Lucene search
K

166 matches found

Amazon
Amazon
added 2024/01/23 12:0 a.m.3 views

Important: postgresql

Issue Overview: Certain aggregate function calls receiving "unknown"-type arguments could disclose bytes of server memory from the end of the "unknown"-type value to the next zero byte. One typically gets an "unknown"-type value via a string literal having no type designation. We have not confirm...

8.8CVSS8.1AI score0.04322EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.28 views

Rocky Linux 8 : postgresql:13 (RLSA-2021:5236)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:5236 advisory. - When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker ca...

8.1CVSS7.3AI score0.01901EPSS
Exploits0References5
NVD
NVD
added 2023/10/25 6:17 p.m.16 views

CVE-2023-4693

An out-of-bounds read flaw was found on grub2's NTFS filesystem driver. This issue may allow a physically present attacker to present a specially crafted NTFS file system image to read arbitrary memory locations. A successful attack allows sensitive data cached in memory or EFI variable values to...

5.3CVSS6.1AI score0.00496EPSS
Exploits1References13
Vulnrichment
Vulnrichment
added 2023/05/04 12:0 a.m.7 views

CVE-2023-21510

Out-of-bounds Read vulnerability while processing BCTUICMDUPDATESCREEN in bctui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to read arbitrary memory...

4.4CVSS5.4AI score0.00171EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.2 views

SUSE CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

6.7CVSS6.8AI score0.00248EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.8 views

FreeBSD : LibreSSL -- Arbitrary memory read (1dd84344-a7da-11ed-86e9-d4c9ef517024)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1dd84344-a7da-11ed-86e9-d4c9ef517024 advisory. - The OpenBSD project reports: A malicious certificate revocation list or timestamp response token woul...

5.9AI score
Exploits0References2
0day.today
0day.today
added 2023/02/03 12:0 a.m.399 views

Lenovo Diagnostics Driver Memory Access Exploit

This Metasploit module demonstrates how an incorrect access control for the Lenovo Diagnostics Driver allows a low-privileged user the ability to issue device IOCTLs to perform arbitrary physical/virtual memory reads and writes. This module requires Metasploit: https://metasploit.com/download...

7.8CVSS7.8AI score0.04284EPSS
Exploits4
VulnCheck KEV
VulnCheck KEV
added 2022/10/24 12:0 a.m.5 views

VulnCheck KEV: CVE-2018-19323

The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges...

9.8CVSS7.2AI score0.08523EPSS
Exploits3References1
Microsoft CVE
Microsoft CVE
added 2022/09/27 7:0 a.m.1 views

Arbitrary Memory read in BPF Linux Kernel

...

6.7CVSS5.9AI score0.00248EPSS
Exploits0
NVD
NVD
added 2022/09/23 11:15 a.m.20 views

CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

6.7CVSS0.00248EPSS
Exploits0References2
OSV
OSV
added 2022/09/23 11:15 a.m.1 views

DEBIAN-CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

5.5CVSS5.9AI score0.00248EPSS
Exploits0References1
OSV
OSV
added 2022/09/23 11:15 a.m.8 views

CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

5.5CVSS6.6AI score
Exploits0References2
OSV
OSV
added 2022/09/23 11:15 a.m.5 views

AZL-34860 CVE-2022-2785 affecting package kernel for versions less than 6.6.35.1-4

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

5.5CVSS6.2AI score0.00248EPSS
Exploits0References1
OSV
OSV
added 2022/09/23 11:15 a.m.1 views

UBUNTU-CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

6.7CVSS6.2AI score0.00248EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2022/09/23 11:10 a.m.35 views

CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

6.7CVSS5.8AI score0.00248EPSS
Exploits0
Cvelist
Cvelist
added 2022/09/23 11:10 a.m.30 views

CVE-2022-2785 Arbitrary Memory read in BPF Linux Kernel

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

6.7CVSS6.5AI score0.00248EPSS
Exploits0References2
CVE
CVE
added 2022/09/23 11:10 a.m.78 views

CVE-2022-2785

CVE-2022-2785 affects the Linux kernel BPF subsystem. The vulnerability arises because constants used to fill pointers in structs passed to bpf_sys_bpf are not verified, allowing an attacker with CAP_BPF to read memory anywhere on the system. Affected systems can face arbitrary memory reads, with...

6.7CVSS5.4AI score0.00248EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2022/09/23 12:0 a.m.51 views

CVE-2022-2785

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

6.7CVSS6.2AI score0.00248EPSS
Exploits0References3
OSV
OSV
added 2022/08/17 2:52 p.m.10 views

SUSE-SU-2022:2836-1 Security update for ntfs-3g_ntfsprogs

This update for ntfs-3gntfsprogs fixes the following issues: Updated to version 2022.5.17 bsc1199978: - CVE-2022-30783: Fixed an issue where messages between NTFS-3G and the kernel could be intercepted when using libfuse-lite. - CVE-2022-30784: Fixed a memory exhaustion issue when opening a craft...

7.8CVSS7AI score0.00504EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2022/08/10 12:0 a.m.1 views

PT-2022-4895 · Linux · Linux Kernel Bpf

Name of the Vulnerable Software and Affected Versions: Linux Kernel BPF affected versions not specified Description: The issue is related to an arbitrary memory read within the Linux Kernel BPF. Constants provided to fill pointers in structs passed to bpf sys bpf are not verified and can point...

6.8CVSS5.6AI score0.00248EPSS
Exploits0References15
Rows per page
Query Builder