Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1262 matches found

Zero Day Initiative
Zero Day Initiativeadded 2020/08/13 12:0 a.m.33 views

Microsoft Windows WalletService Race Condition Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

2.5CVSS4.6AI score0.00278EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/08/13 12:0 a.m.29 views

Microsoft Windows WalletService Race Condition Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

2.5CVSS4.6AI score0.00278EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/08/11 12:0 a.m.30 views

Canonical Ubuntu Point-to-Point Protocol Daemon Arbitrary File Read Information Disclosure Vulnerability

This vulnerability allows local attackers to read arbitrary files on affected installations of Canonical Ubuntu. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

5.5CVSS3.5AI score0.00105EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2020/08/06 12:0 a.m.34 views

FreeBSD Kernel sendmsg System Call Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of FreeBSD Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

8.8CVSS3.6AI score0.01508EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/08/04 12:0 a.m.38 views

X.Org Server Pixel Data Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processi...

5.5CVSS4.7AI score0.00098EPSS
Exploits0References1
OSV
OSVadded 2020/07/28 4:15 p.m.24 views

CVE-2020-15863

hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial o...

5.3CVSS6.6AI score
Exploits0References8
NVD
NVDadded 2020/07/28 4:15 p.m.17 views

CVE-2020-15863

hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial o...

5.3CVSS6.2AI score0.00127EPSS
Exploits0References8
UbuntuCve
UbuntuCveadded 2020/07/28 4:15 p.m.19 views

CVE-2020-15863

hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial o...

5.3CVSS7.2AI score0.00127EPSS
Exploits0References3
Prion
Prionadded 2020/07/28 4:15 p.m.20 views

Buffer overflow

hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial o...

4.4CVSS5.6AI score0.00127EPSS
Exploits0References8Affected Software3
CVE
CVEadded 2020/07/28 3:40 p.m.228 views

CVE-2020-15863

CVE-2020-15863 affects QEMU pre-07-20-2020, in the XGMAC Ethernet controller (hw/net/xgmac.c). A buffer overflow during packet transmission can allow a guest user/process to crash the QEMU host process, yielding denial of service or potential privilege escalation, specifically impacting the highb...

5.3CVSS5.9AI score0.00127EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVEadded 2020/07/28 3:40 p.m.28 views

CVE-2020-15863

hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial o...

5.3CVSS6.8AI score0.00127EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2020/07/28 3:40 p.m.33 views

CVE-2020-15863

hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QEMU process on the host, resulting in a denial o...

5.3CVSS6.2AI score0.00127EPSS
Exploits0
CNVD
CNVDadded 2020/07/27 12:0 a.m.4 views

Lenovo Drivers Management DLL Search Path Vulnerability

Lenovo Drivers Management is a driver management tool. A DLL search path vulnerability exists in versions prior to Lenovo Drivers Management 2.7.1128.1046. An attacker can exploit this vulnerability to execute code with elevated privileges...

7.8CVSS7.3AI score0.00058EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2020/07/25 12:0 a.m.2 views

PT-2020-5186 · Qemu +4 · Qemu +4

Name of the Vulnerable Software and Affected Versions: QEMU versions prior to 07-20-2020 Description: The issue is related to a buffer overflow in the XGMAC Ethernet controller, specifically in the xgmac enet send function. This occurs during packet transmission and affects the highbank and midwa...

7.5CVSS7.2AI score0.11436EPSS
Exploits7References237
Zero Day Initiative
Zero Day Initiativeadded 2020/07/20 12:0 a.m.32 views

Oracle VirtualBox LsiLogicSCSI Time-Of-Check Time-Of-Use Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

5.3CVSS2.4AI score0.00146EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/07/20 12:0 a.m.32 views

Oracle VirtualBox e1000 Unintialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

6CVSS3.9AI score0.00164EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/07/20 12:0 a.m.27 views

Oracle VirtualBox BusLogicSCSI Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

5.3CVSS2.8AI score0.00146EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/07/20 12:0 a.m.30 views

Oracle VirtualBox BusLogicSCSI Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

6CVSS3.9AI score0.00164EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/07/20 12:0 a.m.44 views

Oracle VirtualBox e1000 Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

5.3CVSS2.8AI score0.00146EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/07/20 12:0 a.m.31 views

Oracle VirtualBox BusLogicSCSI Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

5.3CVSS2.8AI score0.00146EPSS
Exploits0References1
Rows per page
Query Builder