Lucene search
+L

761 matches found

CVE
CVE
added 2018/04/18 2:0 p.m.58 views

CVE-2015-9115

CVE-2015-9115 affects Android on Qualcomm Snapdragon platforms (Automotive and Mobile MDM9625 and several Snapdragon 410/12/425/430/450/615/16/415/617/625/650/52/820/820A). The root cause is missing validation of the address argument in the qsee_prng_getdata syscall, enabling potential misuse. Re...

10CVSS8.5AI score0.01169EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/04/12 10:0 p.m.39 views

CVE-2018-6879

The CVE-2018-6879 entry concerns PHP Scripts Mall Website Seller Script 2.0.3 where client-side validation is used to enforce email format. The vulnerability arises because the validation can be bypassed by removing the client-side validation code, enabling a remote attacker to modify a registere...

8.8CVSS8.6AI score0.01069EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/03/30 3:0 p.m.22 views

CVE-2017-14913

In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile MDM9206, SD 625, SD 650/52, SD 835, SD 845, DDR address input validation is being improperly truncated...

9.6AI score0.01724EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/03/09 12:0 a.m.46 views

SUSE SLES11 Security Update : xen (SUSE-SU-2018:0638-1) (Meltdown) (Spectre)

This update for xen fixes several issues. This new feature was included : - add script and sysv service to watch for vcpu online/offline events in a HVM domU These security issues were fixed : - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754: Prevent information leaks via side effects of speculative...

8.8CVSS7.1AI score0.93838EPSS
Exploits15References35
OSV
OSV
added 2018/03/08 5:7 p.m.11 views

SUSE-SU-2018:0638-1 Security update for xen

This update for xen fixes several issues. This new feature was included: - add script and sysv service to watch for vcpu online/offline events in a HVM domU These security issues were fixed: - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754: Prevent information leaks via side effects of speculative...

8.8CVSS8.2AI score0.93838EPSS
Exploits15References25
OSV
OSV
added 2018/03/05 4:46 p.m.6 views

SUSE-SU-2018:0609-1 Security update for xen

This update for xen fixes several issues. These security issues were fixed: - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754: Prevent information leaks via side effects of speculative execution, aka 'Spectre' and 'Meltdown' attacks bsc1074562, bsc1068032 - CVE-2018-5683: The vgadrawtext function...

8.8CVSS8.2AI score0.93838EPSS
Exploits15References23
NVD
NVD
added 2018/01/23 6:29 p.m.22 views

CVE-2018-5683

The vgadrawtext function in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds read and QEMU process crash by leveraging improper memory address validation...

6CVSS6.7AI score0.00683EPSS
Exploits1References9
Prion
Prion
added 2018/01/23 6:29 p.m.26 views

Out-of-bounds

The vgadrawtext function in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds read and QEMU process crash by leveraging improper memory address validation...

2.1CVSS5.8AI score0.00683EPSS
Exploits1References9Affected Software9
OSV
OSV
added 2018/01/23 6:29 p.m.27 views

CVE-2018-5683

The vgadrawtext function in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds read and QEMU process crash by leveraging improper memory address validation...

6CVSS7.6AI score
Exploits0References9
OSV
OSV
added 2018/01/23 6:29 p.m.2 views

DEBIAN-CVE-2018-5683

The vgadrawtext function in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds read and QEMU process crash by leveraging improper memory address validation...

6CVSS6.3AI score0.00683EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/01/23 6:0 p.m.30 views

CVE-2018-5683

The vgadrawtext function in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds read and QEMU process crash by leveraging improper memory address validation...

6.2AI score0.00683EPSS
Exploits1References9
CVE
CVE
added 2018/01/23 6:0 p.m.175 views

CVE-2018-5683

CVE-2018-5683 is an out-of-bounds memory access in QEMU’s VGA emulator (vga_draw_text). The vulnerability allows a privileged guest OS user to cause a Denial of Service by crashing the QEMU process due to improper memory address validation. The issue is discussed across multiple advisories (Debia...

6CVSS6AI score0.00683EPSS
Exploits1References9Affected Software1
Debian CVE
Debian CVE
added 2018/01/23 6:0 p.m.39 views

CVE-2018-5683

The vgadrawtext function in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds read and QEMU process crash by leveraging improper memory address validation...

6CVSS6.4AI score0.00683EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2018/01/23 12:0 a.m.31 views

CVE-2018-5683

The vgadrawtext function in Qemu allows local OS guest privileged users to cause a denial of service out-of-bounds read and QEMU process crash by leveraging improper memory address validation...

6CVSS6.8AI score0.00683EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2017/12/30 7:29 a.m.28 views

CVE-2017-17997

In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343...

7.5CVSS6.8AI score0.0178EPSS
Exploits0References4
OSV
OSV
added 2017/12/30 7:29 a.m.4 views

ALPINE-CVE-2017-17997

In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343...

7.5CVSS6.8AI score0.0178EPSS
Exploits0References1
OSV
OSV
added 2017/12/30 7:29 a.m.6 views

UBUNTU-CVE-2017-17997

In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343...

7.5CVSS7.1AI score0.0178EPSS
Exploits0References5
OSV
OSV
added 2017/09/17 9:29 p.m.5 views

CVE-2017-14510

An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 and Sugar Community Edition 6.5.26. The WebToLeadCapture functionality is found vulnerable to unauthenticated cross-site scripting XSS attacks. This attack vector is mitigated by proper validating t...

6.1CVSS5.7AI score0.01421EPSS
Exploits1References3
Veracode
Veracode
added 2017/07/26 8:32 a.m.17 views

Multiple CRLF Injection

PHPMailer is vulnerable to multiple CRLF injection attacks. The attacks exist because it does not filter address inputs with line breaks. A malicious user can pass an email address to the validateAddress function in class.phpmailer.php or pass SMTP commands to the sendCommand function in...

5CVSS6.5AI score0.01988EPSS
Exploits0References9Affected Software1
0day.today
0day.today
added 2017/07/11 12:0 a.m.33 views

DNSSEC RR Stub Resolver Denial Of Service Exploit

Exploit for linux platform in category dos / poc !/usr/bin/perl DNS/DNSSEC RR stub resolvers amplification ddos Copyright 2017 c Todor Donev email protected https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Disclaimer: This or previous program is for Educational purpose...

7.4AI score
Exploits0
Rows per page
Query Builder