Lucene search
K

83 matches found

Debian CVE
Debian CVE
added 2024/02/23 2:46 p.m.74 views

CVE-2024-26597

In the Linux kernel, the following vulnerability has been resolved: net: qualcomm: rmnet: fix global oob in rmnetpolicy The variable rmnetlinkops assign a bigger maxtype which leads to a global out-of-bounds read when parsing the netlink attributes. See bug trace below:...

7.1CVSS6.8AI score0.00257EPSS
Exploits0
CNNVD
CNNVD
added 2024/02/23 12:0 a.m.2 views

Linux Kernel Security Vulnerability

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux Kernel that stems from the rmnetlinkops variable being assigned a larger maxtype, which can lead to a global out-of-bounds read when parsing netlink...

7.1CVSS5.9AI score0.00257EPSS
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2023/12/05 8:0 a.m.7 views

Kernel: the nfta_inner_num and nfta_expr_name netlink attributes accessed without checking its presence in nft_inner.c

...

7.8CVSS7AI score0.00276EPSS
Exploits0
Cvelist
Cvelist
added 2023/11/23 5:21 p.m.27 views

CVE-2023-5972 Kernel: the nfta_inner_num and nfta_expr_name netlink attributes accessed without checking its presence in nft_inner.c

A null pointer dereference flaw was found in the nftinner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system...

7CVSS7.6AI score0.00276EPSS
Exploits0References4
CNVD
CNVD
added 2023/09/12 12:0 a.m.19 views

Linux kernel out-of-bounds read vulnerability (CNVD-2023-70078)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a 4-byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing...

5.5CVSS6.4AI score0.00237EPSS
Exploits0References1
NVD
NVD
added 2023/07/25 4:15 p.m.17 views

CVE-2023-3773

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.9AI score0.00237EPSS
Exploits0References5
OSV
OSV
added 2023/07/25 4:15 p.m.3 views

UBUNTU-CVE-2023-3773

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.5AI score0.00237EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2023/07/25 4:15 p.m.34 views

CVE-2023-3773

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.6AI score0.00237EPSS
Exploits0References12
Prion
Prion
added 2023/07/25 4:15 p.m.55 views

Out-of-bounds

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

1.4CVSS5.5AI score0.00237EPSS
Exploits0References4Affected Software2
Debian CVE
Debian CVE
added 2023/07/25 3:47 p.m.28 views

CVE-2023-3773

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.1AI score0.00237EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/07/23 12:0 a.m.9 views

PT-2023-3971

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw was found in the Linux kernel's IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAP NET ADMIN privileges to cause a 4 byte...

7.8CVSS7.3AI score0.00454EPSS
Exploits0References88
Tenable Nessus
Tenable Nessus
added 2019/02/11 12:0 a.m.70 views

OracleVM 3.4 : Unbreakable / etc (OVMSA-2019-0007) (Spectre)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/bugs: Fix the AMD SSBD usage of the SPECCTRL MSR Tom Lendacky Orabug: 28870524 CVE-2018-3639 - x86/bugs: Add AMD's SPECCTRL MSR usage Konrad Rzeszutek Wilk Orabug: 28870524 CVE-2018-3639 -...

5.5CVSS7.2AI score0.60631EPSS
Exploits2References4
Oracle linux
Oracle linux
added 2019/02/06 12:0 a.m.93 views

Unbreakable Enterprise kernel security update

4.1.12-124.25.1 - x86/bugs: Fix the AMD SSBD usage of the SPECCTRL MSR Tom Lendacky Orabug: 28870524 CVE-2018-3639 - x86/bugs: Add AMD's SPECCTRL MSR usage Konrad Rzeszutek Wilk Orabug: 28870524 CVE-2018-3639 - x86/cpufeatures: rename X86FEATUREAMDSSBD to X86FEATURELSCFGSSBD Mihai Carabas Orabug:...

5.5CVSS6.7AI score0.60631EPSS
Exploits2
NVD
NVD
added 2018/03/30 9:29 p.m.17 views

CVE-2017-9694

While parsing Netlink attributes in QCAWLANVENDORATTREXTSCANBSSIDHOTLISTPARAMSLOSTAPSAMPLESIZE in qcacld 2.0 before 2017-05-16, a buffer overread could occur...

7.8CVSS7.7AI score0.00422EPSS
Exploits0References3
Prion
Prion
added 2018/03/30 9:29 p.m.8 views

Buffer overflow

While parsing Netlink attributes in QCAWLANVENDORATTREXTSCANBSSIDHOTLISTPARAMSLOSTAPSAMPLESIZE in qcacld 2.0 before 2017-05-16, a buffer overread could occur...

4.6CVSS7.2AI score0.00422EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/03/30 9:0 p.m.21 views

CVE-2017-9694

While parsing Netlink attributes in QCAWLANVENDORATTREXTSCANBSSIDHOTLISTPARAMSLOSTAPSAMPLESIZE in qcacld 2.0 before 2017-05-16, a buffer overread could occur...

7.8AI score0.00422EPSS
Exploits0References3
OSV
OSV
added 2017/10/10 8:29 p.m.5 views

CVE-2017-9717

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while parsing Netlink attributes, a buffer overread can occur...

7.5CVSS6AI score0.00514EPSS
Exploits0References2
NVD
NVD
added 2017/10/10 8:29 p.m.18 views

CVE-2017-9717

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while parsing Netlink attributes, a buffer overread can occur...

7.5CVSS7.4AI score0.00514EPSS
Exploits0References2
Prion
Prion
added 2017/10/10 8:29 p.m.16 views

Buffer overflow

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while parsing Netlink attributes, a buffer overread can occur...

5CVSS7.3AI score0.00514EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/10/10 8:0 p.m.44 views

CVE-2017-9717

CVE-2017-9717 affects Android for MSM, Firefox OS for MSM, and QRD Android builds based on CAF Linux kernel, where Netlink attribute parsing can trigger a buffer overread in WLAN-related code. The vulnerability is described across multiple sources as a buffer overread that may impact confidential...

7.5CVSS7.2AI score0.00514EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder