Lucene search
K

373 matches found

CNNVD
CNNVD
added 2021/06/08 12:0 a.m.6 views

CSME 信息泄露漏洞

CSME is known as the Intel Management Engine BIOS Extension. An information disclosure vulnerability exists in IntelR CSME that stems from improper subsystem initialization in CSME, which could allow a privileged user to locally access sensitive information, resulting in an information disclosure...

4.4CVSS6.5AI score0.00284EPSS
Exploits0References9
ICS
ICS
added 2021/05/11 12:0 a.m.133 views

Siemens SIMATIC S7-1500

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: SIMATIC S7-1500 CPU 1518F-4 Vulnerabilities: Improper Initialization, Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of these Intel...

7.8CVSS8.1AI score0.00357EPSS
Exploits0References11
ICS
ICS
added 2021/05/11 12:0 a.m.93 views

Siemens SIMATIC UltraVNC HMI WinCC Products

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIMATIC HMIs/WinCC Products Vulnerabilities: Improper Initialization, Out-of-bounds Read, Heap-based Buffer Overflow, Stack-based Buffer Overflow, Access of Memory Location After End...

9.8CVSS9.6AI score0.04843EPSS
Exploits0References11
OSV
OSV
added 2021/05/06 1:15 p.m.36 views

CVE-2020-28019

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

7.5CVSS9.4AI score0.61061EPSS
Exploits1References1
NVD
NVD
added 2021/05/06 1:15 p.m.31 views

CVE-2020-28019

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

7.5CVSS0.61061EPSS
Exploits1References1
OSV
OSV
added 2021/05/06 1:15 p.m.1 views

DEBIAN-CVE-2020-28019

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

7.5CVSS7.6AI score0.61061EPSS
Exploits1References1
Prion
Prion
added 2021/05/06 1:15 p.m.54 views

Input validation

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

5CVSS8.4AI score0.61061EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/05/06 4:3 a.m.465 views

CVE-2020-28019

CVE-2020-28019 is an Exim 4 vulnerability: versions prior to 4.94.2 suffer from Improper Initialization that can cause recursion-based stack consumption or other consequences when a client uses BDAT instead of DATA. The issue stems from how certain getc functions are mishandled in that BDAT flow,...

7.5CVSS7.3AI score0.61061EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/05/06 4:3 a.m.29 views

CVE-2020-28019

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

8.5AI score0.61061EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2021/05/06 4:3 a.m.27 views

CVE-2020-28019

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

7.5CVSS8AI score0.61061EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2021/05/06 4:3 a.m.42 views

CVE-2020-28019

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

7.5CVSS7.7AI score0.61061EPSS
Exploits1References1
OSV
OSV
added 2021/05/04 1:30 p.m.3 views

UBUNTU-CVE-2020-28019

Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA...

7.5CVSS7AI score0.61061EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2019:0060-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.26543EPSS
Exploits0References12
CNNVD
CNNVD
added 2021/04/07 12:0 a.m.4 views

Clam AntiVirus 缓冲区错误漏洞

Clam AntiVirus ClamAV is an anti-virus package for use on UNIX-like systems. Mainly used in mail servers, using multi-threaded background operation, you can automatically upgrade the virus database. A denial of service vulnerability exists in Clam AntiVirus versions 0.103.0 and 0.103.1. The...

7.5CVSS8.4AI score0.02219EPSS
Exploits0References11
Gitee
Gitee
added 2021/01/24 7:2 p.m.2 views

Exploit for Improper Initialization in Apple Ipados

This is a PoC exploit for CVE-2020-27950, a vulnerability in the macOS kernel that allows for a port pointer leak. The exploit targets the macOS kernel and leverages a vulnerability in the kalloc.1024 buffer to allocate a controlled buffer with a magic value. The exploit then creates an ipckmsg...

7.1CVSS7.4AI score0.1652EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2020/12/11 12:0 a.m.3 views

The vulnerability of the PDFium browser’s PDF-content processor in Google Chrome allows a hacker to gain unauthorized access to protected information.

The vulnerability of the PDFium browser’s PDF-content processor in Google Chrome relates to an improper initialization of resources. Exploiting this vulnerability could allow attackers to gain unauthorized access to protected information...

4.3CVSS6.6AI score0.01114EPSS
Exploits0References15Affected Software6
Gitee
Gitee
added 2020/12/04 4:44 p.m.24 views

Exploit for Improper Initialization in Docker

sectoolset -- Github安全相关工具集合 主要内容: 0x00 漏洞利用实战练习&CTF安全竞赛 0x01 安全扫描器 0x02 安全防守 0x03 渗透测试 0x04 漏洞库及利用工具(POC,EXP 0x05 二进制及代码分析工具 0x06 威胁情报&蜜罐 0x07 安全文档资料 0x11 所有内容 乌云镜像 乌云镜像 乌云镜像,河蟹 近期安全热点 Nmap 7.9发布,更新Npcap,大量指纹更新 Windows Server域控 Netlogon特权提升漏洞 CVE-2020-1472 暗网中网络安全行业暴露状况研究 五眼联盟国家网络安全技术指导书...

10CVSS7.8AI score0.99512EPSS
Exploits134
OSV
OSV
added 2020/11/23 7:51 p.m.10 views

MGASA-2020-0435 Updated italc packages fix security vulnerabilities

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact e.g., an integer overflow via specially crafted VNC packets...

9.8CVSS9.1AI score0.15089EPSS
Exploits4References4
Prion
Prion
added 2020/11/12 6:15 p.m.22 views

Input validation

Improper initialization in subsystem for IntelR CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, IntelR TXE versions before 4.0.30 IntelR SPS versions before E305.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access...

4.6CVSS7.5AI score0.00357EPSS
Exploits0References5Affected Software3
Intel
Intel
added 2020/06/18 12:0 a.m.47 views

2020.1 IPU – Intel® CSME, SPS, TXE, AMT, ISM and DAL Advisory

Summary: Potential security vulnerabilities in Intel® Converged Security and Manageability Engine CSME, Intel® Server Platform Services SPS, Intel® Trusted Execution Engine TXE, Intel® Active Management Technology AMT, Intel® Standard Manageability ISM and Intel® Dynamic Application Loader DAL ma...

9.8CVSS9AI score0.03536EPSS
Exploits0
Rows per page
Query Builder