Lucene search
K

5094 matches found

Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.28 views

EulerOS Virtualization 2.9.0 : grub2 (EulerOS-SA-2021-1741)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged...

8.2CVSS7.7AI score0.01738EPSS
Exploits0References9
CVE
CVE
added 2021/04/15 12:0 a.m.229 views

CVE-2021-20288

Ceph CVE-2021-20288 is an authentication flaw in Ceph before certain fixed releases. The root cause is that CEPHX_GET_AUTH_SESSION_KEY handling does not sanitize other_keys, allowing reuse of old keys when a global_id is requested, enabling a user to leverage a global_id previously associated wit...

7.2CVSS6.8AI score0.0211EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2021/04/14 5:39 p.m.33 views

CVE-2021-20288

An authentication flaw was found in ceph. When the monitor handles CEPHXGETAUTHSESSIONKEY requests, it doesn't sanitize otherkeys, allowing key reuse. An attacker who can request a globalid can exploit the ability of any user to request a globalid previously associated with another user, as ceph...

8CVSS2.5AI score0.0211EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/14 1:27 p.m.32 views

CVE-2021-27905

A flaw was found in solr. The ReplicationHandler in Apache Solr does not check proper parameters when connecting to another Solr instance to replicate index data into the local core leading to a SSRF vulnerability. The highest threat from this vulnerability is to data confidentiality and integrit...

9.8CVSS2.6AI score0.93053EPSS
Exploits5References3
RedhatCVE
RedhatCVE
added 2021/04/14 11:57 a.m.22 views

CVE-2021-3472

A flaw was found in xorg-x11-server. An interger underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS3.3AI score0.0105EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/04/14 12:0 a.m.40 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Nettle vulnerability (USN-4906-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4906-1 advisory. It was discovered that Nettle incorrectly handled signature verification. A remote attacker could use this issue to cause Nettle to crash,...

8.1CVSS6.5AI score0.01607EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/04/13 2:0 p.m.27 views

CVE-2021-3472

A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS7AI score0.0105EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/04/13 12:11 p.m.6 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/13 10:40 a.m.8 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/04/13 10:40 a.m.0 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2021-1754)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.01922EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2021/04/09 8:46 p.m.39 views

CVE-2021-3483

A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be inserted twice into a doubly-linked list, leading to a use-after-free when one of these devices is removed. The highest threat from this vulnerability is to confidentiality, integrity, as well as system...

7.8CVSS7.8AI score0.00361EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/09 5:45 p.m.46 views

CVE-2020-36311

A flaw was found in the Linux kernel. This flaw allows attackers to cause a denial of service soft lockup by triggering the destruction of a large SEV VM, which requires unregistering many encrypted regions. The highest threat from this vulnerability is to system availability...

5.5CVSS6.3AI score0.00335EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/09 5:16 p.m.24 views

CVE-2020-36313

A flaw was found in the Linux kernel. The KVM subsystem allows out-of-range access to memslots after a deletion. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation Mitigation for this issue is either not available or the...

7.8CVSS1.8AI score0.0032EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/09 5:16 p.m.51 views

CVE-2020-36312

A flaw was found in the KVM hypervisor of the Linux kernel. A memory leak could occur in kvmiobusunregisterdev upon a kmalloc failure. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for this issue is either not available or the currently available...

5.5CVSS0.9AI score0.00313EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/09 5:16 p.m.51 views

CVE-2020-36310

A flaw was found in the Linux kernel. A nested page fault is created when an address does not have a memslot associated to it. The highest threat from this vulnerability is to system availability. This flaw can be triggered using a malformed Virtual Machine. When triggered this bug will lead to t...

2.1CVSS6.5AI score0.00329EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/04/09 12:0 a.m.52 views

Oracle Linux 7 : nettle (ELSA-2021-1145)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-1145 advisory. 2.7.1-9 - Port fixes for potential miscalculation in ecdsaverify 1943156 Tenable has extracted the preceding description block directly from the Oracle Linux...

8.1CVSS6.4AI score0.01607EPSS
Exploits0References2
NVD
NVD
added 2021/04/08 11:15 p.m.14 views

CVE-2021-3413

A flaw was found in Red Hat Satellite in tfm-rubygem-foremanazurerm in versions before 2.2.0. A credential leak was identified which will expose Azure Resource Manager's secret key through JSON of the API output. The highest threat from this vulnerability is to data confidentiality and integrity ...

6.5CVSS0.0065EPSS
Exploits0References1
OSV
OSV
added 2021/04/08 11:15 p.m.17 views

CVE-2021-3413

A flaw was found in Red Hat Satellite in tfm-rubygem-foremanazurerm in versions before 2.2.0. A credential leak was identified which will expose Azure Resource Manager's secret key through JSON of the API output. The highest threat from this vulnerability is to data confidentiality and integrity ...

6.3CVSS6.5AI score
Exploits0References1
Prion
Prion
added 2021/04/08 11:15 p.m.15 views

Design/Logic Flaw

A flaw was found in Red Hat Satellite in tfm-rubygem-foremanazurerm in versions before 2.2.0. A credential leak was identified which will expose Azure Resource Manager's secret key through JSON of the API output. The highest threat from this vulnerability is to data confidentiality and integrity ...

6.5CVSS6.4AI score0.0065EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder