Lucene search
K

64 matches found

OSV
OSV
added 2023/10/18 5:15 p.m.4 views

CVE-2023-20261

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to improper validation of parameters that are sent to the web UI. An attacker could exploit this vulnerabilit...

6.5CVSS5.9AI score0.00529EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/18 4:27 p.m.28 views

CVE-2023-20261

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to improper validation of parameters that are sent to the web UI. An attacker could exploit this vulnerabilit...

6.5CVSS6.5AI score0.00529EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.18 views

Cisco Catalyst SD-WAN Manager Local File Inclusion (cisco-sa-sdwan-lfi-OWLbKUGe)

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to...

6.5CVSS6.7AI score0.00529EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/07/24 12:0 a.m.7 views

The vulnerability of the smb2_find_context_vals() function in the fs/ksmbd/oplock.c file of the KSMBD file system in the Linux operating system allows a attacker to gain access to protected information or cause service failures.

The vulnerability of the KSMBD file system in Linux operating systems relates to reading data beyond the allocated buffer. Exploiting this vulnerability can allow an attacker to gain access to protected information or cause service failures...

9.1CVSS6.8AI score0.02435EPSS
Exploits0References25Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/03/07 12:0 a.m.4 views

The vulnerability of the ntfs_trim_fs() function in the fs/ntfs3/bitmap.c component of Linux operating systems allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ntfstrimfs function in the fs/ntfs3/bitmap.c component of Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

7.8CVSS6.5AI score0.00393EPSS
Exploits1References12Affected Software3
SUSE CVE
SUSE CVE
added 2023/02/15 4:53 a.m.3 views

SUSE CVE-2017-0750

A elevation of privilege vulnerability in the Upstream Linux file system. Product: Android. Versions: Android kernel. Android ID: A-36817013...

7.8CVSS8.1AI score0.00964EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.6 views

SUSE CVE-2018-11729

The libfsntfsmftentryreadheader function in libfsntfsmftentry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...

5.5CVSS6.6AI score0.01184EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/01/06 12:0 a.m.4 views

PT-2023-12766 · Nokia · Asik Airscale

Name of the Vulnerable Software and Affected Versions: Nokia ASIK AirScale system module versions 474021A.101 through 474021A.102 Description: A vulnerability exists in Nokia’s ASIK AirScale system module that could allow an attacker to place a script on the file system accessible from Linux. A...

8.8CVSS8.8AI score0.00207EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/05/10 12:0 a.m.17 views

Fedora: Security Advisory for cifs-utils (FEDORA-2022-34de4f833d)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.5AI score0.00557EPSS
Exploits0References2
CNVD
CNVD
added 2021/02/19 12:0 a.m.7 views

GateManager Path Traversal Vulnerability

GateManager is a cloud server product from Secomea. A directory traversal vulnerability in the file upload feature in all versions of GateManager prior to 92c allows an authenticated attacker with administrative privileges to read and write arbitrary files on the Linux file system...

9CVSS6.8AI score0.01458EPSS
Exploits0References1
Prion
Prion
added 2021/02/15 4:15 p.m.15 views

Directory traversal

A directory traversal vulnerability exists in the file upload function of the GateManager that allows an authenticated attacker with administrative permissions to read and write arbitrary files in the Linux file system. This issue affects: GateManager all versions prior to 9.2c...

5.5CVSS6.3AI score0.01458EPSS
Exploits0References1Affected Software4
Ubuntu
Ubuntu
added 2020/09/03 4:41 p.m.127 views

USN-4483-1: Linux kernel vulnerabilities

Chuhong Yuan discovered that go7007 USB audio device driver in the Linux kernel did not properly deallocate memory in some failure conditions. A physically proximate attacker could use this to cause a denial of service memory exhaustion. CVE-2019-20810 Fan Yang discovered that the mremap...

7.8CVSS6.7AI score0.00992EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2019/12/13 12:0 a.m.48 views

Cisco IOS XE Software Privileged EXEC Mode Root Shell Access (cisco-sa-20180926-privesc)

According to its self-reported version, Cisco IOS XE Software is affected by a vulnerability in the CLI parser due to the affected software improperly sanitizing command arguments to prevent modifications to the underlying Linux file system on a device. An authenticated, local attacker who has...

7.2CVSS7.1AI score0.0039EPSS
Exploits0References3
OSV
OSV
added 2017/08/09 9:29 p.m.5 views

CVE-2017-0750

A elevation of privilege vulnerability in the Upstream Linux file system. Product: Android. Versions: Android kernel. Android ID: A-36817013...

7.8CVSS7.1AI score0.00964EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2017/08/09 12:0 a.m.19 views

CVE-2017-0750

A elevation of privilege vulnerability in the Upstream Linux file system. Product: Android. Versions: Android kernel. Android ID: A-36817013...

7.8CVSS7AI score0.00964EPSS
Exploits0References5
OSV
OSV
added 2014/10/08 7:55 p.m.1 views

DEBIAN-CVE-2014-3641

The 1 GlusterFS and 2 Linux Smbfs drivers in OpenStack Cinder before 2014.1.3 allows remote authenticated users to obtain file data from the Cinder-volume host by cloning and attaching a volume with a crafted qcow2 header...

4CVSS6.7AI score0.0186EPSS
Exploits0References1
NVD
NVD
added 2013/09/30 10:55 p.m.9 views

CVE-2013-4362

WEB-DAV Linux File System davfs2 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in 1 kernelinterface.c and 2 mountdavfs.c, related to the "system" function...

7.2CVSS6.3AI score0.01168EPSS
Exploits2References7
Prion
Prion
added 2013/09/30 10:55 p.m.17 views

Design/Logic Flaw

WEB-DAV Linux File System davfs2 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in 1 kernelinterface.c and 2 mountdavfs.c, related to the "system" function...

7.2CVSS6.8AI score0.01168EPSS
Exploits2References7Affected Software1
UbuntuCve
UbuntuCve
added 2013/09/30 10:55 p.m.17 views

CVE-2013-4362

WEB-DAV Linux File System davfs2 1.4.6 and 1.4.7 allow local users to gain privileges via unknown attack vectors in 1 kernelinterface.c and 2 mountdavfs.c, related to the "system" function...

7.2CVSS5.9AI score0.01168EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2012/05/04 12:0 a.m.14 views

Fedora Update for cifs-utils FEDORA-2012-6375

Check for the Version of cifs-utils OpenVAS Vulnerability Test Fedora Update for cifs-utils FEDORA-2012-6375 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

2.1CVSS7.5AI score0.00729EPSS
Exploits0References2
Rows per page
Query Builder