Lucene search
K

565 matches found

OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for kexec-tools (EulerOS-SA-2022-2907)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00242EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/12/29 5:16 a.m.3 views

Malicious code in node-kexec (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c935f2cf93a69d3611bc002c76fb751088ccfda5985581797976d42dc55ce94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/12/29 5:16 a.m.7 views

MAL-2022-4887 Malicious code in node-kexec (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c935f2cf93a69d3611bc002c76fb751088ccfda5985581797976d42dc55ce94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.23 views

EulerOS Virtualization 2.10.0 : kexec-tools (EulerOS-SA-2022-2907)

According to the versions of the kexec-tools package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read...

5.5CVSS5.5AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/12/28 12:0 a.m.25 views

EulerOS Virtualization 2.10.1 : kexec-tools (EulerOS-SA-2022-2933)

According to the versions of the kexec-tools package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read...

5.5CVSS5.5AI score0.00242EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/11/28 12:0 a.m.14 views

PT-2022-7637 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the regulator component da9211 in the Linux kernel. If the system does not come from reset, like when it is kexec, the regulator might have an IRQ waiting...

8.4CVSS6.6AI score0.01944EPSS
Exploits18References1632
Rockylinux
Rockylinux
added 2022/11/15 6:20 a.m.15 views

kexec-tools bug fix and enhancement update

An update is available for kexec-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux...

2AI score
Exploits0
Rockylinux
Rockylinux
added 2022/11/08 6:26 a.m.16 views

kexec-tools bug fix and enhancement update

An update is available for kexec-tools. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux...

2AI score
Exploits0
OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for kexec-tools (EulerOS-SA-2022-2687)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00242EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for kexec-tools (EulerOS-SA-2022-2655)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/02 12:0 a.m.23 views

EulerOS 2.0 SP10 : kexec-tools (EulerOS-SA-2022-2655)

According to the versions of the kexec-tools package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read this file and...

5.5CVSS5.5AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/02 12:0 a.m.22 views

EulerOS 2.0 SP10 : kexec-tools (EulerOS-SA-2022-2687)

According to the versions of the kexec-tools package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read this file and...

5.5CVSS5.5AI score0.00242EPSS
Exploits0References2
OSV
OSV
added 2022/09/17 12:18 a.m.15 views

GSD-2022-1005689 RISC-V: kexec: Fixup use of smp_processor_id() in preemptible context

RISC-V: kexec: Fixup use of smpprocessorid in preemptible context This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/09/17 12:0 a.m.2 views

PT-2022-34208 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the RISC-V architecture in the Linux Kernel. It involves the crash kexec function, which has a fast call path that may pose a potential security risk. The actual...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/17 12:0 a.m.1 views

PT-2022-34020 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.138 Description: The issue is related to the RISC-V architecture in the Linux Kernel. It involves the crash kexec function, which has a potential security impact that has not yet been fully proven. The...

7.4AI score
Exploits0References1
OSV
OSV
added 2022/09/16 11:52 p.m.10 views

GSD-2022-1005370 RISC-V: kexec: Fixup use of smp_processor_id() in preemptible context

RISC-V: kexec: Fixup use of smpprocessorid in preemptible context This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/08/23 12:0 a.m.64 views

Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-006)

The version of kernel installed on the remote host is prior to 5.15.57-29.131. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2022-006 advisory. A flaw was found in hw. Mis-trained branch predictions for return instructions may allow arbitrary...

7.8CVSS7.4AI score0.04947EPSS
Exploits1References14
Snyk
Snyk
added 2022/08/19 8:11 a.m.2 views

Malicious Package

Overview node-kexec is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

9.8CVSS7.1AI score
Exploits0References3
Amazon
Amazon
added 2022/08/18 12:0 a.m.16 views

Important: kernel

Issue Overview: An out-of-bounds write flaw was found in the Linux kernels framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUTVSCREENINFO with malicious data. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS5.9AI score0.05561EPSS
Exploits11
OpenVAS
OpenVAS
added 2022/08/15 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2022:2803-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.01284EPSS
Exploits4References2
Rows per page
Query Builder