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2024/02/02 12:0 a.m.41 views

SUSE SLES12 Security Update : squid (SUSE-SU-2024:0296-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0296-1 advisory. - Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1...

8.6CVSS7AI score0.12145EPSS
Exploits1References7
NVD
NVDadded 2024/01/24 12:15 a.m.14 views

CVE-2024-23638

Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error pages for Client...

6.5CVSS7.2AI score0.12145EPSS
Exploits1References9
AlpineLinux
AlpineLinuxadded 2024/01/24 12:15 a.m.30 views

CVE-2024-23638

Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error pages for Client...

6.5CVSS6.9AI score0.12145EPSS
Exploits1
Prion
Prionadded 2024/01/24 12:15 a.m.49 views

Design/Logic Flaw

Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error pages for Client...

4CVSS6.9AI score0.12145EPSS
Exploits1References7Affected Software1
Cvelist
Cvelistadded 2024/01/23 11:23 p.m.31 views

CVE-2024-23638 SQUID-2023:11 Denial of Service in Cache Manager

Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of Service when generating error pages for Client...

6.5CVSS7.4AI score0.12145EPSS
Exploits1References9
BDU FSTEC
BDU FSTECadded 2023/12/11 12:0 a.m.1 views

The vulnerability of the GSER and HID USB host on Azure RTOS USBX interfaces allows a perpetrator to execute arbitrary code.

The vulnerability of the GSER and HID USB interfaces in Azure RTOS USBX is related to insufficient checking of exclusive states due to the pointer being set to an expired value. Exploiting this vulnerability allows a perpetrator to execute arbitrary code...

6.8CVSS8.1AI score0.01633EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2023/12/05 1:15 a.m.10 views

CVE-2023-48696

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include components in host class,...

9.8CVSS0.00639EPSS
Exploits0References1
Prion
Prionadded 2023/12/05 1:15 a.m.14 views

Null pointer dereference

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host...

7.5CVSS8.2AI score0.01633EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/12/05 12:25 a.m.7 views

CVE-2023-48698 Azure RTOS USBX Remote Code Execution Vulnerability

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host...

6.8CVSS8.2AI score0.01633EPSS
Exploits0References1
CVE
CVEadded 2023/12/05 12:24 a.m.51 views

CVE-2023-48694

CVE-2023-48694 : Azure RTOS USBX contains an expired pointer dereference and type confusion vulnerability that can lead to remote code execution. Affected: USBX in RTOS v6.2.1 and earlier (host stack, host class, device-linked classes such as ASIX, Prolific, SWAR, audio, CDC ECM). Root cause: poi...

9.8CVSS8AI score0.07446EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder