Lucene search
K

158 matches found

UbuntuCve
UbuntuCve
added 2018/06/15 2:29 a.m.31 views

CVE-2018-12439

MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical host...

4.7CVSS5.9AI score0.00275EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/06/15 2:0 a.m.27 views

CVE-2018-12435

Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ecgroup/ecgroup.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local...

5.3AI score0.00499EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2018/06/15 2:0 a.m.16 views

CVE-2018-12436

wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physic...

4.7CVSS2.3AI score0.00371EPSS
Exploits0
Debian CVE
Debian CVE
added 2018/06/15 2:0 a.m.28 views

CVE-2018-12435

Botan 2.5.0 through 2.6.0 before 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ecgroup/ecgroup.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker needs access to either the local...

5.9CVSS6.1AI score0.00499EPSS
Exploits1
Prion
Prion
added 2018/06/14 12:29 p.m.20 views

Remote code execution

A remote code execution vulnerability exists when Microsoft Publisher fails to utilize features that lock down the Local Machine zone when instantiating OLE objects, aka "Microsoft Publisher Remote Code Execution Vulnerability." This affects Microsoft Publisher...

6.8CVSS6.8AI score0.15416EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/06/14 12:0 p.m.31 views

CVE-2018-8245

A remote code execution vulnerability exists when Microsoft Publisher fails to utilize features that lock down the Local Machine zone when instantiating OLE objects, aka "Microsoft Publisher Remote Code Execution Vulnerability." This affects Microsoft Publisher...

6.8AI score0.15416EPSS
Exploits0References3
OSV
OSV
added 2018/06/13 11:29 p.m.43 views

CVE-2018-0495

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

4.7CVSS5AI score
Exploits0References21
AlpineLinux
AlpineLinux
added 2018/06/13 11:0 p.m.57 views

CVE-2018-0495

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

4.7CVSS5.9AI score0.00887EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2018/06/12 7:0 a.m.22 views

Device Guard Code Integrity Policy Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session. An attacker who successfully exploited this vulnerability could inject code into a trusted PowerShell process to bypass the Device Guard Code...

4.5CVSS3.6AI score0.01794EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2018/05/08 7:0 a.m.26 views

Windows Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard. An attacker who successfully exploited this vulnerability could circumvent a User Mode Code Integrity UMCI policy on the machine. To exploit the vulnerability, an attacker would first...

5.3CVSS2.9AI score0.01309EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2018/05/08 7:0 a.m.37 views

.NET Framework Device Guard Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in .Net Framework which could allow an attacker to bypass Device Guard. An attacker who successfully exploited this vulnerability could circumvent a User Mode Code Integrity UMCI policy on the machine. To exploit the vulnerability, an attacker would...

7.8CVSS2.4AI score0.01245EPSS
Exploits0
NVD
NVD
added 2018/01/26 8:29 p.m.16 views

CVE-2017-14523

WonderCMS 2.3.1 is vulnerable to an HTTP Host header injection attack. It uses user-entered values to redirect pages. NOTE: the vendor reports that exploitation is unlikely because the attack can only come from a local machine or from the administrator as a self attack...

7.5CVSS7.5AI score0.08196EPSS
Exploits5References2
Prion
Prion
added 2018/01/26 8:29 p.m.16 views

Design/Logic Flaw

DISPUTED WonderCMS 2.3.1 is vulnerable to an HTTP Host header injection attack. It uses user-entered values to redirect pages. NOTE: the vendor reports that exploitation is unlikely because the attack can only come from a local machine or from the administrator as a self attack...

5CVSS7.5AI score0.08196EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2018/01/26 8:29 p.m.5 views

CVE-2017-14523

WonderCMS 2.3.1 is vulnerable to an HTTP Host header injection attack. It uses user-entered values to redirect pages. NOTE: the vendor reports that exploitation is unlikely because the attack can only come from a local machine or from the administrator as a self attack...

7.5CVSS7.5AI score
Exploits0References2
Cvelist
Cvelist
added 2017/10/16 1:0 a.m.26 views

CVE-2017-15303

In CPUID CPU-Z before 1.43, there is an arbitrary memory write that results directly in elevation of privileges, because any program running on the local machine while CPU-Z is running can issue an ioctl 0x9C402430 call to the kernel-mode driver e.g., cpuz141x64.sys for version 1.41...

7.6AI score0.01533EPSS
Exploits0References1
Prion
Prion
added 2017/09/13 4:29 p.m.20 views

Deserialization of untrusted data

In Apache Spark 1.6.0 until 2.1.1, the launcher API performs unsafe deserialization of data received by its socket. This makes applications launched programmatically using the launcher API potentially vulnerable to arbitrary code execution by an attacker with access to any user account on the loc...

7.2CVSS7.9AI score0.00734EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/09/13 4:0 p.m.22 views

CVE-2017-12612

In Apache Spark 1.6.0 until 2.1.1, the launcher API performs unsafe deserialization of data received by its socket. This makes applications launched programmatically using the launcher API potentially vulnerable to arbitrary code execution by an attacker with access to any user account on the loc...

7.9AI score0.00734EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2017/09/12 7:0 a.m.34 views

Device Guard Code Integrity Policy Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session. An attacker who successfully exploited this vulnerability could inject code into a trusted PowerShell process to bypass the Device Guard Code...

5.3CVSS3.6AI score0.01411EPSS
Exploits0
NVD
NVD
added 2017/08/29 9:29 p.m.20 views

CVE-2016-2974

IBM Sametime Connect 8.5.2 and 9.0, after uninstalling the Sametime Rich Client, could disclose potentially sensitive information related to the Sametime environment as well as other users on the local machine of the user. IBM X-Force ID: 113934...

3.3CVSS3.5AI score0.00339EPSS
Exploits0References3
0day.today
0day.today
added 2015/07/21 12:0 a.m.64 views

Microsoft Word Local Machine Zone Remote Code Execution Vulnerability

Microsoft Word, Excel, and Powerpoint 2007 contain a remote code execution vulnerability because it is possible to reference documents such as Works document .wps as HTML. It will process HTML and script code in the context of the local machine zone of Internet Explorer which leads to arbitrary...

9.3CVSS0.4AI score0.40942EPSS
Exploits3
Rows per page
Query Builder