Lucene search
K

221 matches found

Ubuntu
Ubuntu
added 2022/10/10 8:35 p.m.61 views

USN-5667-1: Linux kernel vulnerabilities

Selim Enes Karaduman discovered that a race condition existed in the General notification queue implementation of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-188...

7.8CVSS7AI score0.0035EPSS
Exploits0
Oracle linux
Oracle linux
added 2022/10/03 12:0 a.m.63 views

kubernetes security update

kubernetes 1.22.14-1 - Added Oracle specific build files for Kubernetes kubernetes 1.23.11-1 - Added Oracle specific build files for Kubernetes olcne 1.5.6-1 - Upgraded kubernetes-1.23.7 to 1.23.11, 1.22.8 to 1.22.14 and 1.21.6 to 1.21.14 - Resolve Kubernetes CVE-2022-3172 for version 1.21 -...

7.3AI score0.02701EPSS
Exploits2
The Hacker News
The Hacker News
added 2022/09/22 10:40 a.m.63 views

Researchers Disclose Critical Vulnerability in Oracle Cloud Infrastructure

Researchers have disclosed a new severe Oracle Cloud Infrastructure OCI vulnerability that could be exploited by users to access the virtual disks of other Oracle customers. "Each virtual disk in Oracle's cloud has a unique identifier called OCID," Shir Tamari, head of research at Wiz, said in a...

0.9AI score
Exploits0
Ubuntu
Ubuntu
added 2022/09/21 9:25 a.m.78 views

USN-5622-1: Linux kernel vulnerabilities

It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-33655 Moshe Ko...

8.2CVSS6.8AI score0.05542EPSS
Exploits3
Ubuntu
Ubuntu
added 2022/09/05 10:22 p.m.72 views

USN-5599-1: Linux kernel (Oracle) vulnerabilities

Asaf Modelevsky discovered that the IntelR 10GbE PCI Express ixgbe Ethernet driver for the Linux kernel performed insufficient control flow management. A local attacker could possibly use this to cause a denial of service. CVE-2021-33061 Moshe Kol, Amit Klein and Yossi Gilad discovered that the I...

8.2CVSS6.8AI score0.02972EPSS
Exploits1
Ubuntu
Ubuntu
added 2022/09/05 9:45 p.m.55 views

USN-5597-1: Linux kernel (Oracle) vulnerability

It was discovered that the virtual terminal driver in the Linux kernel did not properly handle VGA console font changes, leading to an out-of-bounds write. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...

6.8CVSS7AI score0.00537EPSS
Exploits0
Ubuntu
Ubuntu
added 2022/08/10 12:36 p.m.89 views

USN-5560-2: Linux kernel vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.3AI score0.12746EPSS
Exploits26
Ubuntu
Ubuntu
added 2022/07/14 1:5 a.m.117 views

USN-5518-1: Linux kernel vulnerabilities

It was discovered that the eBPF implementation in the Linux kernel did not properly prevent writes to kernel objects in BPFBTFLOAD commands. A privileged local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-0500 It was discovered tha...

7.8CVSS7.2AI score0.00545EPSS
Exploits2
Ubuntu
Ubuntu
added 2022/07/13 7:3 p.m.114 views

USN-5514-1: Linux kernel vulnerabilities

It was discovered that the implementation of the 6pack and mkiss protocols in the Linux kernel did not handle detach events properly in some situations, leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2022-1195...

7.5CVSS6.9AI score0.0155EPSS
Exploits3
The Hacker News
The Hacker News
added 2022/07/02 4:22 a.m.44 views

TikTok Assures U.S. Lawmakers it's Working to Safeguard User Data From Chinese Staff

Following heightened worries that U.S. users' data had been accessed by TikTok engineers in China between September 2021 and January 2022, the company sought to assuage U.S. lawmakers that it's taking steps to "strengthen data security." The admission that some China-based employees can access...

6.5AI score
Exploits0
Wiz blog
Wiz blog
added 2022/06/30 5:40 a.m.17 views

Wiz extends CNAPP leadership with protection for Alibaba Cloud

Support for Alibaba Cloud follows just weeks after launch of Oracle Cloud Infrastructure OCI integration, providing organizations the broadest coverage of any cloud native application protection platform CNAPP...

6.8AI score
Exploits0
CNVD
CNVD
added 2022/06/21 12:0 a.m.17 views

Oracle Cloud Infrastructure Information Disclosure Vulnerability (CNVD-2022-74098)

Oracle Corporation Oracle is the world's largest provider of information management software and services, founded in 1977, headquartered in Redwood shore, California, USA, open for global oracle certification. oracle Cloud Infrastructure is a cloud services platform from Oracle Corporation USA...

4CVSS1.6AI score0.00797EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/06/17 9:15 p.m.4 views

CVE-2022-21503

Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services. Easily exploitable vulnerability allows high privileged attacker with network access to compromise Oracle Cloud Infrastructure. Successful attacks of this vulnerability can result in unauthorized access to Oracle...

4.9CVSS5.8AI score0.00797EPSS
Exploits0References2
NVD
NVD
added 2022/06/17 9:15 p.m.20 views

CVE-2022-21503

Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services. Easily exploitable vulnerability allows high privileged attacker with network access to compromise Oracle Cloud Infrastructure. Successful attacks of this vulnerability can result in unauthorized access to Oracle...

4.9CVSS0.00797EPSS
Exploits0References1
Prion
Prion
added 2022/06/17 9:15 p.m.24 views

Design/Logic Flaw

Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services. Easily exploitable vulnerability allows high privileged attacker with network access to compromise Oracle Cloud Infrastructure. Successful attacks of this vulnerability can result in unauthorized access to Oracle...

4CVSS4.1AI score0.00797EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/06/17 8:20 p.m.12 views

CVE-2022-21503

Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services. Easily exploitable vulnerability allows high privileged attacker with network access to compromise Oracle Cloud Infrastructure. Successful attacks of this vulnerability can result in unauthorized access to Oracle...

4.9CVSS5.7AI score0.00797EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/17 8:20 p.m.21 views

CVE-2022-21503

Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services. Easily exploitable vulnerability allows high privileged attacker with network access to compromise Oracle Cloud Infrastructure. Successful attacks of this vulnerability can result in unauthorized access to Oracle...

4.9CVSS4.3AI score0.00797EPSS
Exploits0References1
CVE
CVE
added 2022/06/17 8:20 p.m.96 views

CVE-2022-21503

The CVE-2022-21503 entry concerns Oracle Cloud Infrastructure (OCI) vulnerabilities described as: an easily exploitable issue allowing a high-privileged attacker with network access to compromise OCI and potentially obtain unauthorized access to data. Documented impact states confidentiality expo...

4.9CVSS4.4AI score0.00797EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/06/17 12:0 a.m.4 views

Oracle Cloud Infrastructure 安全漏洞

Oracle Corporation Oracle is the world's largest provider of information management software and services, founded in 1977, headquartered in Redwood shore, California, USA, open for global oracle certification. oracle Cloud Infrastructure is a cloud services platform from Oracle Corporation USA...

4.9CVSS5.6AI score0.00797EPSS
Exploits0References2
Wiz blog
Wiz blog
added 2022/06/02 5:30 a.m.17 views

Wiz now integrates with Oracle Cloud Infrastructure, bringing a graph-based cloud security approach to all major providers

Fortune 500’s Avery Dennison among enterprises that operate securely on OCI and other cloud infrastructure with Wiz...

7AI score
Exploits0
Rows per page
Query Builder