Lucene search
K

136 matches found

OSV
OSV
added 2022/05/03 4:15 p.m.3 views

CVE-2021-22556

The Security Team discovered an integer overflow bug that allows an attacker with code execution to issue memory cache invalidation operations on pages that they don’t own, allowing them to control kernel memory from userspace. We recommend upgrading to kernel version 4.1 or beyond...

7.8CVSS7.5AI score0.00155EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/05/03 3:50 p.m.5 views

CVE-2021-22556 Integer Overflow in Fuchsia Kernel

The Security Team discovered an integer overflow bug that allows an attacker with code execution to issue memory cache invalidation operations on pages that they don’t own, allowing them to control kernel memory from userspace. We recommend upgrading to kernel version 4.1 or beyond...

5.3CVSS7.9AI score0.00155EPSS
Exploits0References2
Veracode
Veracode
added 2022/01/22 9:57 p.m.34 views

Buffer Overflow

vim is vulnerable to Heap-based Buffer Overflow. The vulnerability exist due to a lack of sanitization of the memory control pointer...

7.8CVSS3.8AI score0.01831EPSS
Exploits1References15Affected Software1
NVD
NVD
added 2021/11/24 2:15 a.m.23 views

CVE-2021-28705

issues with partially successful P2M updates on x86 This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have...

7.8CVSS0.00333EPSS
Exploits0References5
OSV
OSV
added 2021/11/24 1:15 a.m.26 views

CVE-2021-28707

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS6.6AI score
Exploits0References5
NVD
NVD
added 2021/11/24 1:15 a.m.20 views

CVE-2021-28704

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS0.00328EPSS
Exploits0References5
OSV
OSV
added 2021/11/24 1:15 a.m.33 views

CVE-2021-28704

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS8.7AI score
Exploits0References5
Debian CVE
Debian CVE
added 2021/11/24 12:0 a.m.30 views

CVE-2021-28707

PoD operations on misaligned GFNs This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. x86 HVM and PVH guests may be started in populate-on-demand PoD mode, to provide a way for them to later easily have more memory assigne...

8.8CVSS0.4AI score0.00348EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/11/09 6:6 p.m.2 views

kernel: mm: memcontrol: slab: fix obtain a reference to a freeing memcg

In the Linux kernel, the following vulnerability has been resolved: mm: memcontrol: slab: fix obtain a reference to a freeing memcg Patch series "Use objcgroup APIs to charge kmem pages", v5. Since Roman's series "The new cgroup slab memory controller" applied. All slab objects are charged with t...

5.5CVSS6.8AI score0.00239EPSS
Exploits0References5
OSV
OSV
added 2021/09/23 2:19 p.m.12 views

SUSE-SU-2021:3207-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks bsc1190115. - CVE-2021-38160: Data corruption or...

8.8CVSS8.6AI score0.03354EPSS
Exploits8References131
OSV
OSV
added 2021/05/31 3:39 p.m.17 views

GSD-2021-1000340 mm: memcontrol: slab: fix obtain a reference to a freeing memcg

mm: memcontrol: slab: fix obtain a reference to a freeing memcg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.37 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2021/05/31 3:39 p.m.9 views

UVI-2021-1000226 mm: memcontrol: slab: fix obtain a reference to a freeing memcg

mm: memcontrol: slab: fix obtain a reference to a freeing memcg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.4 by commit...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2021/05/13 12:0 a.m.417 views

Microsoft Internet Explorer 11 and WPAD service 'Jscript.dll' - Use-After-Free

Exploit Title: Microsoft Internet Explorer 8/11 and WPAD service 'Jscript.dll' - Use-After-Free Date: 2021-05-04 Exploit Author: deadlock Forrest Orr Vendor Homepage: https://www.microsoft.com/ Software Link: https://www.microsoft.com/en-gb/download/internet-explorer.aspx Versions: IE 8-11 64-bit...

7.6CVSS8.1AI score0.86863EPSS
Exploits17
FreeBSD
FreeBSD
added 2020/09/15 12:0 a.m.31 views

FreeBSD -- bhyve SVM guest escape

Problem Description: A number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped. Impact: From kernel mode a malicious guest can write to arbitrary host memory with some...

7.6CVSS0.8AI score0.00258EPSS
Exploits0
0day.today
0day.today
added 2020/03/10 12:0 a.m.118 views

Counter Strike : GO - (.bsp) Memory Control Exploit

So I’ve been holding onto this neat little gem of a .bsp that has four bytes very close to the end of the file that controls the memory allocator. See above picture. Works on all supported operating systems last I checked so Linux, Windows, and macOS, even after a few years. Download...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2020/03/09 12:0 a.m.102 views

Counter Strike: GO - .bsp Memory Control (PoC)

Counter Strike: GO - .bsp Memory Control PoC So I’ve been holding onto this neat little gem of a .bsp that has four bytes very close to the end of the file that controls the memory allocator. See above picture. Works on all supported operating systems last I checked so Linux, Windows, and macOS,...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2020/03/09 12:0 a.m.112 views

Counter Strike: GO - '.bsp' Memory Control (PoC)

So I’ve been holding onto this neat little gem of a .bsp that has four bytes very close to the end of the file that controls the memory allocator. See above picture. Works on all supported operating systems last I checked so Linux, Windows, and macOS, even after a few years. Download...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/04/08 12:0 a.m.4230 views

CARPE (DIEM) Apache 2.4.x Local Privilege Escalation

?php CARPE DIEM: CVE-2019-0211 Apache Root Privilege Escalation Charles Fol @cfreal 2019-04-08 INFOS https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html USAGE 1. Upload exploit to Apache HTTP server 2. Send request to page 3. Await 6:25AM for logrotate to restart Apache 4...

0.5AI score0.65005EPSS
Exploits8
Hacker One
Hacker One
added 2018/05/24 10:58 a.m.36 views

Open-Xchange: Buffer overflow in sha3

Quick Overview I have found a Buffer Overflow OutOfBand vulnerability in the code where a buffer used is not properly verified before writing data to the buffer. Introduction Buffer overflow attacks, in their various forms, could allow an attacker to control certain areas of memory. Typically, th...

1.6AI score
Exploits0
Hacker One
Hacker One
added 2018/04/14 5:22 p.m.59 views

Internet Bug Bounty: CVE-2018-6797: A crafted regular expression can cause a heap buffer write overflow in Perl 5 giving a remote attacker control over bytes written

An attacker supplies a regular expression containing one or more \xDF characters after an escape putting the regexp into unicode matching mode, such as a \N escape. Each \xDF character adds one byte of overflow, and any other text in the regular expression is written in order, providing the...

7.5CVSS9AI score0.06599EPSS
Exploits0
Rows per page
Query Builder