Lucene search
K

495 matches found

RedhatCVE
RedhatCVE
added 2025/02/13 10:38 p.m.5 views

CVE-2023-20515

Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability...

5.7CVSS6.6AI score0.00155EPSS
Exploits0References1
NVD
NVD
added 2025/02/11 10:15 p.m.12 views

CVE-2023-20515

Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability...

5.7CVSS0.00155EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/11 9:16 p.m.11 views

CVE-2023-20515

Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability...

5.7CVSS0.00155EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/11 9:16 p.m.9 views

CVE-2023-20515

Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability...

5.7CVSS6AI score0.00155EPSS
Exploits0References2
CVE
CVE
added 2025/02/11 9:16 p.m.54 views

CVE-2023-20515

CVE-2023-20515 affects the fTPM driver in the AMD trusted OS. Root cause: improper access control allowing a privileged local attacker to corrupt system memory, potentially impacting integrity, confidentiality, and availability. Affected component: fTPM driver within AMD trusted OS. Impact: memor...

5.7CVSS6AI score0.00155EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 11:14 a.m.7 views

CVE-2024-21453

Transient DOS while decoding message of size that exceeds the available system memory...

7.5CVSS6.9AI score0.00367EPSS
Exploits0References1
Veracode
Veracode
added 2025/01/23 5:13 a.m.6 views

Excessive Memory Consumption

github.com/t2bot/matrix-media-repo is vulnerable to Excessive Memory Consumption. The vulnerability is due to inadequate handling of large JSON responses, allowing an attacker to exhaust system memory and potentially crash the application...

7.5CVSS6.6AI score0.00728EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2025/01/14 2:8 p.m.106 views

CVE-2024-46668

CVE-2024-46668 describes an allocation of resources without limits or throttling (CWE-770) in Fortinet FortiOS. The vulnerability affects FortiOS versions 7.4.0–7.4.4, 7.2.0–7.2.8, 7.0.0–7.0.15, and 6.4.0–6.4.15, where an unauthenticated remote attacker could cause memory exhaustion by uploading ...

7.5CVSS7.6AI score0.00969EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/06 12:0 a.m.4 views

Qualcomm Chipsets 权限许可和访问控制问题漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. The Qualcomm Chipsets have a Privilege Permission and Access Control Issue vulnerability that arises from uncontrolled resource consumption when a driver, application, or SMMU client attempts to access global registers via...

7.5CVSS6.8AI score0.00084EPSS
Exploits0References1
NVD
NVD
added 2024/12/05 8:15 p.m.11 views

CVE-2023-48010

STMicroelectronics SPC58 is vulnerable to Missing Protection Mechanism for Alternate Hardware Interface. Code running as Supervisor on the SPC58 PowerPC microcontrollers may disable the System Memory Protection Unit and gain unabridged read/write access to protected assets...

9.8CVSS0.00445EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/05 12:0 a.m.7 views

CVE-2023-48010

STMicroelectronics SPC58 is vulnerable to Missing Protection Mechanism for Alternate Hardware Interface. Code running as Supervisor on the SPC58 PowerPC microcontrollers may disable the System Memory Protection Unit and gain unabridged read/write access to protected assets...

9.7AI score0.00445EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.4 views

PT-2024-13538

Name of the Vulnerable Software and Affected Versions STMicroelectronics SPC58 affected versions not specified Description The STMicroelectronics SPC58 PowerPC microcontrollers are affected by a missing protection mechanism for an alternate hardware interface. Code executing with supervisor...

9.8CVSS6.4AI score0.00445EPSS
Exploits0References8
CVE
CVE
added 2024/12/05 12:0 a.m.54 views

CVE-2023-48010

CVE-2023-48010 affects STMicroelectronics SPC58 PowerPC automotive MCUs. The vulnerability arises from a missing protection mechanism for an alternate hardware interface, allowing code executing with Supervisor privileges to disable the System Memory Protection Unit and obtain unabridged read/wri...

9.8CVSS7.2AI score0.00445EPSS
Exploits0References2
Veeam
Veeam
added 2024/11/07 12:0 a.m.92 views

NATS Server Configuration Advice for Use With Veeam Backup for Microsoft 365

Purpose This article provides advice for optimizing NATS Server configuration when used in conjunction with Veeam Backup for Microsoft 365. Solution When Veeam Backup for Microsoft 365 is deployed using the included NATS Server, the system variable 'GOMEMLIMIT ' is set to 30% of the total system...

6.6AI score
Exploits0Affected Software1
Broadcom
Broadcom
added 2024/11/01 12:0 a.m.16 views

PostgreSQL Memory disclosure in aggregate function calls (CVE-2023-5868)

A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals without type designation can disclose bytes,...

4.3CVSS4.6AI score0.02775EPSS
Exploits0
NVD
NVD
added 2024/10/23 5:15 p.m.17 views

CVE-2024-20260

A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance ASAv and Cisco Secure Firewall Threat Defense Virtual FTDv, formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual device...

8.6CVSS0.00625EPSS
Exploits0References1
CVE
CVE
added 2024/10/23 5:7 p.m.64 views

CVE-2024-20260

CVE-2024-20260 affects Cisco ASAv and Cisco Secure Firewall Threat Defense Virtual (FTDv). The vulnerability arises from improper memory management for new incoming SSL/TLS connections on the virtual platforms, allowing an unauthenticated remote attacker to exhaust system memory and cause Denial ...

8.6CVSS8.5AI score0.00625EPSS
Exploits0References1
Cisco
Cisco
added 2024/10/23 4:0 p.m.14 views

Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability

A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance ASAv and Cisco Secure Firewall Threat Defense Virtual FTDv, formerly Cisco Firepower Threat Defense Virtual, platforms could allow an unauthenticated, remote attacker to cause the virtual device...

8.6CVSS8.6AI score0.00625EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/08 12:0 a.m.3 views

PT-2024-6783 · Microsoft · Windows Ancillary Function Driver For Winsock +1

Name of the Vulnerable Software and Affected Versions: Windows Ancillary Function Driver for WinSock affected versions not specified Description: The issue is related to the use of insecure mechanisms for handling authentication data in the operating system's memory. This could allow an attacker ...

7.8CVSS6.5AI score0.00452EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/10/02 12:26 a.m.19 views

Low: Red Hat Security Advisory: linux-firmware security update

An update for linux-firmware is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

6CVSS6.4AI score0.00199EPSS
Exploits0References1
Rows per page
Query Builder