Lucene search
K

322 matches found

Vulnrichment
Vulnrichment
added 2022/10/11 12:0 a.m.2 views

CVE-2022-38044 Windows CD-ROM File System Driver Remote Code Execution Vulnerability

...

7.8CVSS6.9AI score0.56269EPSS
Exploits0References1
OSV
OSV
added 2022/06/08 4:15 p.m.4 views

CVE-2022-28385

An issue was discovered in certain Verbatim drives through 2022-03-31. Due to missing integrity checks, an attacker can manipulate the content of the emulated CD-ROM drive containing the Windows and macOS client software. The content of this emulated CD-ROM drive is stored as an ISO-9660 image in...

4.6CVSS5.9AI score0.00316EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2022/06/08 4:15 p.m.3 views

CVE-2022-28385

An issue was discovered in certain Verbatim drives through 2022-03-31. Due to missing integrity checks, an attacker can manipulate the content of the emulated CD-ROM drive containing the Windows and macOS client software. The content of this emulated CD-ROM drive is stored as an ISO-9660 image in...

4.6CVSS6AI score0.00316EPSS
Exploits1References7
OSV
OSV
added 2022/04/04 3:49 p.m.8 views

SUSE-SU-2022:1108-1 Security update for util-linux

This update for util-linux fixes the following issues: - Improve throughput and reduce clock sequence increments for high load situation with time based version 1 uuids. bsc1194642 - Prevent root owning of /var/lib/libuuid/clock.txt. bsc1194642 - Warn if uuidd lock state is not usable. bsc1194642...

5.5CVSS6AI score0.00661EPSS
Exploits1References16
ATTACKERKB
ATTACKERKB
added 2022/03/09 5:15 p.m.16 views

CVE-2022-24455

Windows CD-ROM Driver Elevation of Privilege Vulnerability...

7.8CVSS7.1AI score0.00895EPSS
Exploits0References3Affected Software13
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2018:3083-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.14806EPSS
Exploits18References38
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.5 views

The vulnerability of the `cdrom_ioctl_select_disc` function in the Linux kernel’s `drivers/cdrom/cdrom.c` file, which allows an attacker to gain access to confidential data

The vulnerability of the cdromioctlselectdisc function in the Linux kernel’s drivers/cdrom/cdrom.c file is related to the disclosure of information. Exploiting this vulnerability could allow an attacker to gain access to confidential data...

5.5CVSS6.5AI score0.00501EPSS
Exploits0References41Affected Software3
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.44 views

F5 Networks BIG-IP : Linux kernel vulnerability (K40523020)

An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdromioctldrivestatus in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940...

6.1CVSS6.7AI score0.00552EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/06/08 12:0 a.m.27 views

Fedora: Security Advisory for libarchive (FEDORA-2020-d8278fe24d)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.7AI score
Exploits0References2
OpenVAS
OpenVAS
added 2020/05/29 12:0 a.m.19 views

Fedora: Security Advisory for libarchive (FEDORA-2020-94211d0a7d)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.7AI score
Exploits0References2
Fedora
Fedora
added 2020/05/26 3:15 a.m.35 views

[SECURITY] Fedora 32 Update: libarchive-3.4.3-1.fc32

Libarchive is a programming library that can create and read several differ ent streaming archive formats, including most popular tar variants, several cpio formats, and both BSD and GNU ar variants. It can also write shar archives and read ISO9660 CDROM images and ZIP archives...

8.8CVSS2.1AI score0.02251EPSS
Exploits0
Veracode
Veracode
added 2020/04/10 12:50 a.m.29 views

Denial Of Service (DoS)

The kernel is vulnerable to denial of service DoS. A flaw in the Linux kernel's packet writing driver could be triggered via the PKTCTRLCMDSTATUS IOCTL request, possibly allowing a local, unprivileged user with access to "/dev/pktcdvd/control" to cause an information leak. Note: By default, only...

6.6CVSS5.2AI score0.02416EPSS
Exploits7References28Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/04/02 12:0 a.m.55 views

EulerOS Virtualization for ARM 64 3.0.6.0 : qemu-kvm (EulerOS-SA-2020-1367)

According to the versions of the qemu-kvm packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - qemu-kvm is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu-kvm acts as a...

7.5CVSS6.7AI score0.03355EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2020/02/05 1:50 a.m.52 views

CVE-2018-10940

A flaw was found in the Linux kernel, before 4.16.6 where the cdromioctlmediachanged function in drivers/cdrom/cdrom.c allows local attackers to use a incorrect bounds check in the CDROM driver CDROMMEDIACHANGED ioctl to read out kernel memory...

5.5CVSS4.6AI score0.0054EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/01/23 4:4 p.m.39 views

CVE-2018-18710

An issue was discovered in the Linux kernel through 4.19. An information leak in cdromioctlselectdisc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking...

5.5CVSS2.8AI score0.00501EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1189)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.2AI score0.00552EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/12/31 9:28 p.m.26 views

CVE-2018-11506

The srdoioctl function in drivers/scsi/srioctl.c in the Linux kernel allows local users to cause a denial of service via a stack-based buffer overflow or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer...

7.8CVSS5.4AI score0.00385EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/12/10 12:6 p.m.6 views

kernel: Information leak in cdrom_ioctl_drive_status

An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used by local attackers to read kernel memory at certain location...

6.1CVSS6.8AI score0.00552EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/08/07 7:56 p.m.4 views

kernel: Information leak in cdrom_ioctl_drive_status

An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used by local attackers to read kernel memory at certain location...

6.1CVSS6.8AI score0.00552EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/08/06 12:47 p.m.4 views

kernel: Information leak in cdrom_ioctl_drive_status

An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used by local attackers to read kernel memory at certain location...

6.1CVSS6.8AI score0.00552EPSS
Exploits0References4
Rows per page
Query Builder