Lucene search
K

54 matches found

SUSE CVE
SUSE CVE
added 2025/09/17 11:30 p.m.2 views

SUSE CVE-2022-50366

In the Linux kernel, the following vulnerability has been resolved: powercap: intelrapl: fix UBSAN shift-out-of-bounds issue When value timeunit, the parameter of ilog2 will be zero and the return value is -1. u64-1 is too large for shift exponent and then will trigger shift-out-of-bounds: shift...

7.1CVSS6.6AI score0.002EPSS
Exploits0References3
OSV
OSV
added 2025/09/17 3:15 p.m.5 views

UBUNTU-CVE-2022-50366

In the Linux kernel, the following vulnerability has been resolved: powercap: intelrapl: fix UBSAN shift-out-of-bounds issue When value timeunit, the parameter of ilog2 will be zero and the return value is -1. u64-1 is too large for shift exponent and then will trigger shift-out-of-bounds: shift...

7.1CVSS5.8AI score0.002EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/09/17 2:56 p.m.9 views

CVE-2022-50366 powercap: intel_rapl: fix UBSAN shift-out-of-bounds issue

In the Linux kernel, the following vulnerability has been resolved: powercap: intelrapl: fix UBSAN shift-out-of-bounds issue When value timeunit, the parameter of ilog2 will be zero and the return value is -1. u64-1 is too large for shift exponent and then will trigger shift-out-of-bounds: shift...

0.002EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/09/17 12:0 a.m.4 views

PT-2025-38176

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the powercap and intel rapl components. A shift-out-of-bounds issue occurs when a value is less than the time unit, leading to an excessively...

6.1AI score0.002EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-42320

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xensto...

7CVSS7AI score0.0027EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/30 12:0 a.m.8 views

PT-2024-22620 · Levelone · Levelone Wbr-6012

Name of the Vulnerable Software and Affected Versions: LevelOne WBR-6012 affected versions not specified Description: A security issue exists due to hard-coded credentials in the web services of the affected device. This allows attackers to gain unauthorized access within the first 30 seconds aft...

8.1CVSS7.6AI score0.00691EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/10/30 12:0 a.m.4 views

PT-2024-23796 · Levelone · Levelone Wbr-6012

Name of the Vulnerable Software and Affected Versions: LevelOne WBR-6012 affected versions not specified Description: A security issue exists due to hard-coded credentials in the web services of the affected device. This allows attackers to gain unauthorized access within the first 30 seconds aft...

9.8CVSS7.3AI score0.00719EPSS
Exploits0References4
OSV
OSV
added 2024/08/25 3:30 a.m.13 views

GHSA-48GG-32Q2-4R6M Hyperledger Fabric does not verify request has a timestamp within the expected time window

Hyperledger Fabric through 2.5.9 does not verify that a request has a timestamp within the expected time window...

5.4CVSS5.1AI score0.00589EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/08/25 12:0 a.m.6 views

Hyperledger Fabric 安全漏洞

Hyperledger Fabric is an enterprise-licensed distributed ledger framework open-sourced by Hyperledger. It is used to develop solutions and applications. A security vulnerability exists in Hyperledger Fabric version 2.5.9 that stems from an inability to verify that a request is timestamped within...

5.3CVSS6.4AI score0.00589EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/04/11 12:0 a.m.41 views

CVE-2023-29483

eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...

7CVSS7AI score0.01857EPSS
Exploits1
CNNVD
CNNVD
added 2024/03/25 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from the existence of an available time window...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References6
Prion
Prion
added 2023/11/22 5:15 p.m.17 views

Design/Logic Flaw

A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could...

1CVSS7.1AI score0.00172EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/11/22 5:9 p.m.36 views

CVE-2023-20084

A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could...

5CVSS5.4AI score0.00172EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/06/23 12:0 a.m.18 views

Fedora 38 : tang (2023-3e84bba241)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-3e84bba241 advisory. Fixes CVE-2023-1672 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not teste...

5.3CVSS5.7AI score0.00568EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/01/12 12:0 a.m.7 views

PT-2023-10639 · Rapid7 · Nexpose +1

Name of the Vulnerable Software and Affected Versions: Nexpose virtual appliances versions downloaded between April 5th, 2017 and May 3rd, 2017 InsightVM virtual appliances versions downloaded between April 5th, 2017 and May 3rd, 2017 Description: The issue concerns Nexpose and InsightVM virtual...

7.7CVSS7.2AI score0.00376EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.4 views

IBM OPENBMC OP910 安全漏洞

IBM OPENBMC OP910 is a POWER8 and POWER9 emulator from International Business Machines IBM. A security vulnerability exists in IBM OPENBMC OP910 and OP940 that originates from allowing a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short peri...

4.9CVSS5.4AI score0.00475EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/08/10 8:16 p.m.4 views

CVE-2022-37024

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils before 2022-07-29 through 2022-07-30 125658, 126003, 126105, and 126120 allow authenticated users to make database changes that lead to remote code execution...

8.8CVSS7.6AI score0.78326EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/02/25 12:1 a.m.48 views

Multi-Factor Authentication issue in Laravel Fortify

Laravel Fortify before 1.11.1 allows reuse within a short time window, thus calling into question the "OT" part of the "TOTP" concept...

8.1CVSS2.1AI score0.00931EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/02/24 3:15 p.m.3 views

CVE-2022-25838

Laravel Fortify before 1.11.1 allows reuse within a short time window, thus calling into question the "OT" part of the "TOTP" concept...

8.1CVSS7.1AI score0.00931EPSS
Exploits0References2
Prion
Prion
added 2021/11/20 3:15 p.m.18 views

Hardcoded credentials

NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to instantiate a DMA write operation only within a specific time window timed to corrupt code execution, which may impact confidentiality, integrity, or...

6.9CVSS7.5AI score0.00302EPSS
Exploits0References1
Rows per page
Query Builder