151 matches found
CVE-2024-37293 aws-deployment-framework's potential risk can lead to privilege escalation
The AWS Deployment Framework ADF is a framework to manage and deploy resources across multiple AWS accounts and regions within an AWS Organization. ADF allows for staged, parallel, multi-account, cross-region deployments of applications or resources via the structure defined in AWS Organizations...
Debian dla-3762 : unadf - security update
The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3762 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3762-1 [email protected]...
SUSE CVE-2021-47056
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADFSTATUSPFRUNNING should be set after adfdevinit ADFSTATUSPFRUNNING is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock, however the vf2pflock is initialized in adfdevinit,...
CVE-2021-47056
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADFSTATUSPFRUNNING should be set after adfdevinit ADFSTATUSPFRUNNING is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock, however the vf2pflock is initialized in adfdevinit,...
DEBIAN-CVE-2021-47056
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADFSTATUSPFRUNNING should be set after adfdevinit ADFSTATUSPFRUNNING is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock, however the vf2pflock is initialized in adfdevinit,...
Oracle JDeveloper Multiple Vulnerabilities (January 2024 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory. - Vulnerability in the Oracle JDeveloper product of Oracle Fusion Middleware component: Oracle JDevelop...
VulnCheck KEV: CVE-2022-21445
Oracle ADF Faces library, included with Oracle JDeveloper Distribution, contains a deserialization of untrusted data vulnerability leading to unauthenticated remote code execution...
Oracle JDeveloper Information Disclosure (July 2023 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability as referenced in the July 2023 CPU advisory. The vulnerability is in the Oracle JDeveloper product of Oracle Fusion Middleware component...
Oracle JDeveloper Information Disclosure (April 2023 CPU)
The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability as referenced in the April 2023 CPU advisory. Vulnerability in the Oracle JDeveloper product of Oracle Fusion Middleware component: ADF...
SUSE CVE-2020-27795
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...
CVE-2020-27795
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...
CVE-2020-27795
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...
UBUNTU-CVE-2020-27795
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...
CVE-2020-27795
CVE-2020-27795 describes a segmentation fault in radare2 triggered by the adf command when it has no or invalid arguments. The fault arises in libr/core/cmd_anal.c: anal_fcn_data(core, input+1) calls r_anal_get_fcn_in(core->anal, core->offset, -1) and receives a null fcn, which then leads t...
CVE-2020-27795
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...
CVE-2020-27795
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...
radare2 安全漏洞
radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in radare2 that stems from the discovery of a segmentation error using the adf command...
The vulnerability of component ADF Faces in the Oracle Jdeveloper software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of component ADF Faces in the Oracle Jdeveloper software is related to errors in the code. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information through HTTP requests...
CVE-2022-21445
Vulnerability in the Oracle Application Development Framework ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...
CVE-2022-21445
Vulnerability in the Oracle Application Development Framework ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...