Lucene search
K

529 matches found

CVE
CVE
added 2019/04/15 5:20 p.m.95 views

CVE-2019-5517

CVE-2019-5517 affects VMware products (ESXi 6.5/6.7, Workstation 14.x/15.x, Fusion 10.x/11.x) and stems from out-of-bounds reads in the shader translator used by the 3D-acceleration feature. Exploitation requires VM access with 3D graphics enabled and can lead to information disclosure or guest-V...

6.8CVSS6.5AI score0.01107EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2019/02/26 12:0 a.m.29 views

CVE-2019-9199

PoDoFo::Impose::PdfTranslator::setSource in pdftranslator.cpp in PoDoFo 0.9.6 has a NULL pointer dereference that can for example be triggered by sending a crafted PDF file to the podofoimpose binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified...

7.3AI score0.02552EPSS
Exploits1References6
Kitploit
Kitploit
added 2018/12/02 9:37 p.m.104 views

GTRS - Google Translator Reverse Shell

This tools uses Google Translator as a proxy to send arbitrary commands to an infected machine. INFECTED MACHINE ==HTTPS== GOOGLE TRANSLATE ==HTTP== C2 Environment Configuration First you need a VPS and a domain, for the domain you can get a free one on Freenom. With your VPS and domain, just edi...

7.6AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/11/05 2:57 p.m.4 views

glusterfs: features/locks translator passes an user-controlled string to snprintf without a proper format string resulting in a denial of service

It was found that usage of snprintf function in feature/locks translator of glusterfs server was vulnerable to a format string attack. A remote, authenticated attacker could use this flaw to cause remote denial of service...

6.5CVSS7.4AI score0.02655EPSS
Exploits0References4
OSV
OSV
added 2018/10/31 8:29 p.m.3 views

DEBIAN-CVE-2018-14661

It was found that usage of snprintf function in feature/locks translator of glusterfs server 3.8.4, as shipped with Red Hat Gluster Storage, was vulnerable to a format string attack. A remote, authenticated attacker could use this flaw to cause remote denial of service...

6.5CVSS7AI score0.02655EPSS
Exploits0References1
NVD
NVD
added 2018/10/31 7:29 p.m.21 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.5AI score0.02747EPSS
Exploits0References7
NVD
NVD
added 2018/10/31 7:29 p.m.19 views

CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

8.5CVSS6.8AI score0.0263EPSS
Exploits0References6
OSV
OSV
added 2018/10/31 7:29 p.m.1 views

DEBIAN-CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

6.5CVSS6.8AI score0.0263EPSS
Exploits0References1
Prion
Prion
added 2018/10/31 7:29 p.m.23 views

Buffer overflow

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

4CVSS7.4AI score0.02747EPSS
Exploits0References7Affected Software5
OSV
OSV
added 2018/10/31 7:29 p.m.3 views

DEBIAN-CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.4AI score0.02747EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/10/31 7:29 p.m.31 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7AI score0.02747EPSS
Exploits0References5
OSV
OSV
added 2018/10/31 7:29 p.m.3 views

UBUNTU-CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

6.5CVSS6.8AI score0.0263EPSS
Exploits0References6
OSV
OSV
added 2018/10/31 7:29 p.m.22 views

CVE-2018-14654

The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GFXATTROPENTRYINKEY' xattrop to create arbitrary, empty files on the target server...

6.5CVSS6.6AI score0.0263EPSS
Exploits0References6
Cvelist
Cvelist
added 2018/10/31 7:0 p.m.30 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.4AI score0.02747EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2018/10/31 7:0 p.m.28 views

CVE-2018-14652

The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GFXATTRCLRLKCMD' xattr in the 'plgetxattr' function. A remote authenticated attacker could exploit this on a mounted volume to cause a denial of...

6.5CVSS7.7AI score0.02747EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2018/10/31 8:43 a.m.5 views

glusterfs: "features/index" translator can create arbitrary, empty files

A flaw was found in the way glusterfs server handles client requests. A remote, authenticated attacker could set arbitrary values for the GFXATTROPENTRYINKEY and GFXATTROPENTRYOUTKEY during xattrop file operation resulting in creation and deletion of arbitrary files on glusterfs server node...

8.5CVSS7.4AI score0.0263EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/10/31 8:43 a.m.4 views

glusterfs: Buffer overflow in "features/locks" translator allows for denial of service

A buffer overflow was found in strncpy of the plgetxattr function. An authenticated attacker could remotely overflow the buffer by sending a buffer of larger length than the size of the key resulting in remote denial of service...

6.5CVSS7.6AI score0.02747EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/10/31 8:43 a.m.7 views

glusterfs: features/locks translator passes an user-controlled string to snprintf without a proper format string resulting in a denial of service

It was found that usage of snprintf function in feature/locks translator of glusterfs server was vulnerable to a format string attack. A remote, authenticated attacker could use this flaw to cause remote denial of service...

6.5CVSS7.4AI score0.02655EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2018/10/31 12:0 a.m.8 views

PT-2018-12645 · Red Hat +1 · Gluster +1

Name of the Vulnerable Software and Affected Versions: Gluster file system versions through 4.1.4 Description: The issue allows a remote attacker with access to mount volumes to exploit the GF XATTROP ENTRY IN KEY xattrop, creating arbitrary, empty files on the target server via abuse of the...

8.8CVSS6.6AI score0.05374EPSS
Exploits1References71
Fedora
Fedora
added 2018/10/07 10:16 p.m.33 views

[SECURITY] Fedora 28 Update: liblouis-2.6.2-16.fc28

Liblouis is an open-source braille translator and back-translator named in honor of Louis Braille. It features support for computer and literary brail le, supports contracted and uncontracted translation for many languages and has support for hyphenation. New languages can easily be added through...

8.8CVSS0.3AI score0.02716EPSS
Exploits1
Rows per page
Query Builder