Lucene search
K

221 matches found

OSV
OSV
added 2023/06/22 12:15 p.m.2 views

CVE-2023-20894

The VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bound write by sending a specially crafted packet leading to memory corruption...

9.8CVSS7.3AI score0.33945EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.4 views

SUSE CVE-2020-29362

An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS11 function call, the receiving...

5.3CVSS7.5AI score0.02261EPSS
Exploits0References29
OSV
OSV
added 2022/11/08 6:26 a.m.46 views

RLSA-2022:7692 Moderate: xmlrpc-c security update

XML-RPC is a remote procedure call RPC protocol that uses XML to encode its calls and HTTP as a transport mechanism. The xmlrpc-c packages provide a network protocol to allow a client program to make a simple RPC remote procedure call over the Internet. It converts an RPC into an XML document,...

9.8CVSS8.7AI score0.04829EPSS
Exploits1References8
AlmaLinux
AlmaLinux
added 2022/11/08 12:0 a.m.49 views

Moderate: xmlrpc-c security update

XML-RPC is a remote procedure call RPC protocol that uses XML to encode its calls and HTTP as a transport mechanism. The xmlrpc-c packages provide a network protocol to allow a client program to make a simple RPC remote procedure call over the Internet. It converts an RPC into an XML document,...

9.8CVSS9.3AI score0.04829EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2022/08/24 12:0 a.m.34 views

SUSE SLES12: libp11-kit0 / libp11-kit0-32bit / p11-kit / p11-kit-32bit / etc (SUSE-SU-2022:2871-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2871-1 advisory. - CVE-2020-29362: Fixed a 4 byte overread that could lead to crashes bsc1180065 Tenable has extracted the preceding description block direct...

5.3CVSS6.8AI score0.02261EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/07/15 12:0 a.m.85 views

SUSE SLED15 / SLES15 Security Update : p11-kit (SUSE-SU-2022:2405-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2405-1 advisory. - An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the R...

5.3CVSS7AI score0.02261EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/17 2:54 a.m.34 views

Improper Authentication in Apache Hadoop

The RPC protocol implementation in Apache Hadoop 2.x before 2.0.6-alpha, 0.23.x before 0.23.9, and 1.x before 1.2.1, when the Kerberos security features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information by forcing a downgrade ...

3.2CVSS3.9AI score0.01069EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/05/09 12:0 a.m.56 views

NewStart CGSL MAIN 6.02 : p11-kit Multiple Vulnerabilities (NS-SA-2022-0066)

The remote NewStart CGSL host, running version MAIN 6.02, has p11-kit packages installed that are affected by multiple vulnerabilities: - An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and...

7.5CVSS7.1AI score0.03515EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.24 views

Slackware: Security Advisory (SSA:2020-347-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03515EPSS
Exploits0References2
Akamai Blog
Akamai Blog
added 2022/02/23 2:0 p.m.24 views

A Definitive Guide to the Remote Procedure Call (RPC) Filter

...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.39 views

Oracle Linux 8 : p11-kit (ELSA-2021-1609)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1609 advisory. - Rebase to 0.23.22 to fix memory safety issues CVE-2020-29361, CVE-2020-29362, and CVE-2020-29363 Tenable has extracted the preceding description bloc...

7.5CVSS6.8AI score0.03515EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/05/18 3:27 p.m.2 views

p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c

An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS11 function call, the receiving...

5.3CVSS7.3AI score0.02261EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/03/12 12:0 a.m.45 views

Amazon Linux 2 : p11-kit (ALAS-2021-1601)

The version of p11-kit installed on the remote host is prior to 0.23.22-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1601 advisory. An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array...

7.5CVSS7.1AI score0.03515EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for p11-kit (EulerOS-SA-2021-1620)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.03515EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/03/11 12:0 a.m.27 views

EulerOS Virtualization 2.9.0 : p11-kit (EulerOS-SA-2021-1636)

According to the versions of the p11-kit packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array...

7.5CVSS7.1AI score0.03515EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.35 views

EulerOS Virtualization 3.0.2.6 : p11-kit (EulerOS-SA-2021-1419)

According to the versions of the p11-kit packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array...

7.5CVSS7.1AI score0.03515EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.26 views

EulerOS Virtualization 2.9.1 : p11-kit (EulerOS-SA-2021-1620)

According to the versions of the p11-kit package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocatio...

7.5CVSS7.1AI score0.03515EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/03/04 12:0 a.m.29 views

EulerOS Virtualization for ARM 64 3.0.6.0 : p11-kit (EulerOS-SA-2021-1568)

According to the versions of the p11-kit packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RP...

7.5CVSS7.1AI score0.03515EPSS
Exploits0References4
Amazon
Amazon
added 2021/02/20 12:0 a.m.68 views

Medium: p11-kit

Issue Overview: An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc. CVE-2020-29361 An issue was...

7.5CVSS7.7AI score0.03515EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.29 views

EulerOS 2.0 SP8 : p11-kit (EulerOS-SA-2021-1161)

According to the versions of the p11-kit packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the...

7.5CVSS7.1AI score0.03515EPSS
Exploits0References4
Rows per page
Query Builder