10854 matches found
CVE-2018-14619
A flaw was found in the crypto subsystem that allowed an attacker to crash the system or possibly escalate privileges with a specially crafted program...
Ubuntu: Security Advisory (USN-5210-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-46283
A NULL pointer dereference flaw in the Linux kernel's netfilter subsystem was found in the way user set a netfilter table expression. A local user could use this flaw to crash the system...
PT-2022-1436 · Cisco · Cisco Tetration
Name of the Vulnerable Software and Affected Versions: Cisco Tetration affected versions not specified Description: The issue is related to insufficient input validation in the web-based management interface and API subsystem, allowing an authenticated, remote attacker to inject arbitrary command...
CVE-2022-21884
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...
CVE-2022-21884
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...
CVE-2022-21884
Technical details for CVE-2022-21884 are not publicly provided in the connected documents; monitor official disclosures or advisories for affected products, impact, and remediation.
USN-5218-1: Linux kernel (OEM) vulnerabilities
Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages. CVE-2021-4002 It was discovered that the eBPF implementation in the Linux...
Microsoft Windows Local Security Authority Subsystem Service 缓冲区错误漏洞
The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...
PT-2022-15177 · Microsoft · Local Security Authority Subsystem Service +1
Name of the Vulnerable Software and Affected Versions: Windows Local Security Authority Subsystem Service affected versions not specified Description: An elevation-of-privilege issue allows attackers to affect the system. Recommendations: At the moment, there is no information about a newer versi...
CVE-2021-40037
There is a Vulnerability of accessing resources using an incompatible type type confusion in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart...
CVE-2021-40037
There is a Vulnerability of accessing resources using an incompatible type type confusion in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart...
Security Bulletin: Vulnerability in Linux Kernel affects IBM Spectrum Copy Data Management (CVE-2021-29650)
Summary A denial of service vulnerability in the Linux Kernel may affect IBM Spectrum Copy Data Management Vulnerability Details CVEID: CVE-2021-29650 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by the lack of a full memory barrier upon the assignment of a new table val...
Kentico 跨站脚本漏洞
A cross-site scripting vulnerability exists in Kentico Xperience, an ASP.NET-based content management system CMS from Kentico U.S. The vulnerability stems from the fact that the product's media subsystem does not validate input data. An attacker could cause client-side code execution via XML...
CVE-2021-40037
Technical details about CVE-2021-40037 are not publicly provided in the connected documents. The available sources note a type-confusion issue in MPTCP on smartphones but do not disclose affected products, versions, impact, or fixes. Monitor for updates.
OESA-2022-1484 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel through 5.15.2, mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker who can connect a crafted USB device to cause a denial of service skboverpanic.CVE-2021-43976 In bpfskbchangehead...
PT-2022-2848
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.17-rc1 Description A NULL pointer dereference was found in the Linux kernel's KVM when dirty ring logging is enabled without an active vCPU context. An unprivileged local attacker on the host may use this flaw ...
LSN-0083-1 Kernel Live Patch Security Notice
The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions, leading to an overflow. This affects kernel/bpf/core.c and net/core/filter.c.CVE-2018-25020...
CVE-2021-46145
The keyfob subsystem in Honda Civic 2012 vehicles allows a replay attack for unlocking. This is related to a non-expiring rolling code and counter resynchronization...
Design/Logic Flaw
The keyfob subsystem in Honda Civic 2012 vehicles allows a replay attack for unlocking. This is related to a non-expiring rolling code and counter resynchronization...