Lucene search
+L

103 matches found

OSV
OSV
added 2024/05/03 4:15 p.m.7 views

DEBIAN-CVE-2022-48697

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a use-after-free Fix the following use-after-free complaint triggered by blktests nvme/004: BUG: KASAN: user-memory-access in blkmqcompleterequestremote+0xac/0x350 Read of size 4 at addr 0000607bd1835943 by task...

5.3CVSS5.5AI score0.00228EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.8 views

PT-2024-12064 · Lenovo · Smart Edge +2

Name of the Vulnerable Software and Affected Versions: Lenovo Desktop, Smart Edge, and ThinkStation products affected versions not specified Description: A potential issue was reported in the BIOS of some Lenovo products, including Desktop, Smart Edge, and ThinkStation, that could allow a local...

6.7CVSS6.7AI score0.00179EPSS
Exploits0References5
OSV
OSV
added 2024/02/07 9:15 p.m.5 views

DEBIAN-CVE-2023-6356

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service...

7.5CVSS6.3AI score0.01448EPSS
Exploits0References1
OSV
OSV
added 2024/02/07 9:15 p.m.4 views

UBUNTU-CVE-2023-6356

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service...

7.5CVSS6.6AI score0.01448EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2024/02/07 4:33 p.m.4 views

kernel: NULL pointer dereference in nvmet_tcp_execute_request

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service...

7.5CVSS6.6AI score0.01549EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/12/22 12:0 a.m.7 views

The vulnerability of the __nvmet_reqComplete() function in the drivers/nvme/target/tcp.c file of the Linux NVMe kernel driver allows a hacker to trigger a service failure.

The vulnerability of the nvmetreqComplete function in the drivers/nvme/target/tcp.c file of the Linux NVMe driver kernel involves the assignment of a null pointer. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

7.8CVSS6.6AI score0.01537EPSS
Exploits0References27Affected Software4
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.4 views

kernel: scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests The following message and call trace was seen with debug kernels: DMA-API: qla2xxx 0000:41:00.0: device driver failed to check map error device address=0x00000002a3ff38d8...

5.7AI score0.0018EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.5 views

Intel(R) Optane(TM) SSD Security Vulnerability

Intel Optane SSD is a new type of non-volatile memory from Intel Corporation USA. A security vulnerability exists in Intel Optane SSD and Intel Optane SSD DC. Exploitation of this vulnerability by an attacker could result in privilege escalation, information disclosure, or denial of service...

6.5CVSS6.6AI score0.00205EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.4 views

kernel: nvme: fix multipath crash caused by flush request when blktrace is enabled

In the Linux kernel, the following vulnerability has been resolved: nvme: fix multipath crash caused by flush request when blktrace is enabled The flush request initialized by blkkickflush has NULL bio, and it may be dealt with nvmeendreq during io completion. When blktrace is enabled,...

5.5CVSS6.6AI score0.00145EPSS
Exploits0References5
OSV
OSV
added 2023/03/16 9:21 p.m.24 views

USN-5962-1 linux-intel-iotg vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

7.8CVSS7AI score0.06346EPSS
Exploits8References19
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.30 views

K71612511: Kernel vulnerability CVE-2016-8106

Security Advisory Description A Denial of Service in Intel Ethernet Controller's X710/XL710 with Non-Volatile Memory Images before version 5.05 allows a remote attacker to stop the controller from processing network traffic working under certain network use conditions. CVE-2016-8106 Impact There ...

5.9CVSS6.2AI score0.05129EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/12/14 12:0 a.m.8 views

The vulnerability of the NVMe (Non-Volatile Memory Express) driver for Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the NVMe Non-Volatile Memory Express kernel driver for Linux operating systems is related to insufficient validation of input data during the processing of NVMEIOCTLRESET and NVMEIOCTLSUBSYSRESET requests. Exploiting this vulnerability can allow an attacker to trigger a servi...

5.5CVSS6.1AI score0.0023EPSS
Exploits0References11Affected Software3
ATTACKERKB
ATTACKERKB
added 2022/07/26 10:15 p.m.12 views

CVE-2022-31207

The Omron SYSMAC Cx product family PLCs CS series, CJ series, and CP series through 2022-05-18 lack cryptographic authentication. They utilize the Omron FINS 9600/TCP protocol for engineering purposes, including downloading projects and control logic to the PLC. This protocol has authentication...

9.8CVSS7.6AI score0.00767EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/04/22 9:15 p.m.7 views

CVE-2021-4210

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code...

7.2CVSS7AI score0.00245EPSS
Exploits0References2
OSV
OSV
added 2022/02/18 6:15 p.m.2 views

DEBIAN-CVE-2021-3947

A stack-buffer-overflow was found in QEMU in the NVME component. The flaw lies in nvmechangednslist where a malicious guest controlling certain input can read out of bounds memory. A malicious user could use this flaw leading to disclosure of sensitive information...

5.5CVSS6.5AI score0.00317EPSS
Exploits1References1
OSV
OSV
added 2021/06/14 7:15 p.m.3 views

CVE-2021-21555

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a heap-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Service...

6.7CVSS6.2AI score0.00314EPSS
Exploits0References1
Prion
Prion
added 2021/06/08 5:15 p.m.9 views

Design/Logic Flaw

In Nuvoton NPCT75x TPM 1.2 firmware 7.4.0.0, a local authenticated malicious user with high privileges could potentially gain unauthorized access to TPM non-volatile memory. NOTE: Upgrading to firmware version 7.4.0.1 will mitigate against the vulnerability, but version 7.4.0.1 is not TCG or Comm...

3.6CVSS5.9AI score0.00222EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/06/08 5:15 p.m.4 views

CVE-2021-32015

In Nuvoton NPCT75x TPM 1.2 firmware 7.4.0.0, a local authenticated malicious user with high privileges could potentially gain unauthorized access to TPM non-volatile memory. NOTE: Upgrading to firmware version 7.4.0.1 will mitigate against the vulnerability, but version 7.4.0.1 is not TCG or Comm...

6CVSS6.4AI score0.00222EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/06/08 4:58 p.m.15 views

CVE-2021-32015

In Nuvoton NPCT75x TPM 1.2 firmware 7.4.0.0, a local authenticated malicious user with high privileges could potentially gain unauthorized access to TPM non-volatile memory. NOTE: Upgrading to firmware version 7.4.0.1 will mitigate against the vulnerability, but version 7.4.0.1 is not TCG or Comm...

6.1AI score0.00222EPSS
Exploits0References1
Lenovo
Lenovo
added 2021/06/08 2:44 p.m.33 views

Nuvoton TPM 1.2 Vulnerability - Lenovo Support US

No description provided...

6CVSS6AI score0.00222EPSS
Exploits0
Rows per page
Query Builder