Lucene search
K

10859 matches found

CNNVD
CNNVD
added 2021/06/20 12:0 a.m.2 views

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a buffer error vulnerability that stems from an out-of-bounds memory read/write flaw found in the Linux kernel's joystick device subsystem via a...

7.8CVSS6.9AI score0.00693EPSS
Exploits0References44
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.7 views

The vulnerability of the cron/cmd_subsys.php implementation of the software for monitoring IT infrastructure by Nagios Fusion allows a perpetrator to escalate their privileges.

The vulnerability of the cron/cmdsubsys.php implementation of the Nagios Fusion IT infrastructure monitoring software is related to insufficient cleaning of input data. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

10CVSS8AI score0.06435EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2021/06/09 7:15 p.m.1 views

CVE-2020-24509

Insufficient control flow management in subsystem in IntelR SPS versions before SPSE305.01.04.300.0, SPSSoC-A05.00.03.091.0, SPSE504.04.04.023.0, or SPSE504.04.03.263.0 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS5.8AI score0.00251EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/06/09 7:15 p.m.1 views

CVE-2020-24509

Insufficient control flow management in subsystem in IntelR SPS versions before SPSE305.01.04.300.0, SPSSoC-A05.00.03.091.0, SPSE504.04.04.023.0, or SPSE504.04.03.263.0 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS5.3AI score0.00251EPSS
Exploits0References3
Prion
Prion
added 2021/06/09 7:15 p.m.15 views

Input validation

Improper initialization in a subsystem in the IntelR CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32, 13.50.11 and 15.0.22 may allow a privileged user to potentially enable information disclosure via local access...

2.1CVSS4.9AI score0.00284EPSS
Exploits0References3Affected Software5
Cvelist
Cvelist
added 2021/06/09 6:47 p.m.25 views

CVE-2020-8704

Race condition in a subsystem in the IntelR LMS versions before 2039.1.0.0 may allow a privileged user to potentially enable escalation of privilege via local access...

6.5AI score0.00208EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2015:1409-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.8AI score0.0063EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2015:1472-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.8AI score0.0063EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2021:1574-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7AI score0.01071EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2015:1983-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.7AI score0.23317EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2021:1301-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.03233EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2015:1455-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.8AI score0.0063EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2015:1299-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.9AI score0.0063EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2016:2089-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.79651EPSS
Exploits4References22
RedhatCVE
RedhatCVE
added 2021/06/08 3:14 p.m.41 views

CVE-2019-25045

A use-after-free flaw was found in the Linux kernel’s XFRM subsystem when flushing the XFRM tunnel. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system...

7.8CVSS2.5AI score0.00503EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/06/08 2:14 p.m.48 views

CVE-2020-36386

A flaw out of bounds memory access in the Linux kernel bluetooth subsystem was found in the way when some data being read about the bluetooth device with the hciextendedinquiryresultevt call. A local user could use this flaw to crash the system or read some data out of memory bounds that can lead...

5.6CVSS0.3AI score0.00536EPSS
Exploits1References4
OSV
OSV
added 2021/06/08 12:15 p.m.4 views

UBUNTU-CVE-2021-3564

A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3.13...

5.5CVSS6.6AI score0.00481EPSS
Exploits1References11
Ubuntu
Ubuntu
added 2021/06/08 2:12 a.m.221 views

USN-4982-1: Linux kernel vulnerabilities

Kiyin 尹亮 discovered that the NFC LLCP protocol implementation in the Linux kernel contained a reference counting error. A local attacker could use this to cause a denial of service system crash. CVE-2020-25670 Kiyin 尹亮 discovered that the NFC LLCP protocol implementation in the Linux kernel did n...

7.8CVSS7.6AI score0.03233EPSS
Exploits3
OSV
OSV
added 2021/06/08 2:5 a.m.8 views

USN-4984-1 linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi vulnerabilities

Jan Beulich discovered that the Xen netback backend in the Linux kernel did not properly handle certain error conditions under paravirtualization. An attacker in a guest VM could possibly use this to cause a denial of service host domain crash. CVE-2021-28038 It was discovered that the Realtek...

8.8CVSS7.4AI score0.01316EPSS
Exploits1References14
CNVD
CNVD
added 2021/06/08 12:0 a.m.13 views

Linux kernel post-release reuse vulnerability (CNVD-2021-43523)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A post-release reuse vulnerability exists in the XFRM subsystem in Linux kernel versions prior to 5.0.19. An attacker...

7.8CVSS6.3AI score0.00503EPSS
Exploits1References1
Rows per page
Query Builder