CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4213 matches found

CVE•added 2023/05/09 6:36 p.m.•65 views

CVE-2023-20520

CVE-2023-20520 affects the AMD Secure Processor (ASP) Bootloader. The issue is described as improper access control in the ASP Bootloader which may allow an attacker to corrupt the return address, causing a stack-based buffer overrun and potentially arbitrary code execution. Connected sources ide...

9.8CVSS9.6AI score0.00789EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/05/09 6:36 p.m.•13 views

CVE-2023-20520

Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing a stack-based buffer overrun potentially leading to arbitrary code execution...

9.7AI score0.00789EPSS

Exploits0References1

Cvelist•added 2023/05/09 6:36 p.m.•22 views

CVE-2023-20520

Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing a stack-based buffer overrun potentially leading to arbitrary code execution...

9.8AI score0.00789EPSS

Exploits0References1

OpenVAS•added 2023/05/08 12:0 a.m.•9 views

Huawei EulerOS: Security Advisory for tpm2-tss (EulerOS-SA-2023-1795)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.9AI score0.00519EPSS

Exploits1References2

OpenVAS•added 2023/05/08 12:0 a.m.•14 views

Huawei EulerOS: Security Advisory for tpm2-tss (EulerOS-SA-2023-1773)

6.4CVSS6.9AI score0.00519EPSS

Exploits1References2

Tenable Nessus•added 2023/05/07 12:0 a.m.•21 views

EulerOS 2.0 SP11 : tpm2-tss (EulerOS-SA-2023-1795)

According to the versions of the tpm2-tss package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - tpm2-tss is an open source software implementation of the Trusted Computing Group TCG Trusted Platform Module TPM 2 Software Stack TSS2. In...

6.4CVSS7.5AI score0.00519EPSS

Exploits1References2

CNNVD•added 2023/05/04 12:0 a.m.•3 views

SAMSUNG Blockchain Keystore 缓冲区错误漏洞

SAMSUNG Blockchain Keystore is Samsung's system tool for creating, storing, managing, and backing up private keys. A security vulnerability exists in SAMSUNG Blockchain Keystore versions prior to 1.3.12.1, which stems from an out-of-bounds write vulnerability when handling BCTUICMDUPDATESCREEN...

7.8CVSS7.3AI score0.0019EPSS

Exploits0References2

BDU FSTEC•added 2023/05/04 12:0 a.m.•6 views

Vulnerability of the mstolfp() function (libntp/mstolfp.c) in the ntpq monitoring program, which implements a time synchronization protocol. This vulnerability allows a perpetrator to execute arbitrary code.

The vulnerability of the mstolfp function libntp/mstolfp.c in the ntpq monitoring program, which implements the NTP time synchronization protocol, is related to writing beyond the buffer boundaries in memory when adding a decimal point. Exploiting this vulnerability could allow a remote attacker ...

5.6CVSS7.5AI score0.00645EPSS

Exploits0References9Affected Software6

Tenable Nessus•added 2023/05/03 12:0 a.m.•22 views

GLSA-202305-15 : systemd: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-15 systemd: Multiple Vulnerabilities - A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp...

5.5CVSS7.3AI score0.01561EPSS

Exploits2References5

OSV•added 2023/04/28 3:2 p.m.•7 views

SUSE-SU-2023:2074-1 Security update for zstd

This update for zstd fixes the following issues: - CVE-2022-4899: Fixed buffer overrun in util.c bsc1209533...

7.5CVSS7.6AI score0.01588EPSS

Exploits0References3

OpenVAS•added 2023/04/27 12:0 a.m.•22 views

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2023-1666)

5.5CVSS6.1AI score0.00422EPSS

Exploits1References2

Tenable Nessus•added 2023/04/27 12:0 a.m.•16 views

EulerOS Virtualization 2.9.1 : systemd (EulerOS-SA-2023-1632)

According to the versions of the systemd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An off-by-one Error issue was discovered in Systemd in formattimespan function of time-util.c. An attacker could supply specific...

5.5CVSS7.4AI score0.00422EPSS

Exploits1References2