Lucene search
K

37 matches found

RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.3 views

kernel: nfsd: initialise nfsd_info.mutex early.

In the Linux kernel, the following vulnerability has been resolved: nfsd: initialise nfsdinfo.mutex early. nfsdinfo.mutex can be dereferenced by svcpoolstatsstart immediately after the new netns is created. Currently this can trigger an oops. Move the initialisation earlier before it can possibly...

5.5CVSS6.8AI score0.0021EPSS
Exploits0References5
OSV
OSV
added 2024/07/29 4:15 p.m.2 views

DEBIAN-CVE-2024-42078

In the Linux kernel, the following vulnerability has been resolved: nfsd: initialise nfsdinfo.mutex early. nfsdinfo.mutex can be dereferenced by svcpoolstatsstart immediately after the new netns is created. Currently this can trigger an oops. Move the initialisation earlier before it can possibly...

5.5CVSS5.9AI score0.0021EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 11:8 a.m.12 views

BIT-VAULT-2023-3774 Vault Enterprise Namespace Creation May Lead to Denial of Service

An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash, potentially resulting in denial of service. Fixed in 1.14.1, 1.13.5, and 1.12.9...

4.9CVSS4.9AI score0.00575EPSS
Exploits0References2
NVD
NVD
added 2023/07/28 1:15 a.m.20 views

CVE-2023-3774

An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash, potentially resulting in denial of service. Fixed in 1.14.1, 1.13.5, and 1.12.9...

4.9CVSS5.1AI score0.00575EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2023/07/28 1:15 a.m.15 views

CVE-2023-3774

An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash, potentially resulting in denial of service. Fixed in 1.14.1, 1.13.5, and 1.12.9...

4.9CVSS6.9AI score0.00575EPSS
Exploits0
Prion
Prion
added 2023/07/28 1:15 a.m.11 views

Design/Logic Flaw

An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash, potentially resulting in denial of service. Fixed in 1.14.1, 1.13.5, and 1.12.9...

3.3CVSS5.1AI score0.00575EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/07/28 12:45 a.m.16 views

CVE-2023-3774 Vault Enterprise Namespace Creation May Lead to Denial of Service

An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash, potentially resulting in denial of service. Fixed in 1.14.1, 1.13.5, and 1.12.9...

4.9CVSS6AI score0.00575EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/07/28 12:45 a.m.24 views

CVE-2023-3774 Vault Enterprise Namespace Creation May Lead to Denial of Service

An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash, potentially resulting in denial of service. Fixed in 1.14.1, 1.13.5, and 1.12.9...

4.9CVSS5.4AI score0.00575EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/07/28 12:0 a.m.4 views

HashiCorp Vault Enterprise 安全漏洞

HashiCorp Vault is a private key access management tool from the US-based HashiCorp. A security vulnerability exists in HashiCorp Vault Enterprise that stems from the creation of a namespace that could cause the Vault process to crash, which could lead to a denial of service DoS...

4.9CVSS5.3AI score0.00575EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/28 12:0 a.m.4 views

PT-2023-26086 · Hashicorp · Vault Enterprise

Name of the Vulnerable Software and Affected Versions: Vault Enterprise versions prior to 1.14.1 Vault Enterprise versions prior to 1.13.5 Vault Enterprise versions prior to 1.12.9 Description: An unhandled error in Vault Enterprise's namespace creation may cause the Vault process to crash,...

4.9CVSS7.2AI score0.00575EPSS
Exploits0References6
OSV
OSV
added 2023/06/27 7:15 p.m.3 views

CVE-2023-23468

IBM Robotic Process Automation for Cloud Pak 21.0.1 through 21.0.7.3 and 23.0.0 through 23.0.3 is vulnerable to insufficient security configuration which may allow creation of namespaces within a cluster. IBM X-Force ID: 244500...

5.5CVSS5.8AI score0.00174EPSS
Exploits0References2
Prion
Prion
added 2023/06/27 7:15 p.m.17 views

Security feature bypass

IBM Robotic Process Automation for Cloud Pak 21.0.1 through 21.0.7.3 and 23.0.0 through 23.0.3 is vulnerable to insufficient security configuration which may allow creation of namespaces within a cluster. IBM X-Force ID: 244500...

1.7CVSS5.3AI score0.00174EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/06/27 12:0 a.m.6 views

IBM Robotic Process Automation 安全漏洞

IBM Robotic Process Automation is a robotic process automation product from International Business Machines IBM. can help you automate more business and IT processes at scale with the ease and speed of traditional RPA. A security vulnerability exists in IBM Robotic Process Automation for Cloud Pa...

5.5CVSS5.7AI score0.00174EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/06/27 12:0 a.m.5 views

PT-2023-5440 · Ibm · Ibm Robotic Process Automation For Cloud Pak

Name of the Vulnerable Software and Affected Versions: IBM Robotic Process Automation for Cloud Pak versions 21.0.1 through 21.0.7.3 IBM Robotic Process Automation for Cloud Pak versions 23.0.0 through 23.0.3 Description: The issue is related to insufficient security configuration, which may allo...

5.5CVSS5.3AI score0.00174EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/21 10:6 p.m.30 views

Security Bulletin: IBM Robotic Process Automation for Cloud Pak is vulnerable to insufficient security configuration (CVE-2023-23468).

Summary IBM Robotic Process Automation for Cloud Pak is vulnerable to insufficient security configuration which may allow creation of namespaces within a cluster CVE-2023-23468. This bulletin identifies the security fixes to apply to address this vulnerability. Vulnerability Details...

5.5CVSS5.2AI score0.00174EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/06/02 9:15 p.m.2 views

CVE-2022-32250

net/netfilter/nftablesapi.c in the Linux kernel through 5.18.1 allows a local user able to create user/net namespaces to escalate privileges to root because an incorrect NFTSTATEFULEXPR check leads to a use-after-free...

7.8CVSS8.5AI score0.02881EPSS
Exploits6References21
OSV
OSV
added 2019/05/15 8:29 p.m.3 views

CVE-2019-10110

An Insecure Permissions issue issue 1 of 3 was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. The "move issue" feature may allow a user to create projects under any namespace on any GitLab instance on which they hold credential...

6.5CVSS6.8AI score0.0119EPSS
Exploits1References3
Rows per page
Query Builder