Lucene search
K

479 matches found

BDU FSTEC
BDU FSTEC
added 2016/09/07 12:0 a.m.5 views

The vulnerability of the QEMU hardware emulation software, which allows a hacker to read memory on the host machine

The vulnerability of the megasasdcmdcfgread function in the hw/scsi/megasas.c file of the hardware emulation software QEMU is related to the creation of a host adapter for the MegaRAID SAS 8708EM2 device. Exploiting this vulnerability allows an attacker to read memory from the host device by usin...

1.9CVSS6.5AI score0.0041EPSS
Exploits0References5
Cvelist
Cvelist
added 2016/09/02 2:0 p.m.28 views

CVE-2016-5105

The megasasdcmdcfgread function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface MFI command...

5.5AI score0.0041EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2016/09/02 2:0 p.m.50 views

CVE-2016-5106

The megasasdcmdsetproperties function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest administrators to cause a denial of service out-of-bounds write access via vectors involving a MegaRAID Firmware Interface MFI command...

6CVSS6.6AI score0.00385EPSS
Exploits0
OSV
OSV
added 2016/05/30 12:0 a.m.3 views

UBUNTU-CVE-2016-5105

The megasasdcmdcfgread function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface MFI command...

4.4CVSS6.7AI score0.0041EPSS
Exploits0References4
OSV
OSV
added 2016/05/30 12:0 a.m.2 views

UBUNTU-CVE-2016-5106

The megasasdcmdsetproperties function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest administrators to cause a denial of service out-of-bounds write access via vectors involving a MegaRAID Firmware Interface MFI command...

6CVSS6.8AI score0.00385EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2016/05/27 5:49 a.m.33 views

CVE-2016-5105

The megasasdcmdcfgread function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest administrators to read host memory via vectors involving a MegaRAID Firmware Interface MFI command...

4.4CVSS4.6AI score0.0041EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/01/19 12:0 a.m.6 views

The vulnerability of the Mac OS X operating system, which allows a hacker to increase their privileges

The vulnerability of the kernel loader in the EFI component of the Mac OS X operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges through a specially created path name...

7.2CVSS7.2AI score0.00354EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2015/11/19 6:0 a.m.4 views

grub2: modules built in on EFI builds that allow loading arbitrary code, circumventing secure boot

It was discovered that grub2 builds for EFI systems contained modules that were not suitable to be loaded in a Secure Boot environment. An attacker could use this flaw to circumvent the Secure Boot mechanisms and load non-verified code. Attacks could use the boot menu if no password was set, or t...

2.6CVSS5.8AI score0.00335EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2015/10/21 12:0 a.m.7 views

The vulnerability of the Mac OS X operating system, which allows a hacker to trigger a service failure

The vulnerability of the EFI component in the Mac OS X operating system is related to errors in specifying the range of protected registers. Exploiting this vulnerability can allow a malicious actor to trigger a service failure through a specially crafted application...

7.1CVSS5.5AI score0.01562EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2015/10/15 12:0 a.m.8 views

PT-2015-7636

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description The issue allows local users to bypass intended securelevel/secureboot restrictions. This is achieved by leveraging improper handling of the secure boot flag across kexec reboot when...

5.5CVSS6.3AI score0.00405EPSS
Exploits0References26
RedHat Linux
RedHat Linux
added 2015/08/06 2:42 a.m.4 views

kernel: execution in the early microcode loader

A stack-based buffer overflow flaw was found in the Linux kernel's early load microcode functionality. On a system with UEFI Secure Boot enabled, a local, privileged user could use this flaw to increase their privileges to the kernel ring0 level, bypassing intended restrictions in place...

6.9CVSS7AI score0.0042EPSS
Exploits0References4
CNVD
CNVD
added 2015/08/06 12:0 a.m.3 views

Multiple Dell devices vulnerable

Dell Latitude, etc. are the products of the United States Dell Dell company.Dell Latitude and OptiPlex are notebook product models; Precision Mobile Workstation is a precision mobile workstation; Precision Workstation CS is a set of mobile workstation Client; BIOS Basic Input-Output System is a s...

7.2CVSS6.5AI score0.00765EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/26 12:0 a.m.4 views

IBM Unified Extensible Firmware Interface Denial of Service Vulnerability

The IBM Unified Extensible Firmware Interface is a standard detailing type interfaces for operating systems to automatically load from a pre-booted operating environment, to an operating system that simplifies the boot process and saves time. A security vulnerability exists in IBM Unified...

2.1CVSS6.8AI score0.008EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/05 12:0 a.m.3 views

Apple Mac computer firmware 0day EFI rootkit vulnerability

MAC is apple's self-developed operating system, now commonly used operating systems are windows, linux, mac. MacBook Pro Retina, MacBook Pro and MacBook Air computers may have a security vulnerability in the EFI firmware update, the attacker does not need to physically touch the target machine, c...

7AI score
Exploits0References1
CNVD
CNVD
added 2015/01/09 12:0 a.m.3 views

Multiple Product UEFI System Local Security Bypass Vulnerabilities

UEFI is a standard that details a type of interface. This interface is used to automatically load the operating system from a pre-booted operating environment onto an operating system. A local security bypass vulnerability exists in multiple product UEFI systems where a boot script is used to...

6.5AI score
Exploits0References1
The Hacker News
The Hacker News
added 2014/07/25 11:46 p.m.28 views

Kali Linux 1.0.8 — New Release Supports UEFI Boot

Great news for Hackers and Backtrack Linux fans! Offensive Security, the developers of one of the most advance open source operating system for penetration testing known as 'KALI Linux', has finally announced the release of the latest version i.e. Kali Linux 1.0.8. Kali Linux is based upon Debian...

6.6AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/09/12 7:40 p.m.5 views

kernel: validate size of EFI GUID partition entries

The isgptvalid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface EFI GUID Partition Table GPT entry, which allows physically proximate attackers to cause a denial of service heap-based buffer overflow and OOPS or obtain...

6.1CVSS7AI score0.00542EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/08/23 2:30 p.m.8 views

kernel: validate size of EFI GUID partition entries

The isgptvalid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface EFI GUID Partition Table GPT entry, which allows physically proximate attackers to cause a denial of service heap-based buffer overflow and OOPS or obtain...

6.1CVSS7AI score0.00542EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/07/15 5:14 a.m.5 views

kernel: validate size of EFI GUID partition entries

The isgptvalid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface EFI GUID Partition Table GPT entry, which allows physically proximate attackers to cause a denial of service heap-based buffer overflow and OOPS or obtain...

6.1CVSS7AI score0.00542EPSS
Exploits1References4
Rows per page
Query Builder