Lucene search
K

1400 matches found

OSV
OSV
added 2017/08/29 1:29 p.m.3 views

CVE-2017-10950

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Bitdefender Total Security 21.0.24.62. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

7CVSS6.2AI score0.00344EPSS
Exploits0References2
OSV
OSV
added 2017/07/25 2:29 p.m.5 views

CVE-2017-9457

Intense PC Phoenix SecureCore UEFI firmware does not perform capsule signature validation before upgrading the system firmware. The absence of signature validation allows an attacker with administrator privileges to flash a modified UEFI BIOS...

6.7CVSS5.8AI score0.00826EPSS
Exploits0References3
OSV
OSV
added 2017/07/06 12:29 a.m.3 views

CVE-2017-6708

A vulnerability in the symbolic link symlink creation functionality of the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to read sensitive files or execute malicious code on an affected system. The vulnerability is due to the absence of...

9.8CVSS6AI score0.01456EPSS
Exploits0References2
CNVD
CNVD
added 2017/06/01 12:0 a.m.4 views

Unauthorized Access Vulnerability in ioffice

iOffice is a mobile software for internal company to collaborate and communicate online on smartphones, send tasks, and share work knowledge and experience. An unauthorized access vulnerability exists in /prg/set/Report/ioRepTemp.aspx in ioffice, which allows attackers to exploit the vulnerabilit...

6.8AI score
Exploits0
CNVD
CNVD
added 2017/05/09 12:0 a.m.4 views

Sierra Wireless AirLink Raven XE and XT Cross-Site Request Forgery Vulnerability

The Sierra Wireless AirLink Raven XE and XT are both wireless gateway products from Sierra Wireless Canada. A cross-site request forgery vulnerability exists in the Sierra Wireless AirLink Raven XE and XT due to the program failing to validate that the request is from a logged in user. A remote...

8.8CVSS6.8AI score0.00641EPSS
Exploits0References1
CNVD
CNVD
added 2017/04/27 12:0 a.m.3 views

Cross-site scripting and cross-site request forgery vulnerabilities in metinfo

metinfo cms is an enterprise website management system with PHP Mysql architecture. There are cross-site scripting and cross-site request forgery vulnerabilities in metinfo. metinfocms "background settings-basic information-third-party code" form does not have token validation and effective...

6.1AI score
Exploits0
OSV
OSV
added 2017/03/31 12:59 a.m.5 views

CVE-2016-9319

There is Missing SSL Certificate Validation in the Trend Micro Enterprise Mobile Security Android Application before 9.7.1193, aka VRTS-398...

5.9CVSS5.8AI score0.00769EPSS
Exploits0References3
CNVD
CNVD
added 2017/03/23 12:0 a.m.2 views

Microsoft Skype DLL Load Local Code Execution Vulnerability

Microsoft Skype is a suite of instant messaging software from the American company Microsoft. Microsoft Skype suffers from a DLL loading local code execution vulnerability that originates from the program failing to validate user-supplied input. A local attacker could exploit this vulnerability t...

10CVSS7.6AI score0.46342EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2017/03/07 12:0 a.m.4 views

PT-2017-17124 · Andrzuk · Finecms

Name of the Vulnerable Software and Affected Versions: andrzuk/FineCMS versions prior to 2017-03-06 Description: The issue is related to a reflected XSS in index.php due to missing validation of the action parameter in application/classes/application.php. Recommendations: For versions prior to...

6.1CVSS5.9AI score0.00732EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.6 views

The vulnerability of the Linter Bastion database management system allows a malicious individual to execute arbitrary code with system privileges.

In the “sub41149F” authentication process at the address “0x0041150E”, there is no check for the correctness of input data. This may lead to buffer overflows in the stack during the processing of the RPC call numbered 0x13 “0x0040C95C”. This vulnerability allows a malicious attacker to execute...

8.5CVSS6.3AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.7 views

The vulnerability of the Linter Bastion database management system allows a malicious individual to trigger a service failure.

In the “sub416B78” procedure, there is no check for the correctness of input data. This may lead to buffer overflows when processing the RPC call with the number 0x10 “0x0040C284”, resulting in corrupted data that is necessary for the proper functioning of the application. This vulnerability allo...

6.3CVSS5.7AI score
Exploits0Affected Software1
CNVD
CNVD
added 2016/04/25 12:0 a.m.3 views

Midea's i+ smart refrigerator has design logic flaws

The Midea i+ Smart Refrigerator is a smart home appliance developed by Midea Group. Midea's i+ Smart Refrigerator is susceptible to man-in-the-middle attacks due to the insecure protocol for transmitting data and the lack of validation of what is transmitted on the client and server side. The lac...

6.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2015/11/19 4:3 a.m.5 views

ntp: vallen in extension fields are not validated

A stack-based buffer overflow was found in the way the NTP autokey protocol was implemented. When an NTP client decrypted a secret received from an NTP server, it could cause that client to crash...

7.2AI score
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/06/09 7:48 p.m.5 views

abrt: does not validate contents of uploaded problem reports

It was discovered that, when moving problem reports between certain directories, abrt-handle-upload did not verify that the new problem directory had appropriate permissions and did not contain symbolic links. An attacker able to create a crafted problem report could use this flaw to expose other...

6.5CVSS5.9AI score0.01075EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2014/10/21 10:55 a.m.3 views

CVE-2014-7769

The Accurate Lending aka com.soln.S7B193908AEA1937C7CBB4E889A46D3C0 application 1.0021.b0021 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.5AI score0.00266EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/02/07 6:53 p.m.6 views

xen: Xen domain builder Out-of-memory due to malicious kernel/ramdisk

The PV domain builder in Xen 4.2 and earlier does not validate the size of the kernel or ramdisk 1 before or 2 after decompression, which allows local guest administrators to cause a denial of service domain 0 memory consumption via a crafted a kernel or b ramdisk...

2.1CVSS7.3AI score0.0042EPSS
Exploits0References4
OSV
OSV
added 2012/12/27 12:0 a.m.4 views

UBUNTU-CVE-2012-2669

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message...

2.1CVSS5.8AI score0.00351EPSS
Exploits0References13
Xen Project
Xen Project
added 2011/03/14 11:0 a.m.10 views

Host crash due to failure to correctly validate PV kernel execution state

ISSUE DESCRIPTION Cannot specify user mode execution without specifying user-mode pagetables. Failure to validate this allows a malicious or buggy 64 bit PV guest to crash the host. nb: predates vulnerability handling process and therefore no formal announcement...

5.5CVSS7.2AI score0.00673EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.3 views

kernel: ext4: make_indexed_dir() missing validation

The makeindexeddir function in fs/ext4/namei.c in the Linux kernel 2.6.27 before 2.6.27.19 and 2.6.28 before 2.6.28.7 does not validate a certain reclen field, which allows local users to cause a denial of service OOPS by attempting to mount a crafted ext4 filesystem...

4.9CVSS6.1AI score0.0075EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2008/12/09 12:30 a.m.26 views

CVE-2008-5396

Array index error in the 1 torisa.c and 2 dahdi/tor2.c drivers in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to missing validation of the sync field associated with the ZTSPANCONFIG...

7.2CVSS5.9AI score0.00348EPSS
Exploits1References1
Rows per page
Query Builder