Lucene search
+L

225 matches found

Microsoft CVE
Microsoft CVE
added 2025/01/29 8:0 a.m.9 views

ksmbd: Fix the missing xa_store error check

...

5.5CVSS7AI score0.00228EPSS
Exploits0
OSV
OSV
added 2024/11/19 2:16 a.m.8 views

UBUNTU-CVE-2024-50285

In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too much memory through the "ksmbdworkcache”. It will cause OOM issue. ksmbd has a credit mechanism but it can'...

5.5CVSS6.2AI score0.0026EPSS
Exploits0References18
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.7 views

The vulnerability of the HTTP Daemon (httpd) on the Juniper Networks Junos OS allows a attacker to cause a service failure.

The vulnerability of the HTTP Daemon httpd component of the Juniper Networks Junos OS operating system is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

7.8CVSS5.4AI score0.00575EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/10/21 12:15 p.m.2 views

DEBIAN-CVE-2024-47692

In the Linux kernel, the following vulnerability has been resolved: nfsd: return -EINVAL when namelen is 0 When we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may result in namelen being 0, which will cause memdupuser to return ZEROSIZEPTR. When we access the name.data that has been...

6.5CVSS6AI score0.01168EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/09/23 12:0 a.m.86 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7029-1)

"The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7029-1 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cau...

9.8CVSS7.8AI score0.02701EPSS
Exploits3References226
Tenable Nessus
Tenable Nessus
added 2024/07/26 12:0 a.m.66 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6917-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6917-1 advisory. Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointe...

9.8CVSS6.7AI score0.01401EPSS
Exploits1References155
Tenable Nessus
Tenable Nessus
added 2024/07/26 12:0 a.m.126 views

Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6918-1)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6918-1 advisory. It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A...

9.1CVSS7AI score0.01401EPSS
Exploits1References179
Tenable Nessus
Tenable Nessus
added 2024/07/17 12:0 a.m.116 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6898-2)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6898-2 advisory. Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointe...

9.1CVSS7.2AI score0.01401EPSS
Exploits1References151
Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.52 views

Ubuntu 22.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6819-4)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6819-4 advisory. Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference...

7.8CVSS7.1AI score0.78388EPSS
Exploits2References148
Ubuntu
Ubuntu
added 2024/06/18 11:24 p.m.206 views

USN-6818-4: Linux kernel (HWE) vulnerabilities

Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference vulnerability. A remote attacker could use this to cause a denial of service system crash. CVE-2023-6356, CVE-2023-6535, CVE-2023-6536 It was...

7.8CVSS6.9AI score0.78388EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.115 views

Ubuntu 22.04 LTS : Linux kernel (NVIDIA) vulnerabilities (USN-6818-3)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6818-3 advisory. Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference...

7.8CVSS7.1AI score0.78388EPSS
Exploits2References149
Ubuntu
Ubuntu
added 2024/06/12 6:10 p.m.117 views

USN-6819-3: Linux kernel (OEM) vulnerabilities

Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference vulnerability. A remote attacker could use this to cause a denial of service system crash. CVE-2023-6356, CVE-2023-6535, CVE-2023-6536 Chenyuan...

7.8CVSS6.9AI score0.78388EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/06/10 12:0 a.m.36 views

Ubuntu 23.10 : Linux kernel (ARM laptop) vulnerabilities (USN-6818-2)

The remote Ubuntu 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6818-2 advisory. Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference...

7.8CVSS7.1AI score0.78388EPSS
Exploits2References149
OSV
OSV
added 2024/02/28 6:15 p.m.8 views

CVE-2024-26342

A Null pointer dereference in usr/sbin/httpd in ASUS AC68U 3.0.0.4.384.82230 allows remote attackers to trigger DoS via network packet...

7.5CVSS5.8AI score0.00874EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/01/30 12:0 a.m.8 views

The vulnerability of the formSetCfm() function in the httpd daemon of the microprogramming software for wireless access points from Tenda i6 allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetCfm function in the httpd daemon of the microprogrammed wireless access points from Tenda i6 is related to the operation that goes beyond the buffer in memory when processing the funcpara1 parameter. Exploiting this vulnerability could allow an attacker to compromi...

9CVSS7.4AI score0.01659EPSS
Exploits1References3
OSV
OSV
added 2024/01/15 5:15 a.m.6 views

CVE-2024-0540

A vulnerability was found in Tenda W9 1.0.0.74456. It has been classified as critical. Affected is the function formOfflineSet of the component httpd. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has bee...

9.8CVSS6.2AI score0.00793EPSS
Exploits0References3
OSV
OSV
added 2024/01/15 4:15 a.m.5 views

CVE-2024-0536

A vulnerability, which was classified as critical, has been found in Tenda W9 1.0.0.74456. Affected by this issue is the function setWrlAccessList of the component httpd. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack may be launched remotely. The...

9.8CVSS6.3AI score0.01399EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/01/14 12:0 a.m.5 views

PT-2024-1459 · Tenda · Tenda W9

Name of the Vulnerable Software and Affected Versions: Tenda W9 version 1.0.0.74456 Description: The issue affects the function formQosManage user of the component httpd, where the manipulation of the argument ssidIndex leads to a stack-based buffer overflow. This can allow a remote attacker to...

10CVSS7.9AI score0.01303EPSS
Exploits0References8
OSV
OSV
added 2023/10/11 4:15 p.m.6 views

CVE-2023-31272

A stack-based buffer overflow vulnerability exists in the httpd dowds functionality of Yifan YF325 v1.020221108. A specially crafted network request can lead to stack-based buffer overflow. An attacker can send a network request to trigger this vulnerability...

9.8CVSS7.9AI score0.0064EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/07/06 2:15 a.m.3 views

CVE-2022-46080

Nexxt Nebula 1200-AC 15.03.06.60 allows authentication bypass and command execution by using the HTTPD service to enable TELNET...

9.8CVSS7.5AI score0.02556EPSS
Exploits2References3
Rows per page
Query Builder