Lucene search
K

10854 matches found

RedhatCVE
RedhatCVE
added 2022/01/13 6:33 a.m.21 views

CVE-2018-14619

A flaw was found in the crypto subsystem that allowed an attacker to crash the system or possibly escalate privileges with a specially crafted program...

7.8CVSS4.1AI score0.0043EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/13 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-5210-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00674EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2022/01/12 11:23 p.m.37 views

CVE-2021-46283

A NULL pointer dereference flaw in the Linux kernel's netfilter subsystem was found in the way user set a netfilter table expression. A local user could use this flaw to crash the system...

5.5CVSS1.3AI score0.00316EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/01/12 12:0 a.m.8 views

PT-2022-1436 · Cisco · Cisco Tetration

Name of the Vulnerable Software and Affected Versions: Cisco Tetration affected versions not specified Description: The issue is related to insufficient input validation in the web-based management interface and API subsystem, allowing an authenticated, remote attacker to inject arbitrary command...

8.5CVSS7.2AI score0.01315EPSS
Exploits0References7
OSV
OSV
added 2022/01/11 9:15 p.m.1 views

CVE-2022-21884

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00669EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/01/11 9:15 p.m.6 views

CVE-2022-21884

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

7.8CVSS7.2AI score0.00669EPSS
Exploits0References3Affected Software15
CVE
CVE
added 2022/01/11 8:22 p.m.127 views

CVE-2022-21884

Technical details for CVE-2022-21884 are not publicly provided in the connected documents; monitor official disclosures or advisories for affected products, impact, and remediation.

7.8CVSS8.4AI score0.00669EPSS
Exploits0References2Affected Software5
Ubuntu
Ubuntu
added 2022/01/11 4:58 a.m.155 views

USN-5218-1: Linux kernel (OEM) vulnerabilities

Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages. CVE-2021-4002 It was discovered that the eBPF implementation in the Linux...

9.8CVSS7.8AI score0.57853EPSS
Exploits5References1
CNNVD
CNNVD
added 2022/01/11 12:0 a.m.7 views

Microsoft Windows Local Security Authority Subsystem Service 缓冲区错误漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...

7.8CVSS7.8AI score0.00669EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/01/11 12:0 a.m.3 views

PT-2022-15177 · Microsoft · Local Security Authority Subsystem Service +1

Name of the Vulnerable Software and Affected Versions: Windows Local Security Authority Subsystem Service affected versions not specified Description: An elevation-of-privilege issue allows attackers to affect the system. Recommendations: At the moment, there is no information about a newer versi...

7.8CVSS9.3AI score0.00669EPSS
Exploits0References6
OSV
OSV
added 2022/01/10 2:10 p.m.3 views

CVE-2021-40037

There is a Vulnerability of accessing resources using an incompatible type type confusion in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart...

5.5CVSS5.8AI score0.00167EPSS
Exploits0References2
NVD
NVD
added 2022/01/10 2:10 p.m.18 views

CVE-2021-40037

There is a Vulnerability of accessing resources using an incompatible type type confusion in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart...

5.5CVSS0.00167EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/10 10:29 a.m.77 views

Security Bulletin: Vulnerability in Linux Kernel affects IBM Spectrum Copy Data Management (CVE-2021-29650)

Summary A denial of service vulnerability in the Linux Kernel may affect IBM Spectrum Copy Data Management Vulnerability Details CVEID: CVE-2021-29650 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by the lack of a full memory barrier upon the assignment of a new table val...

5.5CVSS6.2AI score0.00417EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2022/01/10 12:0 a.m.5 views

Kentico 跨站脚本漏洞

A cross-site scripting vulnerability exists in Kentico Xperience, an ASP.NET-based content management system CMS from Kentico U.S. The vulnerability stems from the fact that the product's media subsystem does not validate input data. An attacker could cause client-side code execution via XML...

6.1CVSS5.8AI score0.008EPSS
Exploits1References1
CVE
CVE
added 2022/01/07 10:39 p.m.53 views

CVE-2021-40037

Technical details about CVE-2021-40037 are not publicly provided in the connected documents. The available sources note a type-confusion issue in MPTCP on smartphones but do not disclose affected products, versions, impact, or fixes. Monitor for updates.

5.5CVSS5.4AI score0.00167EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/01/07 11:3 a.m.13 views

OESA-2022-1484 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel through 5.15.2, mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker who can connect a crafted USB device to cause a denial of service skboverpanic.CVE-2021-43976 In bpfskbchangehead...

7.8CVSS5.9AI score0.007EPSS
Exploits3References12
Positive Technologies
Positive Technologies
added 2022/01/07 12:0 a.m.9 views

PT-2022-2848

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.17-rc1 Description A NULL pointer dereference was found in the Linux kernel's KVM when dirty ring logging is enabled without an active vCPU context. An unprivileged local attacker on the host may use this flaw ...

5.5CVSS6.6AI score0.00387EPSS
Exploits1References28
OSV
OSV
added 2022/01/06 8:48 a.m.15 views

LSN-0083-1 Kernel Live Patch Security Notice

The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions, leading to an overflow. This affects kernel/bpf/core.c and net/core/filter.c.CVE-2018-25020...

8.8CVSS7.2AI score0.78684EPSS
Exploits29References6
NVD
NVD
added 2022/01/06 6:15 a.m.20 views

CVE-2021-46145

The keyfob subsystem in Honda Civic 2012 vehicles allows a replay attack for unlocking. This is related to a non-expiring rolling code and counter resynchronization...

5.3CVSS0.03641EPSS
Exploits0References4
Prion
Prion
added 2022/01/06 6:15 a.m.28 views

Design/Logic Flaw

The keyfob subsystem in Honda Civic 2012 vehicles allows a replay attack for unlocking. This is related to a non-expiring rolling code and counter resynchronization...

2.9CVSS5.4AI score0.03641EPSS
Exploits0References4
Rows per page
Query Builder