Lucene search
+L

151 matches found

OSV
OSV
added 2024/06/11 4:49 p.m.22 views

CVE-2024-37293 aws-deployment-framework's potential risk can lead to privilege escalation

The AWS Deployment Framework ADF is a framework to manage and deploy resources across multiple AWS accounts and regions within an AWS Organization. ADF allows for staged, parallel, multi-account, cross-region deployments of applications or resources via the structure defined in AWS Organizations...

7.5CVSS7.3AI score0.00245EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/03/15 12:0 a.m.29 views

Debian dla-3762 : unadf - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3762 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3762-1 [email protected]...

9.8CVSS9AI score0.05282EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/03/02 5:48 a.m.4 views

SUSE CVE-2021-47056

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADFSTATUSPFRUNNING should be set after adfdevinit ADFSTATUSPFRUNNING is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock, however the vf2pflock is initialized in adfdevinit,...

5.5CVSS7.8AI score0.00226EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2024/03/01 5:32 a.m.38 views

CVE-2021-47056

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADFSTATUSPFRUNNING should be set after adfdevinit ADFSTATUSPFRUNNING is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock, however the vf2pflock is initialized in adfdevinit,...

5.5CVSS6.5AI score0.00226EPSS
Exploits0References4
OSV
OSV
added 2024/02/29 11:15 p.m.1 views

DEBIAN-CVE-2021-47056

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADFSTATUSPFRUNNING should be set after adfdevinit ADFSTATUSPFRUNNING is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock, however the vf2pflock is initialized in adfdevinit,...

5.5CVSS5.8AI score0.00226EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/19 12:0 a.m.52 views

Oracle JDeveloper Multiple Vulnerabilities (January 2024 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory. - Vulnerability in the Oracle JDeveloper product of Oracle Fusion Middleware component: Oracle JDevelop...

7.5CVSS6.5AI score0.12945EPSS
Exploits0References7
VulnCheck KEV
VulnCheck KEV
added 2023/10/08 12:0 a.m.3 views

VulnCheck KEV: CVE-2022-21445

Oracle ADF Faces library, included with Oracle JDeveloper Distribution, contains a deserialization of untrusted data vulnerability leading to unauthenticated remote code execution...

9.8CVSS7.2AI score0.62478EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2023/07/25 12:0 a.m.73 views

Oracle JDeveloper Information Disclosure (July 2023 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability as referenced in the July 2023 CPU advisory. The vulnerability is in the Oracle JDeveloper product of Oracle Fusion Middleware component...

9.8CVSS7.1AI score0.02844EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/04/21 12:0 a.m.51 views

Oracle JDeveloper Information Disclosure (April 2023 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability as referenced in the April 2023 CPU advisory. Vulnerability in the Oracle JDeveloper product of Oracle Fusion Middleware component: ADF...

7.5CVSS7.4AI score0.04425EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.3 views

SUSE CVE-2020-27795

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...

7.5CVSS7.7AI score0.01165EPSS
Exploits1References3
OSV
OSV
added 2022/08/19 11:15 p.m.17 views

CVE-2020-27795

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...

7.5CVSS7AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/08/19 11:15 p.m.27 views

CVE-2020-27795

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...

7.5CVSS7AI score0.01165EPSS
Exploits1References5
OSV
OSV
added 2022/08/19 11:15 p.m.3 views

UBUNTU-CVE-2020-27795

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...

7.5CVSS5.8AI score0.01165EPSS
Exploits1References6
CVE
CVE
added 2022/08/19 10:36 p.m.89 views

CVE-2020-27795

CVE-2020-27795 describes a segmentation fault in radare2 triggered by the adf command when it has no or invalid arguments. The fault arises in libr/core/cmd_anal.c: anal_fcn_data(core, input+1) calls r_anal_get_fcn_in(core->anal, core->offset, -1) and receives a null fcn, which then leads t...

7.5CVSS7.5AI score0.01165EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2022/08/19 10:36 p.m.25 views

CVE-2020-27795

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...

7.5CVSS7.6AI score0.01165EPSS
Exploits1
Cvelist
Cvelist
added 2022/08/19 10:36 p.m.23 views

CVE-2020-27795

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmdanal.c, when command "adf" has no or wrong argument, analfcndata core, input + 1 -- RAnalFunction fcn = ranalgetfcnin core-anal, core-offset, -1; returns null pointer for fcn causing segmentation fault later in...

7.6AI score0.01165EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/19 12:0 a.m.6 views

radare2 安全漏洞

radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in radare2 that stems from the discovery of a segmentation error using the adf command...

7.5CVSS7.2AI score0.01165EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2022/06/07 12:0 a.m.9 views

The vulnerability of component ADF Faces in the Oracle Jdeveloper software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of component ADF Faces in the Oracle Jdeveloper software is related to errors in the code. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information through HTTP requests...

10CVSS7.1AI score0.62478EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/04/19 9:15 p.m.55 views

CVE-2022-21445

Vulnerability in the Oracle Application Development Framework ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

9.8CVSS0.62478EPSS
Exploits1References2
OSV
OSV
added 2022/04/19 9:15 p.m.7 views

CVE-2022-21445

Vulnerability in the Oracle Application Development Framework ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

9.8CVSS6.9AI score0.62478EPSS
Exploits1References2
Rows per page
Query Builder