CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2022/04/12 11:0 p.m.•2 views

CVE-2022-28245

5.5CVSS7.1AI score0.02084EPSS

ATTACKERKB•added 2022/04/12 11:0 p.m.•2 views

CVE-2022-28255

5.5CVSS5.9AI score0.02084EPSS

ATTACKERKB•added 2022/04/12 11:0 p.m.•2 views

CVE-2022-28252

4.3CVSS7.1AI score0.09025EPSS

CNNVD•added 2022/04/12 12:0 a.m.•3 views

多款Adobe产品缓冲区错误漏洞

Adobe Acrobat is a set of PDF file editing and conversion tools. Adobe Acrobat Reader is a PDF viewer. The software is used to print, sign and annotate PDFs. several Adobe products have an out-of-bounds read vulnerability, which can be exploited by attackers to bypass mitigation measures such as...

5.5CVSS5.6AI score0.09555EPSS

Exploits0References4

Positive Technologies•added 2022/04/12 12:0 a.m.•2 views

PT-2022-7068 · Adobe · Acrobat Reader

Name of the Vulnerable Software and Affected Versions: Acrobat Reader DC versions 17.012.30205 through 22.001.20085 Acrobat Reader DC versions 20.005.3031x and earlier Description: The issue is related to an out-of-bounds read vulnerability when parsing a crafted file, which could result in a rea...

5.5CVSS7.5AI score0.00261EPSS

Exploits0References10

MSRC•added 2022/04/05 6:0 p.m.•27 views

Randomizing the KUSER_SHARED_DATA Structure on Windows

Windows 10 made a lot of improvements in Kernel Address Space Layout Randomization KASLR that increases the cost of exploitation, particularly for remote code execution exploits. Many kernel virtual address space VAS locations including kernel stacks, pools, system PTEs etc. are randomized. A...

3.4AI score

MSRC•added 2022/04/05 7:0 a.m.•16 views

Randomizing the KUSER_SHARED_DATA Structure on Windows

3.6AI score

MSRC•added 2022/04/05 7:0 a.m.•9 views

Randomizing the KUSER_SHARED_DATA Structure on Windows

7.7AI score

Tenable Nessus•added 2022/04/05 12:0 a.m.•49 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2022-9260)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9260 advisory. - drm/i915: Flush TLBs before releasing backing store Tvrtko Ursulin Orabug: 33835812 CVE-2022-0330 - drm/i915: Reduce locking in execlist command...

7.8CVSS6.8AI score0.0674EPSS

Exploits0References6

OSV•added 2022/03/16 3:15 p.m.•2 views

CVE-2021-40769

Adobe Character Animator version 4.4 and earlier versions are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction i...

3.3CVSS5.6AI score0.01124EPSS

Positive Technologies•added 2022/03/08 12:0 a.m.•4 views

PT-2022-9728 · Amd +4 · Amd Cpus +4

Name of the Vulnerable Software and Affected Versions: AMD CPUs affected versions not specified Description: The issue is related to speculative execution in AMD CPUs, which may allow data leakage by transiently executing beyond unconditional direct branches. This could potentially lead to the...

8.8CVSS7.4AI score0.06451EPSS

Exploits74References1193

Microsoft CVE•added 2022/03/01 8:0 a.m.•4 views

A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity because software that relies on UDP source port randomization are indirectly affected as well.

...

7.4CVSS7.2AI score0.0674EPSS

OSV•added 2022/02/18 6:15 p.m.•8 views

CVE-2021-20322

A flaw in the processing of received ICMP errors ICMP fragment needed and ICMP redirect in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest...

7.4CVSS7.2AI score

Exploits0References9

OSV•added 2022/02/18 6:15 p.m.•1 views

DEBIAN-CVE-2021-20322

7.4CVSS6.5AI score0.0674EPSS

Prion•added 2022/02/18 6:15 p.m.•30 views

Design/Logic Flaw

5.8CVSS7AI score0.0674EPSS

Exploits0References9Affected Software7

Cvelist•added 2022/02/18 5:50 p.m.•29 views

CVE-2021-20322

7.5AI score0.0674EPSS

Exploits0References9

OSV•added 2022/02/16 5:15 p.m.•2 views

CVE-2022-23191

Adobe Illustrator versions 25.4.3 and earlier and 26.0.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

5.5CVSS5.8AI score0.01876EPSS

OSV•added 2022/02/16 5:15 p.m.•2 views

CVE-2022-23195

5.5CVSS5.8AI score

OSV•added 2022/02/16 5:15 p.m.•2 views

CVE-2022-23190

5.5CVSS6.1AI score0.01876EPSS