Lucene search
K

1156 matches found

ATTACKERKB
ATTACKERKB
added 2022/02/04 2:15 a.m.11 views

CVE-2021-45998

D-Link device DIR882 DIR882FW1.30B06Hotfix02 was discovered to contain a command injection vulnerability in the LocalIPAddress parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted HNAP1 POST request...

9.8CVSS8.2AI score0.03715EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2022/02/03 4:13 a.m.120 views

USN-5266-1: Linux kernel (GKE) vulnerabilities

It was discovered that the Packet network protocol implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-22600 Luo Likang discovered that the FireDTV Firewire...

7.2CVSS7.4AI score0.05918EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2022/02/03 12:0 a.m.37 views

SUSE SLES15: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2022:0289-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0289-1 advisory. The SUSE Linux Enterprise 15 SP2 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: -...

8.4CVSS7.2AI score0.25151EPSS
Exploits15References40
Tenable Nessus
Tenable Nessus
added 2022/01/27 12:0 a.m.46 views

SUSE SLED15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2022:0198-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0198-1 advisory. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following...

8.4CVSS7.1AI score0.25151EPSS
Exploits13References64
RedhatCVE
RedhatCVE
added 2022/01/20 6:11 p.m.55 views

CVE-2022-0322

A flaw was found in the sctpmakestrresetreq function in net/sctp/smmakechunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is allocated triggers a BUGON issue, leading to a denial of service DOS. Mitigation...

5.5CVSS0.8AI score0.00295EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/12/31 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2021-2894)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.2AI score0.04929EPSS
Exploits2References2
OSV
OSV
added 2021/12/26 12:15 a.m.3 views

CVE-2021-37566

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. Affected Chipsets MT7603E, MT7610, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 2.0.2; Out-of-bounds write...

8.8CVSS7.3AI score0.0127EPSS
Exploits0References2
Prion
Prion
added 2021/12/24 11:15 p.m.23 views

Memory corruption

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the rdsconncreate function in net/rds/connection.c in a certain combination of circumstances...

4.7CVSS5.8AI score0.00353EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2021/11/19 5:15 p.m.2 views

UBUNTU-CVE-2021-39923

Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file...

7.5CVSS6.9AI score0.01516EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/11/15 12:0 a.m.3 views

PT-2021-6397 · Oracle +8 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.27 and prior Description: The issue is related to errors in resource release in the InnoDB component of MySQL Server. It can be exploited by a remote attacker to cause a denial of service using the MySQL network...

10CVSS7.3AI score0.87816EPSS
Exploits22References813
Kitploit
Kitploit
added 2021/11/11 8:30 p.m.44 views

Boofuzz - Network Protocol Fuzzing for Humans

Boofuzz is a fork of and the successor to the venerable Sulley fuzzing framework. Besides numerous bug fixes, boofuzz aims for extensibility. The goal: fuzz everything. Why? Sulley has been the preeminent open source fuzzer for some time, but has fallen out of maintenance. Features Like Sulley,...

7.4AI score
Exploits0References4
The Hacker News
The Hacker News
added 2021/11/04 12:9 p.m.245 views

Critical RCE Vulnerability Reported in Linux Kernel's TIPC Module

Cybersecurity researchers have disclosed a security flaw in the Linux Kernel's Transparent Inter Process Communication TIPC module that could potentially be leveraged both locally as well as remotely to execute arbitrary code within the kernel and take control of vulnerable machines. Tracked as...

9.8CVSS8.4AI score0.57853EPSS
Exploits2
OSV
OSV
added 2021/11/04 10:15 a.m.3 views

CVE-2020-25367

A command injection vulnerability was discovered in the HNAP1 protocol in D-Link DIR-823G devices with firmware V1.0.2B05. An attacker is able to execute arbitrary web scripts via shell metacharacters in the Captcha field to Login...

9.8CVSS7.5AI score
Exploits0References3
OpenVAS
OpenVAS
added 2021/10/23 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-5116-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.01476EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/10/21 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-5116-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.01476EPSS
Exploits4References2
Ubuntu
Ubuntu
added 2021/10/20 6:42 p.m.114 views

USN-5116-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Alois Wohlschlager discovered that the overlay file system in the Linux kernel did not...

7.8CVSS6.7AI score0.01476EPSS
Exploits4
Ubuntu
Ubuntu
added 2021/10/20 6:39 p.m.140 views

USN-5115-1: Linux kernel (OEM) vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF...

7.8CVSS7.4AI score0.01476EPSS
Exploits11
Ubuntu
Ubuntu
added 2021/10/19 10:30 p.m.129 views

USN-5113-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Alois Wohlschlager discovered that the overlay file system in the Linux kernel did not...

7.8CVSS6.8AI score0.01476EPSS
Exploits6
OSV
OSV
added 2021/10/13 1:15 a.m.1 views

CVE-2021-36953

Windows TCP/IP Denial of Service Vulnerability...

7.5CVSS7.1AI score0.04777EPSS
Exploits0References1
OSV
OSV
added 2021/09/21 10:3 p.m.6 views

CLSA-2021-1632261812 Fix of CVE: CVE-2020-25211, CVE-2020-25656, CVE-2019-19532, CVE-2020-29661

CKSIX-277: CVE-2020-29661: tty: Fix -pgrp locking in tiocspgrp - CKSIX-277: CVE-2020-25656: vt: keyboard, extend funcbuflock to readers - CKSIX-277: CVE-2020-25656: tty/vt: fix write/write race in ioctlKDSKBSENT handler - CKSIX-277: CVE-2020-25656: vt: keyboard, simplify vtkdgkbsent - CKSIX-277:...

7.8CVSS6.8AI score0.01129EPSS
Exploits4References1
Rows per page
Query Builder