Lucene search
K

31254 matches found

SUSE CVE
SUSE CVE
added 2024/04/23 1:45 a.m.1 views

SUSE CVE-2023-40551

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

4.4CVSS5.4AI score0.00394EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2024/04/23 1:0 a.m.2 views

shim: out of bounds read when parsing MZ binaries

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.5AI score0.00394EPSS
Exploits0References4
WPVulnDB
WPVulnDB
added 2024/04/23 12:0 a.m.14 views

Custom Thank You Page Customize For WooCommerce by Binary Carpenter < 1.4.14 - Missing Authorization

Description The Custom Thank You Page Customize For WooCommerce by Binary Carpenter plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the activationcallback function in all versions up to, and including, 1.4.13. This makes it possible for authenticated...

4.3CVSS4.4AI score0.00337EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/04/22 9:47 a.m.10 views

USN-6738-1 lxd vulnerability

Fabian Bäumer, Marcus Brinkmann, and Jörg Schwenk discovered that LXD incorrectly handled the handshake phase and the use of sequence numbers in SSH Binary Packet Protocol BPP. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2024/04/22 12:0 a.m.39 views

Siemens SINEC NMS TFTP File Upload (CVE-2024-23811)

Binary data siemenssinecnmscve-2024-23811.nbin...

8.8CVSS8.8AI score0.00387EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/04/22 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1552)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.93305EPSS
Exploits11References2
OpenVAS
OpenVAS
added 2024/04/22 12:0 a.m.65 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1533)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.93305EPSS
Exploits11References2
OSV
OSV
added 2024/04/19 11:7 a.m.1 views

OESA-2024-1461 libssh2 security update

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10. Security Fixes: The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH...

5.9CVSS8.1AI score0.93305EPSS
Exploits4References2
NVD
NVD
added 2024/04/19 5:15 a.m.16 views

CVE-2024-29962

Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes files world-readable. This could allow a local user without the required privileges to access sensitive information or a Java binary...

5.5CVSS5.3AI score0.00183EPSS
Exploits0References1
OSV
OSV
added 2024/04/19 5:15 a.m.2 views

CVE-2024-29962

Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes files world-readable. This could allow a local user without the required privileges to access sensitive information or a Java binary...

5.5CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added 2024/04/19 4:15 a.m.25 views

CVE-2024-29962 Insecure file permission setting that makes files world-readable

Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes files world-readable. This could allow a local user without the required privileges to access sensitive information or a Java binary...

5.5CVSS5.5AI score0.00183EPSS
Exploits0References1
CVE
CVE
added 2024/04/19 4:15 a.m.68 views

CVE-2024-29962

CVE-2024-29962 involves Brocade SANnav OVA images. The connected documents confirm that SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes files world-readable. The impact is that a local user without the required privileges could access sensitive information...

5.5CVSS6.2AI score0.00183EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/19 12:0 a.m.12 views

Ray Dashboard Detection

Binary data raydashboarddetect.nbin...

7.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/04/19 12:0 a.m.8 views

FFmpeg Installed (Linux / Unix)

Binary data ffmpegnixinstalled.nbin...

7.3AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/18 10:13 p.m.12 views

CVE-2024-1491 Electrolink FM/DAB/TV Transmitter Missing Authentication for Critical Function

The devices allow access to an unprotected endpoint that allows MPFS file system binary image upload without authentication. The MPFS2 file system module provides a light-weight read-only file system that can be stored in external EEPROM, external serial flash, or internal flash program memory...

8.7CVSS7.5AI score0.00553EPSS
Exploits1References1
CVE
CVE
added 2024/04/18 10:13 p.m.85 views

CVE-2024-1491

CVE-2024-1491 affects Electrolink FM/DAB/TV Transmitters, where an unauthenticated unprotected endpoint permits MPFS2 file-system binary image uploads. The MPFS2 read-only storage can reside in external EEPROM/flash and backs the HTTP2 web server and other components; exploitation could overwrite...

8.7CVSS7.5AI score0.00553EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/04/18 1:56 a.m.5 views

shim: Out-of-bounds read in verify_buffer_authenticode() malformed PE file

An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service...

6.2CVSS6.5AI score0.00409EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/04/18 1:47 a.m.6 views

shim: Out-of-bounds read in verify_buffer_authenticode() malformed PE file

An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service...

6.2CVSS6.5AI score0.00409EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/04/18 12:0 a.m.1 views

Electrolink FM/DAB/TV Transmitter 访问控制错误漏洞

The Electrolink FM/DAB/TV Transmitter is a series of transmitters from Electrolink. The Electrolink FM/DAB/TV Transmitter suffers from an access control error vulnerability that originates from allowing an attacker to access an unprotected endpoint and upload a binary image via the MPFS file syst...

8.7CVSS6.7AI score0.00553EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/04/18 12:0 a.m.12 views

Mitel MiCollab Detection

Binary data mitelmicollabdetect.nbin...

7.3AI score
Exploits0References1
Rows per page
Query Builder