Lucene search
K

43 matches found

OSV
OSV
added 2024/02/02 11:6 a.m.3 views

OESA-2024-1112 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel before 6.5.9, there is a NULL pointer dereference in sendacknowledge in net/nfc/nci/spi.c.CVE-2023-46343 In the Linux kernel before 6.4.12, amdgpucswaitallfences in drivers/gpu/drm/amd/amdgpu/amdgpucs.c has a...

7.8CVSS8.3AI score0.00319EPSS
Exploits0References4
OSV
OSV
added 2024/02/02 11:6 a.m.4 views

OESA-2024-1113 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel before 6.5.9, there is a NULL pointer dereference in sendacknowledge in net/nfc/nci/spi.c.CVE-2023-46343 In the Linux kernel before 6.4.12, amdgpucswaitallfences in drivers/gpu/drm/amd/amdgpu/amdgpucs.c has a...

7.8CVSS8.3AI score0.00319EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/01/31 12:0 a.m.10 views

The vulnerability of the send_acknowledge() function in the net/nfc/nci/spi.c module of the Linux kernel allows a intruder to trigger a service failure.

The vulnerability of the NCI protocol implementation in Linux operating systems is related to the handling of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00237EPSS
Exploits0References36Affected Software3
Microsoft CVE
Microsoft CVE
added 2024/01/30 8:0 a.m.6 views

In the Linux kernel before 6.5.9 there is a NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c.

...

5.5CVSS7.2AI score0.00237EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/01/25 2:48 a.m.3 views

SUSE CVE-2023-46343

In the Linux kernel before 6.5.9, there is a NULL pointer dereference in sendacknowledge in net/nfc/nci/spi.c...

6.5CVSS6.7AI score0.00237EPSS
Exploits0References14
OSV
OSV
added 2024/01/23 10:15 a.m.1 views

DEBIAN-CVE-2023-46343

In the Linux kernel before 6.5.9, there is a NULL pointer dereference in sendacknowledge in net/nfc/nci/spi.c...

5.5CVSS6.2AI score0.00237EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/23 12:0 a.m.1 views

CVE-2023-46343

In the Linux kernel before 6.5.9, there is a NULL pointer dereference in sendacknowledge in net/nfc/nci/spi.c...

8AI score0.00237EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/10/16 12:0 a.m.7 views

PT-2023-8457

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.9 Description The issue is related to a NULL pointer dereference in the send acknowledge function in net/nfc/nci/spi.c. This could potentially allow an attacker to cause a denial of service. Recommendations F...

9.1CVSS7.1AI score0.28058EPSS
Exploits26References629
Huntr
Huntr
added 2023/06/25 5:33 p.m.17 views

Stored XSS at Search page

Description Create new item with XSS payload. Then go to Search page, XSS vulnerability will be trigger. Proof of Concept https://drive.google.com/file/d/1OB11FmQvy2-qRI9r1BlavKUxJ4kaMjp/view?usp=sharing Acknowledge Tran Van Nhan from bl4ckh0l3 of GalaxyOne...

4.9CVSS6.3AI score0.00537EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.3 views

kernel: tcp: tcp_rtx_synack() can be called from process context

In the Linux kernel, the following vulnerability has been resolved: tcp: tcprtxsynack can be called from process context Laurent reported the enclosed report 1 This bug triggers with following coditions: 0 Kernel built with CONFIGDEBUGPREEMPT=y 1 A new passive FastOpen TCP socket is created. This...

5.5CVSS6.2AI score0.00283EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/07/11 12:0 a.m.1 views

PT-2022-20291 · Unknown · Semwifiapclient

Name of the Vulnerable Software and Affected Versions: SemWifiApClient versions prior to SMR Jul-2022 Release 1 Description: The issue is related to an improper access control vulnerability in the sendDHCPACKBroadcast function. This vulnerability allows an attacker to access the WiFi AP client MA...

3.3CVSS3.7AI score0.00094EPSS
Exploits0References3
Wired Threat Level
Wired Threat Level
added 2021/04/27 1:0 p.m.81 views

AirDrop Is Leaking Email Addresses and Phone Numbers

Apple has known about the flaw since 2019 but has yet to acknowledge or fix it...

3.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/03/17 12:0 a.m.51 views

RHEL 7 : kernel (RHSA-2021:0878)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0878 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: locking issue in...

7.8CVSS6.7AI score0.01129EPSS
Exploits2References10
RedHat Linux
RedHat Linux
added 2019/11/14 9:17 p.m.4 views

HTTP/2: flood using SETTINGS frames results in unbounded memory growth

A flaw was found in HTTP/2. Using SETTINGS frames and queuing of SETTINGS ACK frames, a flood could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.87806EPSS
Exploits0References7
exploitpack
exploitpack
added 2019/02/22 12:0 a.m.52 views

Quest NetVault Backup Server 11.4.5 - Process Manager Service SQL Injection Remote Code Execution

Quest NetVault Backup Server 11.4.5 - Process Manager Service SQL Injection Remote Code Execution Exploit Title: Quest NetVault Backup Server 11.4.5 Process Manager Service SQL Injection Remote Code Execution Vulnerability ZDI-17-982 Date: 2-21-2019 Exploit Author: credit goes to rgod for finding...

7.5CVSS0.6AI score0.10001EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/02/22 12:0 a.m.102 views

Quest NetVault Backup Server < 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution

Exploit Title: Quest NetVault Backup Server 11.4.5 Process Manager Service SQL Injection Remote Code Execution Vulnerability ZDI-17-982 Date: 2-21-2019 Exploit Author: credit goes to rgod for finding the bug Version: Quest NetVault Backup Server 11.4.5 CVE : CVE-2017-17417 There is a decent...

9.8CVSS9.6AI score0.10001EPSS
Exploits5
BDU FSTEC
BDU FSTEC
added 2018/04/04 12:0 a.m.8 views

The vulnerability of the NVBUPhaseStatus Acknowledge request handler in the software for NetVault Backup’s data archiving and restoration capabilities allows a attacker to execute arbitrary code.

The vulnerability of the NVBUPhaseStatus Acknowledge request handler in software for NetVault Backup’s data archiving and restoration functions is related to insufficient protection of the SQL query structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

9.8CVSS6.1AI score0.10001EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2018/02/08 6:29 p.m.4 views

CVE-2017-17417

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUPhaseStatus Acknowledge method requests. The issue...

9.8CVSS6.2AI score0.10001EPSS
Exploits5References2
Zero Day Initiative
Zero Day Initiative
added 2017/12/15 12:0 a.m.37 views

Quest NetVault Backup Server Process Manager Service NVBUPhaseStatus Acknowledge Method SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUPhaseStatus Acknowledge method requests. The issue results...

7.5CVSS2.1AI score0.10001EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2017/06/14 3:17 p.m.41 views

Moderate: Red Hat Security Advisory: python-django security update

An update for python-django is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.1CVSS6.6AI score0.02384EPSS
Exploits1References2
Rows per page
Query Builder