Lucene search
K

5094 matches found

Veracode
Veracode
added 2021/04/21 7:52 a.m.25 views

Authentication Bypass

ceph is vulnerable to authentication bypass. When the monitor handles CEPHXGETAUTHSESSIONKEY requests, it doesn't sanitize otherkeys, allowing key reuse. An attacker who can request a globalid can exploit the ability of any user to request a globalid previously associated with another user, as ce...

7.2CVSS2.5AI score0.0211EPSS
Exploits0References11Affected Software6
Amazon
Amazon
added 2021/04/21 12:0 a.m.58 views

Important: kernel

Issue Overview: A memory leak in the adisupdatescanmode function in drivers/iio/imu/adisbuffer.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption, aka CID-ab612b1daf41. CVE-2019-19060 A bypass was found for the Spectre v1 hardening in the eBPF engi...

8.8CVSS7AI score0.78684EPSS
Exploits23
Amazon
Amazon
added 2021/04/21 12:0 a.m.31 views

Important: libldb

Issue Overview: A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability...

7.5CVSS7.2AI score0.04328EPSS
Exploits0
Amazon
Amazon
added 2021/04/21 12:0 a.m.32 views

Important: libldb

Issue Overview: A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability...

7.5CVSS7.2AI score0.04328EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/04/20 8:51 p.m.3 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 8:51 p.m.6 views

kernel: Use after free via PI futex state

A flaw was found in the Linux kernel. A use-after-free memory flaw in the Fast Userspace Mutexes functionality allowing a local user to crash the system or escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste...

7.8CVSS7.1AI score0.01377EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 8:51 p.m.5 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2021/04/20 4:44 p.m.70 views

Improper Verification of Cryptographic Signature in ansible

A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. GPG signatures are ignored during installation even when disablegpgcheck is set to False, which is the default behavior. This flaw...

7.1CVSS7.2AI score0.00233EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2021/04/20 3:45 p.m.39 views

CVE-2021-23133

A use-after-free flaw was found in the Linux kernel's SCTP socket functionality that triggers a race condition. This flaw allows a local user to escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7CVSS0.5AI score0.00482EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 3:36 p.m.5 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/04/20 3:36 p.m.3 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 3:19 p.m.7 views

kernel: increase slab leak leads to DoS

A flaw was found in the way memory resources were freed in the unixstreamrecvmsg function in the Linux kernel when a signal was pending. This flaw allows an unprivileged local user to crash the system by exhausting available memory. The highest threat from this vulnerability is to system...

5.5CVSS6.8AI score0.00336EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/04/20 3:19 p.m.4 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 1:23 p.m.3 views

kernel: Use after free via PI futex state

A flaw was found in the Linux kernel. A use-after-free memory flaw in the Fast Userspace Mutexes functionality allowing a local user to crash the system or escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste...

7.8CVSS7.1AI score0.01377EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 1:6 p.m.3 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 1:6 p.m.2 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/04/20 1:6 p.m.5 views

kernel: Use after free via PI futex state

A flaw was found in the Linux kernel. A use-after-free memory flaw in the Fast Userspace Mutexes functionality allowing a local user to crash the system or escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste...

7.8CVSS7.1AI score0.01377EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/20 12:59 p.m.4 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/04/20 12:59 p.m.4 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
Prion
Prion
added 2021/04/19 10:15 p.m.33 views

Design/Logic Flaw

An out-of-bounds OOB memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The...

5.6CVSS6.7AI score0.00366EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder