Lucene search
K

1294 matches found

Zero Day Initiative
Zero Day Initiative
added 2017/06/13 12:0 a.m.17 views

Trend Micro Maximum Security tmusa Kernel Driver Untrusted Pointer Dereference Denial of Service Vulnerability

This vulnerability allows local attackers to deny service on vulnerable installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processi...

4.7CVSS6.6AI score
Exploits0References1
Prion
Prion
added 2017/06/06 2:29 p.m.19 views

Null pointer dereference

In TrustZone in all Android releases from CAF using the Linux kernel, an Untrusted Pointer Dereference vulnerability could potentially exist...

9.3CVSS7AI score0.0046EPSS
Exploits0References2
CVE
CVE
added 2017/06/06 2:0 p.m.43 views

CVE-2014-9949

CVE-2014-9949 is described as a TrustZone vulnerability in Android CAF builds that use the Linux kernel. The issue is an Untrusted Pointer Dereference in TrustZone, with impact articulated as high in the CVSS metrics (LOCAL exploit, low attack complexity, user interaction required, and high confi...

9.3CVSS7.2AI score0.0046EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2017/06/02 12:0 a.m.15 views

Check Point ZoneAlarm Extreme Security vsdatant Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Check Point ZoneAlarm Extreme Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

6.9CVSS4.4AI score
Exploits0
android
android
added 2017/06/01 12:0 a.m.26 views

CVE-2015-9027

In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM...

9.3CVSS6.5AI score0.00597EPSS
Exploits0References2
android
android
added 2017/06/01 12:0 a.m.30 views

CVE-2014-9967

In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM...

9.3CVSS6.5AI score0.00585EPSS
Exploits0References2
NVD
NVD
added 2017/05/16 2:29 p.m.16 views

CVE-2015-9000

In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel...

9.3CVSS7.3AI score0.00578EPSS
Exploits0References3
Prion
Prion
added 2017/05/16 2:29 p.m.18 views

Null pointer dereference

In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel...

9.3CVSS7AI score0.00578EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/10/12 12:0 a.m.30 views

openSUSE Security Update : postgresql94 (openSUSE-2016-1161)

This update for postgresql94 to version 9.4.9 fixes the several issues. These security issues were fixed : - CVE-2016-5423: CASE/WHEN with inlining can cause untrusted pointer dereference bsc993454. - CVE-2016-5424: Fix client programs' handling of special characters in database and role names...

8.3CVSS7.3AI score0.05962EPSS
Exploits0References8
Zero Day Initiative
Zero Day Initiative
added 2016/10/06 12:0 a.m.26 views

Trend Micro Maximum Security tmnciesc driver Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within th...

6.9CVSS4.1AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/09/30 12:0 a.m.34 views

SUSE SLES11 Security Update : postgresql94 (SUSE-SU-2016:2418-1)

This update for postgresql94 to version 9.4.9 fixes the several issues. These security issues were fixed : - CVE-2016-5423: CASE/WHEN with inlining can cause untrusted pointer dereference bsc993454. - CVE-2016-5424: Fix client programs' handling of special characters in database and role names...

8.3CVSS7.3AI score0.05962EPSS
Exploits0References10
OSV
OSV
added 2016/09/29 11:14 a.m.9 views

SUSE-SU-2016:2415-1 Security update for postgresql94

This update for postgresql94 to version 9.4.9 fixes the several issues. These security issues were fixed: - CVE-2016-5423: CASE/WHEN with inlining can cause untrusted pointer dereference bsc993454. - CVE-2016-5424: Fix client programs' handling of special characters in database and role names...

8.3CVSS7.5AI score0.05962EPSS
Exploits0References6
Check Point Advisories
Check Point Advisories
added 2016/09/13 12:0 a.m.27 views

Schneider Electric SoMachine HVAC AxEditGrid ActiveX Untrusted Pointer Dereference (CVE-2016-4529)

The vulnerability is due to a dereference of user-supplied SetDataIntf parameter value as a function pointer within the AxEditGrid ActiveX control. A remote, unauthenticated attacker could exploit this vulnerability by enticing a victim user to open a specially crafted web page. Successful...

7.5CVSS2AI score0.04989EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2016/09/07 9:53 a.m.7 views

postgresql: CASE/WHEN with inlining can cause untrusted pointer dereference

A flaw was found in the way PostgreSQL server handled certain SQL statements containing CASE/WHEN commands. A remote, authenticated attacker could use a specially crafted SQL statement to cause PostgreSQL to crash or disclose a few bytes of server memory or possibly execute arbitrary code...

8.3CVSS7.6AI score0.05962EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2016/09/01 12:0 a.m.18 views

Bitdefender Antivirus Plus avc3 Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Bitdefender Antivirus Plus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

6.9CVSS7.2AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/08/31 5:48 a.m.14 views

postgresql: CASE/WHEN with inlining can cause untrusted pointer dereference

A flaw was found in the way PostgreSQL server handled certain SQL statements containing CASE/WHEN commands. A remote, authenticated attacker could use a specially crafted SQL statement to cause PostgreSQL to crash or disclose a few bytes of server memory or possibly execute arbitrary code...

8.3CVSS7.6AI score0.05962EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2016/08/29 12:0 a.m.36 views

Apple OS X IOHDIXController Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the IOHDIXController interface. The issue lies...

6.9CVSS3.4AI score0.01611EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2016/08/19 12:0 a.m.27 views

AVG Internet Security avgtdix.sys Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of AVG Internet Security. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within processing of...

6.9CVSS6.9AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2016/07/20 12:0 a.m.47 views

Schneider Electric SoMachine HVAC AxEditGrid ActiveX Control SetDataIntf Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric SoMachine HVAC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.5CVSS2.5AI score0.04989EPSS
Exploits0References1
OSV
OSV
added 2016/04/12 2:59 p.m.5 views

CVE-2016-2558

The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU graphics driver R340 before 341.95 and R352 before 354.74 on Windows allows local users to obtain sensitive information, cause a denial of service crash, or gain privileges via unspecified vectors related to an untrusted...

8.4CVSS5.8AI score0.0036EPSS
Exploits0References2
Rows per page
Query Builder