Lucene search
K

9108 matches found

Vulnrichment
Vulnrichment
added 2023/04/27 12:0 a.m.8 views

CVE-2023-26243

An issue was discovered in the Hyundai Gen5WL in-vehicle infotainment system AEEPEEUR.S5WL001.001.211214. The decryption binary used to decrypt firmware files has an information leak that allows an attacker to read the AES key and initialization vector from memory. An attacker may exploit this to...

7.3AI score0.00347EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/04/27 12:0 a.m.26 views

CVE-2023-26243

An issue was discovered in the Hyundai Gen5WL in-vehicle infotainment system AEEPEEUR.S5WL001.001.211214. The decryption binary used to decrypt firmware files has an information leak that allows an attacker to read the AES key and initialization vector from memory. An attacker may exploit this to...

7.5AI score0.00347EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2023/04/26 5:59 p.m.88 views

USN-6042-1: Cloud-init vulnerability

James Golovich discovered that sensitive data could be exposed in logs. An attacker could use this information to find hashed passwords and possibly escalate their privilege...

5.5CVSS6.1AI score0.00263EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2023/04/26 1:37 p.m.345 views

Exploit for Improper Initialization in Linux Linux_Kernel

CVE-2022-0847 A simple exploit that uses dirtypipe to inject s...

9.3CVSS7.5AI score0.9857EPSS
Exploits131
NVD
NVD
added 2023/04/25 8:15 p.m.21 views

CVE-2023-25815

In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer. As a consequence, Git is expected not to localize messages at all, and skips the gettext initialization. However, due to a change in MINGW-packages, the gettext function's implicit initialization no...

3.3CVSS5.4AI score0.01055EPSS
Exploits0References12
OSV
OSV
added 2023/04/25 8:15 p.m.2 views

ALPINE-CVE-2023-25815

In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer. As a consequence, Git is expected not to localize messages at all, and skips the gettext initialization. However, due to a change in MINGW-packages, the gettext function's implicit initialization no...

2.2CVSS6.3AI score0.01055EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/25 7:51 p.m.21 views

CVE-2023-25815 Git looks for localized messages in the wrong place

In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer. As a consequence, Git is expected not to localize messages at all, and skips the gettext initialization. However, due to a change in MINGW-packages, the gettext function's implicit initialization no...

3.3CVSS5.6AI score0.01055EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2023/04/25 12:0 a.m.24 views

Juniper Junos OS Vulnerability (JSA70603)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA70603 advisory. - An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to read certain...

5.3CVSS5.9AI score0.0047EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2023/04/24 12:0 a.m.44 views

(Pwn2Own) Oracle VirtualBox GPA Request Handling Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

6CVSS5.2AI score0.00316EPSS
Exploits0References1
Veracode
Veracode
added 2023/04/20 9:37 a.m.21 views

Denial Of Service (DoS)

firefox is vulnerable to Denial Of Service DoS. The vulnerability exists due to the multiple race conditions in the font initialization could have led to memory corruption and execution of attacker-controlled code...

7.5CVSS6.5AI score0.00552EPSS
Exploits0References5Affected Software3
NVD
NVD
added 2023/04/17 10:15 p.m.11 views

CVE-2023-28978

An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to read certain confidential information. In the default configuration it is possible to read confidential information about locally configured...

5.3CVSS5.1AI score0.0047EPSS
Exploits0References1
OSV
OSV
added 2023/04/17 10:15 p.m.3 views

CVE-2023-28978

An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to read certain confidential information. In the default configuration it is possible to read confidential information about locally configured...

5.3CVSS6.1AI score0.0047EPSS
Exploits0References1
Prion
Prion
added 2023/04/17 10:15 p.m.17 views

Default configuration

An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to read certain confidential information. In the default configuration it is possible to read confidential information about locally configured...

5CVSS5.1AI score0.0047EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/17 12:0 a.m.8 views

CVE-2023-28978 Junos OS Evolved: Read access to some confidential user information is possible

An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to read certain confidential information. In the default configuration it is possible to read confidential information about locally configured...

5.3CVSS5.2AI score0.0047EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/17 12:0 a.m.6 views

PT-2023-22060 · Juniper Networks · Junos Evolved

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS Evolved versions prior to 20.4R3-S7-EVO Juniper Networks Junos OS Evolved version 21.1-EVO versions prior to 21.1R3-S4-EVO Juniper Networks Junos OS Evolved version 21.2-EVO versions prior to 21.2R3-S5-EVO Juniper...

5.3CVSS5.1AI score0.0047EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/04/17 12:0 a.m.7 views

Juniper Networks Junos OS Evolved 安全漏洞

Juniper Networks Junos OS Evolved is an updated version of Juniper Networks' Junos OS. A security vulnerability in Juniper Networks Junos OS Evolved, which arises from an insecure default resource initialization, can be exploited by an attacker to gain access to certain confidential information a...

5.3CVSS5.7AI score0.0047EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/04/17 12:0 a.m.15 views

CVE-2023-28978 Junos OS Evolved: Read access to some confidential user information is possible

An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to read certain confidential information. In the default configuration it is possible to read confidential information about locally configured...

5.3CVSS5.4AI score0.0047EPSS
Exploits0References1
CVE
CVE
added 2023/04/17 12:0 a.m.47 views

CVE-2023-28978

The CVE-2023-28978 vulnerability affects Juniper Networks Junos OS Evolved and is caused by insecure default initialization of a resource. An unauthenticated, network-based attacker can read confidential information about locally configured administrative users. Affected releases include Junos OS...

5.3CVSS5.1AI score0.0047EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/04/13 7:15 a.m.14 views

CVE-2022-33298

Memory corruption due to use after free in Modem while modem initialization...

7.8CVSS7.1AI score0.00115EPSS
Exploits0References1
NVD
NVD
added 2023/04/13 7:15 a.m.24 views

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption key...

9.3CVSS9.6AI score0.0008EPSS
Exploits0References1
Rows per page
Query Builder