Lucene search
K

9100 matches found

OSV
OSV
added 2023/01/11 8:15 a.m.3 views

CVE-2021-26328

Failure to verify the mode of CPU execution at the time of SNPINIT may lead to a potential loss of memory integrity for SNP guests...

4.4CVSS5.9AI score0.00185EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/01/11 12:0 a.m.4 views

AMD Secure Processor 安全漏洞

AMD Secure Encrypted Virtualization is a product of AMD Semiconductor, Inc. AMD Secure Encrypted Virtualization is a software application.AMD System Management Unit SMU is a system management unit. AMD Secure Processor ASP is a standalone ARM Coretex-A5 chip. A security vulnerability exists in AM...

4.4CVSS5.3AI score0.00185EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/01/10 8:56 p.m.12 views

CVE-2021-26407

A randomly generated Initialization Vector IV may lead to a collision of IVs with the same key potentially resulting in information disclosure...

6.8AI score0.00185EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/10 8:56 p.m.21 views

CVE-2021-26407

A randomly generated Initialization Vector IV may lead to a collision of IVs with the same key potentially resulting in information disclosure...

5.6AI score0.00185EPSS
Exploits0References1
CVE
CVE
added 2023/01/10 8:56 p.m.42 views

CVE-2021-26407

CVE-2021-26407 describes an information-disclosure risk from a collision of randomly generated IVs with the same key. Public references in AMD security bulletins enumerate affected AMD EPYC platforms and related components (ASP, SMU, SEV) and document mitigation steps via firmware/AGESA updates. ...

5.5CVSS6AI score0.00185EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/10 12:0 a.m.4 views

PT-2023-1488 · Amd · Amd System Management Unit +2

Name of the Vulnerable Software and Affected Versions: AMD Secure Processor ASP affected versions not specified AMD System Management Unit SMU affected versions not specified AMD Secure Encrypted Virtualization SEV affected versions not specified Description: The issue is related to errors in...

5.5CVSS6.1AI score0.00185EPSS
Exploits0References6
Amd
Amd
added 2023/01/10 12:0 a.m.144 views

AMD Server Vulnerabilities – January 2023

Bulletin ID: AMD-SB-1032 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Un...

8.8CVSS8.1AI score0.00616EPSS
Exploits0
Code423n4
Code423n4
added 2023/01/09 12:0 a.m.6 views

Destruction of the SmartAccount implementation

Lines of code Vulnerability details Description If the SmartAccount implementation contract is not initialized, it can be destroyed using the following attack scenario: Initialize the SmartAccount implementation contract using the init function. Execute a transaction that contains a single...

6.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/09 12:0 a.m.3 views

PT-2025-13355

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns data corruption on vram allocated by svm if initialization is not complete and an application is writing to the memory. To resolve this, a sync has been added after...

7.8CVSS6.5AI score0.00221EPSS
Exploits0References113
Code423n4
Code423n4
added 2023/01/03 12:0 a.m.6 views

Contract cannot be initialized due to revert

Lines of code Vulnerability details Impact TokenggAVAX.initialize would revert due to the constructor setting initialized to typeuint8.max = 255 thus making initialized not less than 1. This does not pass the require check in initializer modifier, thus resulting to a revert thereby making...

6.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.2 views

PT-2025-54100

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw in the block cgroup blk-cgroup subsystem. Specifically, a NULL pointer dereference could occur due to blkg policy data being installed before...

4.6CVSS6.6AI score0.00168EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.4 views

PT-2025-49714

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to the handling of request queue quality of service rq qos APIs. Specifically, concurrent access to rq qos without proper synchronization...

5.8AI score0.00189EPSS
Exploits0
Veeam
Veeam
added 2022/12/23 12:0 a.m.42 views

Inventory of Non-initialized LTO-9 Tape Fails for HPE MSL2024 and 1/8 G2 Autoloader Tape Libraries

Challenge If Veeam Backup & Replication attempts to load an LTO-9 tape that has not been initialized or has an unknown status in the library, the library will report the error Source Not Ready error SCSI Check Condition 05/4481. Error MTSCSI PASS THROUGH DIRECT ended with Scsi Error Fixed format,...

7AI score
Exploits0
NVD
NVD
added 2022/12/22 8:15 p.m.14 views

CVE-2022-40959

During iframe navigation, certain pages did not have their FeaturePolicy fully initialized leading to a bypass that leaked device permissions into untrusted subdocuments. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

6.5CVSS0.01284EPSS
Exploits0References4
Prion
Prion
added 2022/12/22 8:15 p.m.25 views

Design/Logic Flaw

If two Workers were simultaneously initializing their CacheStorage, a data race could have occurred in the ThirdPartyUtil component. This vulnerability affects Firefox 106...

4.6CVSS6.8AI score0.00391EPSS
Exploits0References2Affected Software1
GithubExploit
GithubExploit
added 2022/12/21 4:34 p.m.76 views

Exploit for Improper Initialization in Linux Linux_Kernel

CVE...

7.8CVSS7.8AI score0.88106EPSS
Exploits100
Positive Technologies
Positive Technologies
added 2022/12/19 12:0 a.m.8 views

PT-2022-25302 · WordPress · Registration Forms

Name of the Vulnerable Software and Affected Versions: Registration Forms WordPress plugin versions prior to 3.8.1.3 Description: The issue allows unauthenticated attackers to delete arbitrary users, along with their posts, due to a lack of authorisation and CSRF protection when deleting users vi...

6.5CVSS6.6AI score0.00334EPSS
Exploits2References6
Microsoft CVE
Microsoft CVE
added 2022/12/17 8:0 a.m.2 views

An issue was discovered in the Linux kernel through 5.16-rc6. free_charger_irq() in drivers/power/supply/wm8350_power.c lacks free of WM8350_IRQ_CHG_FAST_RDY which is registered in wm8350_init_charger().

...

5.5CVSS7AI score0.00214EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/12/17 8:0 a.m.2 views

An issue was discovered in the Linux kernel through 5.16-rc6. _rtw_init_xmit_priv in drivers/staging/r8188eu/core/rtw_xmit.c lacks check of the return value of rtw_alloc_hwxmits() and will cause the null pointer dereference.

...

5.5CVSS7.3AI score0.00224EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/12/16 12:0 a.m.4 views

PT-2022-27572 · WordPress · Wp Shamsi

Name of the Vulnerable Software and Affected Versions: WP Shamsi plugin for WordPress versions up to, and including, 4.1.0 Description: The WP Shamsi plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the deactivate function hooked via init. This makes...

6.5CVSS5.3AI score0.00665EPSS
Exploits0References7
Rows per page
Query Builder