Lucene search
+L

98 matches found

RedHat Linux
RedHat Linux
added 2023/11/21 12:19 p.m.4 views

glibc: potential use-after-free in gaih_inet()

A flaw has been identified in glibc. In an uncommon situation, the gaihinet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with...

5.9CVSS6.7AI score0.01655EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/05 2:3 p.m.8 views

glibc: potential use-after-free in gaih_inet()

A flaw has been identified in glibc. In an uncommon situation, the gaihinet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with...

5.9CVSS6.7AI score0.01655EPSS
Exploits0References4
OSV
OSV
added 2023/09/12 10:15 p.m.4 views

DEBIAN-CVE-2023-4813

A flaw has been identified in glibc. In an uncommon situation, the gaihinet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with...

5.9CVSS6.1AI score0.01655EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/04/19 12:0 a.m.18 views

Oracle Solaris Critical Patch Update : apr2023_SRU11_4_46_119_2

This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with...

7CVSS7.4AI score0.00169EPSS
Exploits0References4
OSV
OSV
added 2023/04/18 8:15 p.m.7 views

CVE-2023-21896

Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...

7CVSS7.1AI score0.00169EPSS
Exploits0References1
NVD
NVD
added 2023/04/18 8:15 p.m.20 views

CVE-2023-21896

Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...

7CVSS6.7AI score0.00169EPSS
Exploits0References1
Prion
Prion
added 2023/04/18 8:15 p.m.23 views

Design/Logic Flaw

Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...

3.5CVSS7AI score0.00169EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/04/18 7:54 p.m.123 views

CVE-2023-21896

CVE-2023-21896 affects Oracle Solaris NSSwitch on Solaris 10 and 11. The vulnerability, described as difficult to exploit, allows a low-privileged attacker with logon to compromise Solaris and can lead to a full takeover. The CVSS v3.1 base score is 7.0 (Impact: Confidentiality, Integrity, Availa...

7CVSS6.7AI score0.00169EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/04/18 12:0 a.m.12 views

PT-2023-2541 · Oracle · Oracle Solaris

Name of the Vulnerable Software and Affected Versions: Oracle Solaris versions 10 and 11 Description: The issue is related to errors in handling input data in the NSSwitch component of Oracle Solaris, which can be exploited to compromise the system. A successful attack can result in the takeover ...

7CVSS8.7AI score0.00169EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:9 a.m.4 views

SUSE CVE-2019-14271

In Docker 19.03.x before 19.03.1 linked against the GNU C Library aka glibc, code injection can occur when the nsswitch facility dynamically loads a library inside a chroot that contains the contents of the container...

8.3CVSS7.5AI score0.18828EPSS
Exploits3References9
BDU FSTEC
BDU FSTEC
added 2023/01/31 12:0 a.m.6 views

The vulnerability of the NSSwitch component in Oracle Solaris operating systems allows a malicious individual to gain unauthorized access to read, modify, or delete data, or to cause service failures.

The vulnerability of the NSSwitch component in Oracle Solaris systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized read, modify, or delete access to data, or cause service failures through various network protocols...

4CVSS6.4AI score0.00365EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/01/18 12:15 a.m.3 views

CVE-2023-21900

Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise Oracle Solaris. Successful attacks...

4CVSS7.3AI score0.00365EPSS
Exploits0References1
NVD
NVD
added 2023/01/18 12:15 a.m.13 views

CVE-2023-21900

Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise Oracle Solaris. Successful attacks...

4CVSS3.5AI score0.00365EPSS
Exploits0References1
Prion
Prion
added 2023/01/18 12:15 a.m.27 views

Spoofing

Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise Oracle Solaris. Successful attacks...

3.2CVSS3.9AI score0.00365EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/01/17 11:35 p.m.85 views

CVE-2023-21900

CVE-2023-21900 affects the Oracle Solaris NSSwitch component on Solaris 10 and 11. The vulnerability allows a high-privilege attacker with network access via multiple protocols to compromise Solaris, with attacks requiring human interaction. Impacts include unauthorized updates/deletes to Solaris...

4CVSS3.5AI score0.00365EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.6 views

PT-2023-1250 · Oracle · Oracle Solaris

Name of the Vulnerable Software and Affected Versions: Oracle Solaris versions 10 through 11 Description: The issue is related to insufficient input validation in the NSSwitch component of Oracle Solaris. It allows a high-privileged attacker with network access via multiple protocols to compromis...

4CVSS4.6AI score0.00365EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/03/01 12:0 a.m.5 views

PT-2023-5341 · Glibc +9 · Glibc +9

Name of the Vulnerable Software and Affected Versions: glibc affected versions not specified Description: A flaw was found in glibc, where the gaih inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is...

9.1CVSS6.5AI score0.81422EPSS
Exploits29References104
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2015:0353-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8AI score0.87636EPSS
Exploits7References11
GithubExploit
GithubExploit
added 2021/03/19 2:6 p.m.152 views

Exploit for Off-by-one Error in Sudo_Project Sudo

Título del Proyecto Generador de exploit para CVE-2021-3156 s...

7.8CVSS7.9AI score0.99295EPSS
Exploits81
Tenable Nessus
Tenable Nessus
added 2020/09/02 12:0 a.m.60 views

openSUSE Security Update : ldb / samba (openSUSE-2020-1313)

"This update for ldb, samba fixes the following issues : Changes in samba : - Update to samba 4.11.11 + CVE-2020-10730: NULL de-reference in AD DC LDAP server when ASQ and VLV combined; bso14364 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

7.8CVSS6.4AI score0.03874EPSS
Exploits0References19
Rows per page
Query Builder