Lucene search
K

203 matches found

OpenVAS
OpenVAS
added 2024/03/08 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2024:0796-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.6AI score0.00541EPSS
Exploits1References5
OSV
OSV
added 2024/03/07 9:34 a.m.6 views

SUSE-SU-2024:0797-2 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/03/07 9:34 a.m.5 views

SUSE-SU-2024:0797-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/03/07 9:34 a.m.9 views

SUSE-SU-2024:0796-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/03/07 9:34 a.m.2 views

SUSE-SU-2024:0796-2 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/03/07 9:33 a.m.0 views

SUSE-SU-2024:0795-2 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/03/07 9:33 a.m.5 views

SUSE-SU-2024:0795-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/03/07 9:33 a.m.2 views

SUSE-SU-2024:0794-2 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/03/07 9:33 a.m.8 views

SUSE-SU-2024:0794-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...

7CVSS6.7AI score0.00541EPSS
Exploits1References4
OSV
OSV
added 2024/02/20 11:21 a.m.8 views

CLSA-2024-1708428112 sudo: Fix of CVE-2023-42465

CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...

7CVSS6.7AI score0.00541EPSS
Exploits1References1
OSV
OSV
added 2024/02/20 11:18 a.m.5 views

CLSA-2024-1708427919 sudo: Fix of CVE-2023-42465

CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...

7CVSS6.1AI score0.00541EPSS
Exploits1References1
CloudLinux
CloudLinux
added 2024/02/20 11:18 a.m.119 views

sudo: Fix of CVE-2023-42465

CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...

7CVSS7.3AI score0.00541EPSS
Exploits1
OSV
OSV
added 2024/02/20 10:57 a.m.6 views

CLSA-2024-1708426650 sudo: Fix of CVE-2023-42465

CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...

7CVSS6.1AI score0.00541EPSS
Exploits1References1
OSV
OSV
added 2024/02/20 10:53 a.m.8 views

CLSA-2024-1708426423 sudo: Fix of CVE-2023-42465

CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...

7CVSS6.7AI score0.00541EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/01/10 12:0 a.m.8 views

The vulnerability of the mm-answer-authpassword() function in the OpenSSH cryptographic protection mechanism allows a hacker to execute the Rowhammer attack and bypass the authentication process.

The vulnerability of the mm-answer-authpassword function in the OpenSSH cryptographic protection mechanism is related to deficiencies in the authentication process. This vulnerability arises when an operation exceeds the buffer boundaries in memory, resulting in bit manipulation errors. Exploitin...

7CVSS7.3AI score0.00661EPSS
Exploits0References10Affected Software4
Snyk
Snyk
added 2023/12/24 7:46 a.m.1 views

Improper Isolation or Compartmentalization

Overview Affected versions of this package are vulnerable to Improper Isolation or Compartmentalization with the memory involved in the mmanswerauthpassword function. A co-located attacker with low privileges can escalate privileges by inducing bit flips through ROWHAMMER attacks on stack variabl...

7CVSS7.1AI score0.00661EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/12/22 12:0 a.m.5 views

Sudo Security Breach

Sudo is a program for use on Unix-like systems that allows users to execute commands in a secure manner with special privileges. A security vulnerability exists in versions of Sudo prior to 1.9.15, which stems from vulnerability to a ROWHAMMER attack that can bypass SUDO authentication...

7CVSS7.1AI score0.00541EPSS
Exploits1References6
Slackware Linux
Slackware Linux
added 2023/11/07 8:3 p.m.59 views

[slackware-security] sudo

New sudo packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/sudo-1.9.15-i586-1slack15.0.txz: Upgraded. The sudoers plugin has been modified to make it more resilient to ROWHAMME...

8.1CVSS6.8AI score0.00571EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.15 views

F5 Networks BIG-IP : Rowhammer hardware vulnerability (K60570139)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K60570139 advisory. - Modern DRAM chips DDR4 and LPDDR4 after 2015 are affected by a vulnerability in deployment of internal mitigations...

9.3CVSS8.4AI score0.02515EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 7:27 p.m.57 views

K60570139: Rowhammer hardware vulnerability CVE-2020-10255

Security Advisory Description Modern DRAM chips DDR4 and LPDDR4 after 2015 are affected by a vulnerability in deployment of internal mitigations against RowHammer attacks known as Target Row Refresh TRR, aka the TRRespass issue. To exploit this vulnerability, the attacker needs to create certain...

9.3CVSS8.9AI score0.02515EPSS
Exploits0Affected Software11
Rows per page
Query Builder