Lucene search
+L

32 matches found

RedHat Linux
RedHat Linux
added 2022/11/08 9:32 a.m.15 views

kernel: LoadPin bypass via dm-verity table reload

A flaw was found in the Linux kernel. Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module and firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out...

6.9CVSS6.8AI score0.00357EPSS
Exploits1References5
OSV
OSV
added 2022/08/12 11:15 a.m.6 views

DEBIAN-CVE-2022-2503

Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear...

6.7CVSS7AI score0.00357EPSS
Exploits1References1
OSV
OSV
added 2022/08/12 11:15 a.m.9 views

AZL-10559 CVE-2022-2503 affecting package kernel for versions less than 5.15.67.1-4

Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear...

6.7CVSS7AI score0.00357EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/08/12 12:0 a.m.11 views

CVE-2022-2503 Linux Kernel LoadPin bypass via dm-verity table reload

Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear...

6.9CVSS6.9AI score0.00357EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2021/06/10 5:22 p.m.78 views

Duplicate Advisory: Path Traversal in Zope

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-5pr9-v234-jw36. This link is maintained to preserve external references. Original Description Zope is an open-source web application server. This advisory extends the previous advisory at...

8.8CVSS8.8AI score0.01574EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2021/06/09 3:10 a.m.38 views

Remote Code Execution (RCE)

zope is vulnerable to remote code execution. The vulnerability exists due to untrusted modules available indirectly through Python modules...

8.8CVSS2.7AI score0.01574EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2021/06/08 12:0 a.m.26 views

Zope 路径遍历漏洞

Zope is a set of object-oriented, open source web application servers written in the Python language from the Zope ZOPE community. Zope suffers from a path traversal vulnerability that stems from the fact that untrusted modules can be obtained indirectly through Python modules that can be used...

8.8CVSS7.8AI score0.01574EPSS
Exploits0References4
OSV
OSV
added 2021/05/21 2:15 p.m.43 views

CVE-2021-32633

Zope is an open-source web application server. In Zope versions prior to 4.6 and 5.2, users can access untrusted modules indirectly through Python modules that are available for direct use. By default, only users with the Manager role can add or edit Zope Page Templates through the web, but sites...

8.8CVSS8.5AI score0.01843EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2021/05/21 2:15 p.m.2 views

CVE-2021-32633

Zope is an open-source web application server. In Zope versions prior to 4.6 and 5.2, users can access untrusted modules indirectly through Python modules that are available for direct use. By default, only users with the Manager role can add or edit Zope Page Templates through the web, but sites...

8.8CVSS6.9AI score0.01843EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2021/02/26 2:15 p.m.24 views

Design/Logic Flaw

A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authenticity. This component is incorporated in Kaspersky Rescue Disk KRD and was trusted by the Authentication Agent of Full Disk Encryption in Kaspersky Endpoint Security KES...

4.6CVSS6.5AI score0.00231EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2018/10/25 12:0 a.m.7 views

UBUNTU-CVE-2018-18653

The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Secure Boot enabled, allows privileged local users to bypass intended Secure Boot restrictions and execute untrusted code by loading arbitrary kernel modules. This occurs because a modified kernel/module.c, in conjunction with...

7.8CVSS7.1AI score0.00311EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2017/08/01 2:11 p.m.5 views

openssh: loading of untrusted PKCS#11 modules in ssh-agent

It was found that ssh-agent could load PKCS11 modules from arbitrary paths. An attacker having control of the forwarded agent-socket on the server, and the ability to write to the filesystem of the client host, could use this flaw to execute arbitrary code with the privileges of the user running...

7.5CVSS7.5AI score0.37431EPSS
Exploits4References5
Rows per page
Query Builder