Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/12/10 8:34 a.m.5 views

CVE-2025-2296

A flaw was found in EDK2 EFI Development Kit 2. This vulnerability allows an attacker to cause arbitrary command execution and impact Confidentiality, Integrity, and Availability via improper input validation by local access. Mitigation To reduce the risk by disabling direct-boot mode, ensuring a...

8.4CVSS6.7AI score0.00704EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/01/28 12:0 a.m.30 views

EulerOS 2.0 SP9 : grub2 (EulerOS-SA-2022-1008)

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where...

6.4CVSS6.8AI score0.01434EPSS
Exploits0References2
OSV
OSV
added 2020/07/29 6:15 p.m.2 views

ALPINE-CVE-2020-15705

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim...

6.4CVSS6.9AI score0.01434EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/04 4:10 a.m.21 views

Security Bulletin: IBM Tivoli Netcool Impact is affected by an Apache Derby vulnerability (CVE-2018-1313)

Summary IBM Tivoli Netcool Impact has addressed the following Apache Derby vulnerability. Vulnerability Details CVEID: CVE-2018-1313 DESCRIPTION: Apache Derby could allow a remote attacker to bypass security restrictions, caused by improper validation of network packets received. By sending a...

5.3CVSS1.2AI score0.04504EPSS
Exploits0Affected Software1
OSV
OSV
added 2018/05/07 1:29 p.m.1 views

UBUNTU-CVE-2018-1313

In Apache Derby 10.3.1.4 to 10.14.1.0, a specially-crafted network packet can be used to request the Derby Network Server to boot a database whose location and contents are under the user's control. If the Derby Network Server is not running with a Java Security Manager policy file, the attack is...

5.3CVSS7.1AI score0.04504EPSS
Exploits0References4
Rows per page
Query Builder