Lucene search
K

1155 matches found

BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.4 views

The vulnerability of DNS-client TCP/IP clients of NicheLite and InterNiche allows a hacker to induce a service failure.

The vulnerability of DNS-client TCP/IP implementations like NicheLite and InterNiche involves an escape from the expected range of values for certain indicators. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.4AI score0.01453EPSS
Exploits0References6Affected Software2
CNNVD
CNNVD
added 2021/09/14 12:0 a.m.4 views

Siemens SIMATIC 安全特征问题漏洞

The LOGO! CMR family is a communication system for monitoring and controlling distributed devices and systems via text messages or e-mail.Siemens SIMATIC RTU3000C is a compact RTU from Siemens, Germany is a low-power remote terminal unit RTU for energy self-sufficiency. A vulnerability in the...

5.4CVSS5.7AI score0.00345EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/09/14 12:0 a.m.24 views

EulerOS 2.0 SP2 : curl (EulerOS-SA-2021-2364)

According to the version of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in libcurl, is used to...

3.1CVSS7.3AI score0.04385EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/09/14 12:0 a.m.1 views

PT-2021-6413 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to the implementation of the Windows SMB network protocol in the Microsoft Windows operating system, specifically concerning access control weaknesses...

7.8CVSS7AI score0.00445EPSS
Exploits0References9
Apple
Apple
added 2021/09/13 12:0 a.m.44 views

About the security content of macOS Big Sur 11.6

About the security content of macOS Big Sur 11.6 This document describes the security content of macOS Big Sur 11.6. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...

9.3CVSS9.5AI score0.75994EPSS
Exploits5References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/09/07 12:0 a.m.59 views

EulerOS 2.0 SP5 : curl (EulerOS-SA-2021-2325)

According to the version of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPTTELNETOPTIONS in libcurl, is used to...

3.1CVSS7.3AI score0.04385EPSS
Exploits1References2
ICS
ICS
added 2021/08/31 12:0 a.m.86 views

FANUC Robot Controllers (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: FANUC Equipment: R-30iA and R-30iB series controllers Vulnerabilities: Integer Coercion Error, Out-of-bounds Write 2. UPDATE INFORMATION This advisory is a follow-up to the original advisory titled ICSA-21-243-02P FANUC...

8.8CVSS8.6AI score0.01183EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/08/27 12:0 a.m.4 views

The vulnerability in the implementation of the TCP/IP protocol stack for Juniper Networks Junos OS allows a attacker to cause a service failure.

The vulnerability of the TCP/IP protocol stack implementation in Juniper Networks Junos OS lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted packets...

7.8CVSS7.5AI score0.00993EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/08/12 6:15 p.m.2 views

CVE-2021-26424

Windows TCP/IP Remote Code Execution Vulnerability...

9.9CVSS7.3AI score0.58898EPSS
Exploits0References1
OSV
OSV
added 2021/08/05 9:15 p.m.31 views

CVE-2021-22925

curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...

5.3CVSS1.6AI score0.04929EPSS
Exploits1References12
NVD
NVD
added 2021/08/05 9:15 p.m.19 views

CVE-2021-22925

curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...

5.3CVSS0.04929EPSS
Exploits1References12
Prion
Prion
added 2021/08/05 9:15 p.m.25 views

Stack overflow

curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...

5CVSS6.6AI score0.04929EPSS
Exploits1References12Affected Software8
CVE
CVE
added 2021/08/05 12:0 a.m.455 views

CVE-2021-22925

CVE-2021-22925 affects curl/libcurl’s TELNET OPTION handling (-t / CURLOPT_TELNETOPTIONS). A flaw in the option parser for NEW_ENV variables can cause uninitialized data from a stack buffer to be sent to the server, due to incorrect sscanf usage when parsing the provided string. This could reveal...

5.3CVSS6.3AI score0.04929EPSS
Exploits1References12Affected Software1
Cvelist
Cvelist
added 2021/08/05 12:0 a.m.23 views

CVE-2021-22925

curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...

6.5AI score0.04929EPSS
Exploits1References12
AlpineLinux
AlpineLinux
added 2021/08/05 12:0 a.m.40 views

CVE-2021-22925

curl supports the -t command line option, known as CURLOPTTELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEWENV variables, libcurlcould be made to pass on uninitialized data from a stack based...

5.3CVSS6.7AI score0.04929EPSS
Exploits1
OSV
OSV
added 2021/07/22 8:15 p.m.1 views

DEBIAN-CVE-2020-22283

A buffer overflow vulnerability in the icmp6sendresponsewithaddrsandnetif function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet...

7.5CVSS7.5AI score0.01366EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/07/22 12:0 a.m.269 views

Ubuntu 18.04 LTS / 20.04 LTS : curl vulnerabilities (USN-5021-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5021-1 advisory. Harry Sintonen and Tomas Hoger discovered that curl incorrectly handled TELNET connections when the -t option was used on the command line...

5.3CVSS6.5AI score0.0627EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2021/07/21 1:17 a.m.2 views

kernel: use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c

A flaw use-after-free in the Linux kernel CIPSO network packet labeling protocol functionality was found in the way user open local network connection with the usage of the security labeling that is IP option number 134. A local user could use this flaw to crash the system or possibly escalate...

7.8CVSS6.7AI score0.00571EPSS
Exploits1References4
ArchLinux
ArchLinux
added 2021/07/21 12:0 a.m.153 views

[ASA-202107-48] linux: privilege escalation

Arch Linux Security Advisory ASA-202107-48 ========================================== Severity: High Date : 2021-07-21 CVE-ID : CVE-2021-3609 CVE-2021-3612 CVE-2021-33909 Package : linux Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-2181 Summary ======= The...

7.8CVSS0.9AI score0.09808EPSS
Exploits7References19
CNNVD
CNNVD
added 2021/07/14 12:0 a.m.4 views

Juniper Networks Junos OS 缓冲区错误漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. Junos OS suffers from a buffer error vulnerability that originates from a buffer overflow vulnerability in the device's...

7.8CVSS7.7AI score0.00993EPSS
Exploits0References4
Rows per page
Query Builder