Lucene search
K

31254 matches found

RedhatCVE
RedhatCVE
added 2024/01/25 5:18 p.m.41 views

CVE-2023-40548

A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being used by Shim. This value is further used for memory allocation operations, leading to a heap-based buffer overflow. This fl...

7.4CVSS7.9AI score0.00432EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/01/25 3:36 p.m.86 views

Moderate: Red Hat Security Advisory: libssh security update

An update for libssh is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

5.9CVSS7AI score0.93305EPSS
Exploits4References2
RedHat Linux
RedHat Linux
added 2024/01/25 8:14 a.m.5 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.6AI score0.93305EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2024/01/25 8:5 a.m.2 views

NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image

A buffer overflow flaw was found in NTFS-3G. This issue occurs via a crafted metadata in an NTFS image that can cause code execution. A local attacker can exploit this issue if the NTFS-3G binary is setuid root. A physically proximate attacker can exploit this issue if the NTFS-3G software is...

7.8CVSS7.6AI score0.00347EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/01/25 8:3 a.m.2 views

python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int"text", a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits float, decimal, int.frombytes, and int for binary bases 2, 4, 8, 16, and 32 are no...

7.5CVSS6.7AI score0.03213EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.17 views

MinIO Console Detection

Binary data minioconsoledetect.nbin...

7.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.10 views

Integrated Dell Remote Access Controller (iDRAC) Service Module Installed (Windows)

Binary data dellidracservicemodulewininstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.18 views

Apple iOS < 16.7.5 Multiple Vulnerabilities (HT214063)

Binary data appleios1675check.nbin...

8.8CVSS7.3AI score0.10593EPSS
Exploits6References10
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.68 views

MinIO Information Disclosure (CVE-2023-28432)

Binary data minioCVE-2023-28432.nbin...

7.5CVSS7.9AI score0.83957EPSS
Exploits13References3
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.25 views

Debian dla-3719 : php-seclib - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3719 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3719-1 [email protected] https://www.debian.org/lts/security/...

5.9CVSS7.2AI score0.93305EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.28 views

Debian dla-3718 : php-phpseclib - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3718 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3718-1 [email protected] https://www.debian.org/lts/security/...

5.9CVSS7.2AI score0.93305EPSS
Exploits4References4
OSV
OSV
added 2024/01/24 4:15 p.m.2 views

CVE-2024-22651

There is a command injection vulnerability in the ssdpcgimain function of cgibin binary in D-Link DIR-815 router firmware v1.04...

9.8CVSS5.8AI score0.20188EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/01/24 12:0 a.m.20 views

CVE-2024-22651

There is a command injection vulnerability in the ssdpcgimain function of cgibin binary in D-Link DIR-815 router firmware v1.04...

9.9AI score0.20188EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/01/24 12:0 a.m.5 views

D-Link DIR-815 Security Vulnerability

The D-Link DIR-815 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-815 v1.04, which originates from a command injection vulnerability in the ssdpcgimain function of the cgibin binary...

9.8CVSS7.6AI score0.20188EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.13 views

Apple iOS < 15.7.1 Multiple Vulnerabilities (HT213490)

Binary data appleios1571check.nbin...

9.8CVSS7.3AI score0.1593EPSS
Exploits2References19
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.27 views

RHCOS 4 : OpenShift Container Platform 4.10.60 (RHSA-2023:3216)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:3216 advisory. - cri-o: incorrect handling of the supplementary groups CVE-2022-2995 Note that Nessus has not tested for this issue but has instead relied...

7.1CVSS6.6AI score0.0037EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/01/24 12:0 a.m.6 views

The vulnerability of the Python library for interacting with git repositories, GitPython, is related to the use of an insecure search path, allowing attackers to execute arbitrary code with elevated privileges.

The vulnerability of the Python library for interacting with git repositories, GitPython, is related to the use of an unreliable search path. Exploiting this vulnerability allows a attacker to execute arbitrary code with elevated privileges using a specially created binary file...

7.8CVSS7.6AI score0.00316EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.14 views

Apple iOS < 17.3 Multiple Vulnerabilities (HT214059)

Binary data appleios173check.nbin...

8.8CVSS7.3AI score0.10593EPSS
Exploits6References21
UbuntuCve
UbuntuCve
added 2024/01/23 12:0 a.m.38 views

CVE-2023-40551

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

5.1CVSS6.9AI score0.00394EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/23 12:0 a.m.12 views

Apple iOS < 15.8.1 Multiple Vulnerabilities (HT214062)

Binary data appleios1581check.nbin...

8.8CVSS7.3AI score0.17963EPSS
Exploits0References3
Rows per page
Query Builder