Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:1 p.m.18 views

CVE-2022-3347

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

7.5CVSS6.8AI score0.00242EPSS
Exploits0References1
GoogleProjectZero
GoogleProjectZero
added 2024/10/25 12:0 a.m.57 views

The Windows Registry Adventure #4: Hives and the registry layout

Posted by Mateusz Jurczyk, Google Project Zero To a normal user or even a Win32 application developer, the registry layout may seem simple: there are five root keys that we know from Regedit abbreviated as HKCR, HKLM, HKCU, HKU and HKCC, and each of them contains a nested tree structure that serv...

7.8CVSS6.4AI score0.08698EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/10/23 12:0 a.m.5 views

PT-2023-29855 · Sbt +1 · Sbt +1

Name of the Vulnerable Software and Affected Versions: sbt versions prior to 1.9.7 Description: The issue allows writing of arbitrary files given a specially crafted zip or JAR file, utilizing IO.unzip. This could potentially overwrite /root/.ssh/authorized keys. Within sbt's main code, IO.unzip ...

7.1CVSS6.9AI score0.0034EPSS
Exploits1References22
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.6 views

SUSE CVE-2011-3590

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH private keys within a vmcore file, which allows context-dependent attackers to obtain sensitive...

5.7CVSS6.2AI score0.00568EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/12/27 9:17 p.m.7 views

CVE-2022-3347 Incorrect validation of root DNSSEC public keys in github.com/peterzen/goresolver

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

7.7AI score0.00242EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/09/29 12:0 a.m.7 views

PT-2022-21781 · Unknown · Go-Resolver

Name of the Vulnerable Software and Affected Versions: go-resolver affected versions not specified Description: The issue is related to incorrect DNSSEC validation. An attacker can cause the package to report successful validation for invalid, attacker-controlled records. Specifically, root DNSSE...

7.7CVSS7.2AI score0.00242EPSS
Exploits0References8
Schneier on Security
Schneier on Security
added 2021/11/10 12:17 p.m.14 views

Hacking the Sony Playstation 5

I just dont think its possible to create a hack-proof computer system, especially when the system is physically in the hands of the hackers. The Sony Playstation 5 is the latest example: Hackers may have just made some big strides towards possibly jailbreaking the PlayStation 5 over the weekend,...

7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2012/02/21 2:20 a.m.9 views

kexec-tools: Multiple security flaws by management of kdump core files and ramdisk images

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH private keys within a vmcore file, which allows context-dependent attackers to obtain sensitive...

5.7CVSS5.8AI score0.00568EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/12/05 7:54 p.m.5 views

kexec-tools: Multiple security flaws by management of kdump core files and ramdisk images

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, uses world-readable permissions for vmcore files, which allows local users to obtain sensitive information by inspecting the file...

5.7CVSS5.8AI score0.00543EPSS
Exploits1References4
Rows per page
Query Builder