Lucene search
K

1156 matches found

Ubuntu
Ubuntu
added 2024/07/17 3:48 p.m.79 views

USN-6900-1: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the HugeTLB file syst...

7.8CVSS7.4AI score0.01287EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/17 12:0 a.m.87 views

Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-6896-3)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6896-3 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

9.1CVSS7.6AI score0.01635EPSS
Exploits1References148
Ubuntu
Ubuntu
added 2024/07/16 11:47 a.m.84 views

USN-6896-2: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the Atheros 802.11ac...

9.1CVSS7.5AI score0.01635EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.62 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6895-2)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6895-2 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

7.8CVSS6.9AI score0.00756EPSS
Exploits1References100
RedHat Linux
RedHat Linux
added 2024/07/15 3:54 p.m.5 views

golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS

A vulnerability was discovered with the implementation of the HTTP/2 protocol in the Go programming language. There were insufficient limitations on the amount of CONTINUATION frames sent within a single stream. An attacker could potentially exploit this to cause a Denial of Service DoS attack...

7.5CVSS7.2AI score0.91969EPSS
Exploits1References7
Ubuntu
Ubuntu
added 2024/07/12 10:2 a.m.63 views

USN-6895-1: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the HugeTLB file syst...

7.8CVSS7.4AI score0.00756EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/07/12 12:0 a.m.39 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6896-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6896-1 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free...

9.1CVSS7.6AI score0.01635EPSS
Exploits1References150
Ubuntu
Ubuntu
added 2024/07/10 9:6 p.m.72 views

USN-6892-1: Linux kernel (IBM) vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the Atheros 802.11ac...

9.1CVSS7.4AI score0.01635EPSS
Exploits0
Ubuntu
Ubuntu
added 2024/07/04 3:29 p.m.155 views

USN-6878-1: Linux kernel (Oracle) vulnerabilities

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. CVE-2022-38096 Zheng Wang discovered that the Broadc...

9.1CVSS7.4AI score0.01635EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/04 12:0 a.m.35 views

Ubuntu 20.04 LTS : Linux kernel (HWE) vulnerabilities (USN-6871-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6871-1 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

9.1CVSS7.5AI score0.01635EPSS
Exploits0References154
OSV
OSV
added 2024/07/02 10:15 p.m.6 views

AZL-78960 CVE-2024-24791 affecting package golang 1.25.7-1

The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an "Expect: 100-continue" header with a non-informational 200 or higher status. This mishandling could leave a client connection in an invalid state, where the next request sent on the connection will fail...

7.5CVSS6.7AI score0.01414EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/07/02 12:0 a.m.40 views

RHEL 8 : xmlrpc-c (RHSA-2024:4259)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4259 advisory. XML-RPC is a remote procedure call RPC protocol that uses XML to encode its calls and HTTP as a transport mechanism. The xmlrpc-c packages provide a...

7.5CVSS6.9AI score0.01815EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2024/06/20 12:0 a.m.7 views

The vulnerability of the microprogramming software of Schneider Electric’s Automation Servers SpaceLogic AS-P and SpaceLogic AS-B relates to the disclosure of information through registration files, allowing attackers to obtain SNMP credentials.

The vulnerability of the microprogramming software used in Schneider Electric’s Automation Servers SpaceLogic AS-P and SpaceLogic AS-B lies in the ability to disclose information through registration files. Exploiting this vulnerability can allow a malicious actor to obtain SNMP credentials...

5.5CVSS5.4AI score0.00231EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2024/06/19 2:15 p.m.26 views

CVE-2024-38538

In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure we have at least eth header len bytes syzbot triggered an uninit value1 error in bridge device's xmit path by sending a short less than ETHHLEN bytes skb. To fix it check if we can actually pull that...

7.1CVSS0.00286EPSS
Exploits0References10
CVE
CVE
added 2024/06/19 1:35 p.m.191 views

CVE-2024-38538

CVE-2024-38538 is a Linux kernel vulnerability in the bridge xmit path. The issue arises when a short skb (less than ETH_HLEN) is processed, risking uninitialized data in br_dev_xmit. The fix adds a guard to ensure the kernel only pulls the required ETH header bytes and does not assume availabili...

7.1CVSS8AI score0.00286EPSS
Exploits0References10Affected Software1
Ubuntu
Ubuntu
added 2024/06/14 5:24 p.m.133 views

USN-6817-3: Linux kernel vulnerabilities

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. CVE-2022-38096 Zheng Wang discovered that the Broadc...

9.1CVSS7.5AI score0.01635EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.67 views

Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6821-4)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6821-4 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...

9.1CVSS7.5AI score0.01635EPSS
Exploits0References152
Ubuntu
Ubuntu
added 2024/06/11 8:5 p.m.66 views

USN-6820-2: Linux kernel (NVIDIA) vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the Atheros 802.11ac...

9.1CVSS7.4AI score0.01635EPSS
Exploits0
Ubuntu
Ubuntu
added 2024/06/11 12:15 p.m.185 views

USN-6817-2: Linux kernel (OEM) vulnerabilities

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. CVE-2022-38096 Zheng Wang discovered that the Broadc...

9.1CVSS7.5AI score0.01635EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/11 12:0 a.m.59 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel (AWS) vulnerabilities (USN-6821-3)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6821-3 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free...

9.1CVSS7.5AI score0.01635EPSS
Exploits0References152
Rows per page
Query Builder