Lucene search
K

10859 matches found

CNVD
CNVD
added 2021/08/10 12:0 a.m.39 views

Linux kernel denial of service vulnerability (CNVD-2021-60521)

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable due to a null pointer dereference flaw in the radiotap parser in the mac80211 subsystem. Through the mac80211 subsystem, a local attacker could exploit this vulnerability to...

5.5CVSS3.4AI score0.00269EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/08/10 12:0 a.m.25 views

Rockwellautomation Rslinx Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Products that use EDS Subsystem: Version 28.0.1 and prior FactoryTalk Linx software Previously called RSLinx Enterprise: Versions 6.00, 6.10, and 6.11, RSLinx Classic: Version 4.11.00 and prior, RSNetWorx software: Version 28.00.00 and prior, Studio 5000 Logix Designer software: Version 32 and...

4.8CVSS3.5AI score0.01263EPSS
Exploits0References2
NVD
NVD
added 2021/08/08 8:15 p.m.15 views

CVE-2021-38206

The mac80211 subsystem in the Linux kernel before 5.12.13, when a device supporting only 5 GHz is used, allows attackers to cause a denial of service NULL pointer dereference in the radiotap parser by injecting a frame with 802.11a rates...

5.5CVSS0.00269EPSS
Exploits0References2
OSV
OSV
added 2021/08/08 8:15 p.m.2 views

CVE-2021-38206

The mac80211 subsystem in the Linux kernel before 5.12.13, when a device supporting only 5 GHz is used, allows attackers to cause a denial of service NULL pointer dereference in the radiotap parser by injecting a frame with 802.11a rates...

5.5CVSS8AI score
Exploits0References2
OSV
OSV
added 2021/08/08 8:15 p.m.3 views

UBUNTU-CVE-2021-38206

The mac80211 subsystem in the Linux kernel before 5.12.13, when a device supporting only 5 GHz is used, allows attackers to cause a denial of service NULL pointer dereference in the radiotap parser by injecting a frame with 802.11a rates...

5.5CVSS6.7AI score0.00269EPSS
Exploits0References5
CVE
CVE
added 2021/08/08 7:23 p.m.209 views

CVE-2021-38206

The CVE-2021-38206 issue affects the Linux kernel mac80211 subsystem before 5.12.13: when a 5 GHz-only device is used, injecting a frame with 802.11a rates can trigger a NULL pointer dereference in the radiotap parser, causing a Denial of Service. The vulnerability is addressed in Linux kernel 5....

5.5CVSS6AI score0.00269EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/08/08 12:0 a.m.5 views

Linux kernel代码问题漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable due to a null pointer dereference flaw in the radiotap parser in the mac80211 subsystem. Through the mac80211 subsystem, a local attacker could exploit this vulnerability to...

5.5CVSS6.6AI score0.00269EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2021/08/04 12:0 a.m.3 views

The vulnerability of the sco_sock_sendmsg() function in the HCI subsystem of the Linux operating system allows a hacker to trigger an emergency shutdown of the system or increase their privileges.

The vulnerability of the scosocksendmsg function in the HCI subsystem of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause the system to terminate abnormally or increase their privileges...

7CVSS6.6AI score0.00373EPSS
Exploits1References20Affected Software5
RedhatCVE
RedhatCVE
added 2021/08/02 4:50 p.m.70 views

CVE-2021-35477

A flaw in the Linux kernel allows a privileged BPF program to obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel in the eBPF subsystem Mitigation The default Red Hat Enterprise Linux kernel setting prevents unprivileged users from being able to use eBPF vi...

5.5CVSS2.9AI score0.0046EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/07/22 2:56 p.m.63 views

CVE-2021-3640

A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race condition of the call scoconndel together with the call scosocksendmsg with the expected controllable faulting memory page. A privilege...

7CVSS0.5AI score0.00373EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2021/07/22 12:0 a.m.126 views

SUSE SLES15: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2021:2426-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2426-1 advisory. The SUSE Linux Enterprise 15 SP2 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: -...

7.8CVSS7.3AI score0.01476EPSS
Exploits6References129
CNNVD
CNNVD
added 2021/07/21 12:0 a.m.3 views

Apple macOS 权限许可和访问控制问题漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A privilege permission and access control issue vulnerability exists in macOS, which exists because an application does not properly impose security restrictions in the...

9.3CVSS7.9AI score0.01071EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2021/07/21 12:0 a.m.47 views

SUSE SLED12: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2021:2416-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2416-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs...

8.3CVSS7.1AI score0.78684EPSS
Exploits28References30
CNNVD
CNNVD
added 2021/07/21 12:0 a.m.3 views

Apple iOS和Apple iPadOS 授权问题漏洞

Apple iOS and Apple iPadOS are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablets.Apple iOS 14.7 and iPadOS 14.7 are vulnerable to an authorization issue in the OS Kernel subsystem logic. Apple iOS 14.7 and iPad...

5.5CVSS5.7AI score0.01034EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/07/21 12:0 a.m.70 views

SUSE SLES15: kernel-azure / kernel-azure-devel / kernel-devel-azure / etc (SUSE-SU-2021:2408-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2408-1 advisory. The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: -...

8.3CVSS7.1AI score0.78684EPSS
Exploits28References34
ArchLinux
ArchLinux
added 2021/07/21 12:0 a.m.153 views

[ASA-202107-48] linux: privilege escalation

Arch Linux Security Advisory ASA-202107-48 ========================================== Severity: High Date : 2021-07-21 CVE-ID : CVE-2021-3609 CVE-2021-3612 CVE-2021-33909 Package : linux Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-2181 Summary ======= The...

7.8CVSS0.9AI score0.09808EPSS
Exploits7References19
Ubuntu
Ubuntu
added 2021/07/20 10:11 p.m.170 views

USN-5018-1: Linux kernel vulnerabilities

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-33909 Piotr Krysiuk discovered that the eBPF...

7.8CVSS7.5AI score0.09808EPSS
Exploits11
Debian
Debian
added 2021/07/20 7:58 p.m.102 views

[SECURITY] [DLA 2714-1] linux-4.19 security update

Debian LTS Advisory DLA-2714-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings July 20, 2021 https://wiki.debian.org/LTS Package : linux-4.19 Version : 4.19.194-3deb9u1 CVE ID : CVE-2020-36311 CVE-2021-3609 CVE-2021-33909 CVE-2021-34693 Debian Bug : 990072 Several...

7.8CVSS6.8AI score0.09808EPSS
Exploits8
UbuntuCve
UbuntuCve
added 2021/07/18 12:0 p.m.56 views

CVE-2021-3640

A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race condition of the call scoconndel together with the call scosocksendmsg with the expected controllable faulting memory page. A privilege...

7CVSS6.7AI score0.00373EPSS
Exploits1References10
Amazon
Amazon
added 2021/07/16 12:0 a.m.99 views

Important: kernel

Issue Overview: A vulnerability was found in the bluez, where Passkey Entry protocol used in Secure Simple Pairing SSP, Secure Connections SC and LE Secure Connections LESC of the Bluetooth Core Specification is vulnerable to an impersonation attack where an active attacker can impersonate the...

9.8CVSS6.7AI score0.01261EPSS
Exploits7
Rows per page
Query Builder