Lucene search
K

555 matches found

Cvelist
Cvelist
added 2018/11/09 12:0 a.m.28 views

CVE-2018-1802

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, and 11.1 binaries load shared libraries from an untrusted path potentially giving low privilege user full access to the DB2 instance account by loading a malicious shared library. IBM X-Force ID: 149640...

8.4CVSS8AI score0.00445EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/11/04 12:0 a.m.39 views

Debian: Security Advisory (DLA-1562-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.0315EPSS
Exploits4References3
RedHat Linux
RedHat Linux
added 2018/10/30 11:45 a.m.162 views

Moderate: Red Hat Security Advisory: xerces-c security update

An update for xerces-c is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS6.7AI score0.1425EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/09/27 12:0 a.m.28 views

EulerOS 2.0 SP3 : binutils (EulerOS-SA-2018-1284)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in the readelf utility part of binutils. A crafted ELF executable or shared library could cause readelf to write...

5.5CVSS7.4AI score0.01163EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2018/09/27 12:0 a.m.33 views

EulerOS 2.0 SP2 : binutils (EulerOS-SA-2018-1283)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in the readelf utility part of binutils. A crafted ELF executable or shared library could cause readelf to write...

5.5CVSS7.4AI score0.01163EPSS
Exploits2References3
Fedora
Fedora
added 2018/09/21 5:42 a.m.38 views

[SECURITY] Fedora 29 Update: nspr-4.20.0-1.fc29

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

5.9CVSS1.3AI score0.01496EPSS
Exploits0
Fedora
Fedora
added 2018/09/18 7:52 a.m.23 views

[SECURITY] Fedora 27 Update: nspr-4.20.0-1.fc27

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

5.9CVSS1.3AI score0.01496EPSS
Exploits0
Fedora
Fedora
added 2018/09/14 11:14 p.m.34 views

[SECURITY] Fedora 28 Update: nspr-4.20.0-1.fc28

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

5.9CVSS1.3AI score0.01496EPSS
Exploits0
Fedora
Fedora
added 2018/08/19 12:22 a.m.15 views

[SECURITY] Fedora 27 Update: yubico-piv-tool-1.6.0-1.fc27

The Yubico PIV tool is used for interacting with the Privilege and Identification Card PIV applet on a YubiKey NEO. With it you may generate keys on the device, importing keys and certificate s, and create certificate requests, and other operations. A shared library and a command-line tool is...

2.8AI score
Exploits0
Fedora
Fedora
added 2018/08/04 9:46 p.m.29 views

[SECURITY] Fedora 28 Update: mingw-xerces-c-3.2.1-1.fc28

Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and write XML data. A shared library is provided for parsing, generating, manipulating, and validating XML documents. Xerces-C is faithful to the XML 1.0...

9.8CVSS2.8AI score0.08751EPSS
Exploits3
CNVD
CNVD
added 2018/07/09 12:0 a.m.3 views

IBM DB2 power lifting vulnerability (CNVD-2018-13458)

IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBM i, z/OS, and Windows server versions. An untrustworthy search path vulnerability exists in IBM DB2 including DB2 Connect Server based on...

8.4CVSS8.3AI score0.0044EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:35 a.m.54 views

Security Bulletin: Samba vulnerability issue on IBM Storwize V7000 Unified

Summary IBM Storwize V7000 Unified is shipped with Samba, for which a fix is available for security vulnerabilities. Vulnerability Details Samba is used in IBM Storwize V7000 Unified to enable file management and authentication services for Microsoft Windows environments. CVEID: CVE-2017-7494...

10CVSS1.5AI score0.99448EPSS
Exploits24Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:51 p.m.20 views

Security Bulletin: Tivoli Storage Manager Linux x86_64 Client Arbitrary DSO Load Elevation of Privileges (CVE-2014-6185)

Summary A vulnerability in the IBM Tivoli Storage Manager TSM Linux x8664 client could allow a local user to gain elevated privileges due to an arbitrary DSO load. Vulnerability Details CVEID: CVE-2014-6185 DESCRIPTION: IBM Tivoli Storage Manager could allow a local attacker to trick one of the...

7.2CVSS1.4AI score0.00384EPSS
Exploits0Affected Software3
Fedora
Fedora
added 2018/06/09 8:44 p.m.37 views

[SECURITY] Fedora 28 Update: qt3-3.3.8b-74.fc28

Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...

5.5CVSS2.3AI score0.03105EPSS
Exploits1
Fedora
Fedora
added 2018/06/09 7:47 p.m.46 views

[SECURITY] Fedora 27 Update: qt3-3.3.8b-74.fc27

Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...

5.5CVSS2.3AI score0.03105EPSS
Exploits1
Metasploit
Metasploit
added 2017/12/18 4:51 p.m.69 views

GoAhead Web Server LD_PRELOAD Arbitrary Module Load

This module triggers an arbitrary shared library load vulnerability in GoAhead web server versions between 2.5 and that have the CGI module enabled. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModu...

8.1CVSS0.1AI score0.96327EPSS
Exploits15
VulnCheck KEV
VulnCheck KEV
added 2017/12/05 12:0 a.m.2 views

VulnCheck KEV: CVE-2017-7494

Samba contains a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share and then cause the server to load and execute it...

10CVSS7.7AI score0.99448EPSS
Exploits24References1
Talos
Talos
added 2017/08/28 12:0 a.m.74 views

Lexmark LibISYSpdf Image Rendering DCTStream::getBlock() Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the image rendering functionality of Lexmark Perceptive Document Filters 11.3.0.2400. A specifically crafted PDF can cause a function call on a corrupted DCTStream to occur, resulting in user controlled data being written to the stack....

8.8CVSS8.3AI score0.02067EPSS
Exploits1
0day.today
0day.today
added 2017/06/29 12:0 a.m.114 views

Linux Kernel (Debian 7.7/8.5/9.0 / Ubuntu 14.04.2/16.04.2/17.04 / Fedora 22/25 / CentOS 7.3.1611) -

Exploit for linux platform in category local exploits / Linuxldsohwcap64.c for CVE-2017-1000366, CVE-2017-1000379 Copyright C 2017 Qualys, Inc. myimportanthwcaps adapted from elf/dl-hwcaps.c, part of the GNU C Library: Copyright C 2012-2017 Free Software Foundation, Inc. This program is free...

4.4CVSS5.6AI score0.02733EPSS
Exploits24
exploitpack
exploitpack
added 2017/06/28 12:0 a.m.107 views

Linux Kernel (Debian 78910 Fedora 232425 CentOS 5.35.116.06.87.2.1511) - ldso_hwcap Stack Clash Local Privilege Escalation

Linux Kernel Debian 78910 Fedora 232425 CentOS 5.35.116.06.87.2.1511 - ldsohwcap Stack Clash Local Privilege Escalation / Linuxldsohwcap.c for CVE-2017-1000366, CVE-2017-1000370 Copyright C 2017 Qualys, Inc. myimportanthwcaps adapted from elf/dl-hwcaps.c, part of the GNU C Library: Copyright C...

7.2CVSS0.6AI score0.02733EPSS
Exploits17
Rows per page
Query Builder