Lucene search
K

5094 matches found

Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.59 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : grub2 Multiple Vulnerabilities (NS-SA-2021-0008)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has grub2 packages installed that are affected by multiple vulnerabilities: - A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw...

8.2CVSS8AI score0.01588EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.21 views

NewStart CGSL MAIN 6.02 : dnsmasq Multiple Vulnerabilities (NS-SA-2021-0091)

The remote NewStart CGSL host, running version MAIN 6.02, has dnsmasq packages installed that are affected by multiple vulnerabilities: - A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. A...

8.3CVSS7.9AI score0.86692EPSS
Exploits2References8
CNVD
CNVD
added 2021/03/10 12:0 a.m.13 views

Linux kernel memory access conflict vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A memory access conflict vulnerability exists in Linux kernel versions prior to 5.10. An attacker could exploit this...

6.7CVSS6.3AI score0.00402EPSS
Exploits1References1
Kaspersky
Kaspersky
added 2021/03/10 12:0 a.m.68 views

KLA12114 DoS vulnerability in Wireshark

A denial of service vulnerability was found in Wireshark. Malicious users can exploit this vulnerability to cause denial of service. Original advisories wnpa-sec-2021-03 · Wireshark could open unsafe URLs. Related products Wireshark CVE list CVE-2021-22191 critical Solution Update to the latest...

8.8CVSS8.1AI score0.03639EPSS
Exploits0References3
CNVD
CNVD
added 2021/03/10 12:0 a.m.11 views

ImageMagick De-Zero Vulnerability (CNVD-2021-23797)

ImageMagick is a software for creating, editing, and composing images that can read, convert, and write images in many formats. A de-zero vulnerability exists in coders/webp.c in versions prior to ImageMagick 7.0.10-62. An attacker can exploit this vulnerability via specially crafted files to...

7.1CVSS6.5AI score0.01205EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.30 views

EulerOS Virtualization 3.0.2.6 : dnsmasq (EulerOS-SA-2021-1411)

According to the versions of the dnsmasq packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in dnsmasq. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with...

8.3CVSS7.9AI score0.86692EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.53 views

NewStart CGSL MAIN 6.02 : glibc Multiple Vulnerabilities (NS-SA-2021-0069)

The remote NewStart CGSL host, running version MAIN 6.02, has glibc packages installed that are affected by multiple vulnerabilities: - An out-of-bounds write vulnerability was found in glibc before 2.31 when handling signal trampolines on PowerPC. Specifically, the backtrace function did not...

7CVSS7AI score0.00537EPSS
Exploits0References3
OSV
OSV
added 2021/03/09 8:15 p.m.1 views

DEBIAN-CVE-2021-3411

A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

6.7CVSS6.3AI score0.00402EPSS
Exploits1References1
NVD
NVD
added 2021/03/09 8:15 p.m.15 views

CVE-2021-3411

A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

6.7CVSS0.00402EPSS
Exploits1References2
NVD
NVD
added 2021/03/09 8:15 p.m.25 views

CVE-2020-35524

A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff's TIFF2PDF tool. A specially crafted TIFF file can lead to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS0.01851EPSS
Exploits0References8
OSV
OSV
added 2021/03/09 8:15 p.m.28 views

CVE-2020-35524

A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff's TIFF2PDF tool. A specially crafted TIFF file can lead to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS7.6AI score
Exploits0References8
NVD
NVD
added 2021/03/09 8:15 p.m.22 views

CVE-2021-20255

A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device emulator of QEMU. This issue occurs while processing controller commands due to a DMA reentry issue. This flaw allows a guest user or process to consume CPU cycles or crash the QEMU process on the hos...

5.5CVSS0.00411EPSS
Exploits0References5
OSV
OSV
added 2021/03/09 8:15 p.m.24 views

CVE-2020-35523

An integer overflow flaw was found in libtiff that exists in the tifgetimage.c file. This flaw allows an attacker to inject and execute arbitrary code when a user opens a crafted TIFF file. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS7.3AI score
Exploits0References8
NVD
NVD
added 2021/03/09 8:15 p.m.17 views

CVE-2020-35523

An integer overflow flaw was found in libtiff that exists in the tifgetimage.c file. This flaw allows an attacker to inject and execute arbitrary code when a user opens a crafted TIFF file. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS0.01922EPSS
Exploits0References8
Prion
Prion
added 2021/03/09 8:15 p.m.27 views

Stack overflow

A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device emulator of QEMU. This issue occurs while processing controller commands due to a DMA reentry issue. This flaw allows a guest user or process to consume CPU cycles or crash the QEMU process on the hos...

2.1CVSS5.3AI score0.00411EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2021/03/09 8:15 p.m.19 views

Design/Logic Flaw

A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

4.6CVSS6.1AI score0.00402EPSS
Exploits1References2Affected Software2
UbuntuCve
UbuntuCve
added 2021/03/09 8:15 p.m.24 views

CVE-2021-3411

A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

6.7CVSS6.7AI score0.00402EPSS
Exploits1References6
Prion
Prion
added 2021/03/09 8:15 p.m.27 views

Heap overflow

A heap-based buffer overflow flaw was found in libtiff in the handling of TIFF images in libtiff's TIFF2PDF tool. A specially crafted TIFF file can lead to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

6.8CVSS7.9AI score0.01851EPSS
Exploits0References8Affected Software4
Prion
Prion
added 2021/03/09 8:15 p.m.21 views

Integer overflow

An integer overflow flaw was found in libtiff that exists in the tifgetimage.c file. This flaw allows an attacker to inject and execute arbitrary code when a user opens a crafted TIFF file. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

6.8CVSS7.7AI score0.01922EPSS
Exploits0References8Affected Software3
OSV
OSV
added 2021/03/09 8:15 p.m.0 views

UBUNTU-CVE-2021-3411

A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was found while detecting a padding of int3 in the linking state. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

6.7CVSS6.7AI score0.00402EPSS
Exploits1References7
Rows per page
Query Builder