Lucene search
K

96 matches found

NVD
NVD
added 2022/04/27 5:15 p.m.18 views

CVE-2022-22278

A vulnerability in SonicOS CFS Content filtering service returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service DoS attack...

7.5CVSS0.00901EPSS
Exploits0References1
Prion
Prion
added 2022/04/27 5:15 p.m.16 views

Design/Logic Flaw

A vulnerability in SonicOS CFS Content filtering service returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service DoS attack...

5CVSS7.4AI score0.00901EPSS
Exploits0References1Affected Software49
CVE
CVE
added 2022/04/27 4:25 p.m.77 views

CVE-2022-22278

Summary: CVE-2022-22278 affects SonicOS CFS (Content Filtering Service) in SonicWall firewall appliances. The vulnerability arises from allocation of resources without limits or throttling , enabling an attacker to trigger an HTTP DoS by causing the CFS to return a large 403 Forbidden response fo...

7.5CVSS7.3AI score0.00901EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/04/27 4:25 p.m.20 views

CVE-2022-22278

A vulnerability in SonicOS CFS Content filtering service returns a large 403 forbidden HTTP response message to the source address when users try to access prohibited resource this allows an attacker to cause HTTP Denial of Service DoS attack...

7.6AI score0.00901EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/11/11 12:0 a.m.8 views

PT-2021-8180 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use-after-free error in the Linux kernel's sched/fair component. This error occurs when the unregister fair sched group function unlinks all cfs rqs from a...

8.4CVSS6.9AI score0.08555EPSS
Exploits2References1343
Oracle linux
Oracle linux
added 2020/09/11 12:0 a.m.119 views

Unbreakable Enterprise kernel security update

4.14.35-1902.306.2 - rename kABI whitelists to lockedlists Dan Duval Orabug: 31783150 - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices Dave Chiluk Orabug: 31350999 CVE-2019-19922 - sched/fair: Fix throttlelist starvation with low CFS quota Phil Auld...

9.8CVSS8.4AI score0.12651EPSS
Exploits13
Cent OS
Cent OS
added 2020/02/06 12:10 a.m.394 views

bpftool, kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2020:0375 An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

10CVSS7AI score0.16908EPSS
Exploits5References7
RedHat Linux
RedHat Linux
added 2020/02/04 7:31 p.m.136 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

10CVSS7AI score0.16908EPSS
Exploits5References7
RedhatCVE
RedhatCVE
added 2019/12/24 9:52 a.m.43 views

CVE-2018-20784

The CFS Linux kernel scheduler mishandles handling of leaf cfsrq's in the kernel/sched/fair.c code, which allows a local unprivileged attacker to cause a denial of service DoS by entering an infinite loop in updateblockedaverages function by inducing a high load on a system. Due to the nature of...

9.8CVSS3.3AI score0.04173EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/12/04 12:0 a.m.65 views

Ubuntu: Security Advisory (USN-4211-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.06652EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2019/12/03 2:52 a.m.146 views

USN-4211-2: Linux kernel (Xenial HWE) vulnerabilities

USN-4211-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 ESM. Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kerne...

9.8CVSS6.9AI score0.06652EPSS
Exploits0
OSV
OSV
added 2019/12/03 2:17 a.m.12 views

USN-4211-1 linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities

Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kernel process scheduler. A local attacker could possibly use this to cause a denial of service. CVE-2018-20784 Nicolas Waisman discovered that the WiFi driver stack in the Linux kernel did not properly validate SSID...

9.8CVSS6.7AI score0.06652EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2019/12/03 2:17 a.m.168 views

USN-4211-1: Linux kernel vulnerabilities

Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kernel process scheduler. A local attacker could possibly use this to cause a denial of service. CVE-2018-20784 Nicolas Waisman discovered that the WiFi driver stack in the Linux kernel did not properly validate SSID...

9.8CVSS6.9AI score0.06652EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/12/03 12:0 a.m.48 views

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4211-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4211-1 advisory. Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kernel process scheduler. A local attacker could possibly use this to...

9.8CVSS7AI score0.06652EPSS
Exploits0References4
Cloud Foundry
Cloud Foundry
added 2019/09/30 12:0 a.m.69 views

USN-4115-1: Linux kernel vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this ...

10CVSS8.6AI score0.05789EPSS
Exploits17
OpenVAS
OpenVAS
added 2019/09/12 12:0 a.m.53 views

Ubuntu: Security Advisory (USN-4115-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.05789EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2019/09/03 12:0 a.m.50 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel (AWS) vulnerabilities (USN-4118-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4118-1 advisory. It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could...

10CVSS8.1AI score0.52199EPSS
Exploits50References62
Tenable Nessus
Tenable Nessus
added 2019/09/03 12:0 a.m.48 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4115-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4115-1 advisory. Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received...

10CVSS8AI score0.05789EPSS
Exploits17References29
Ubuntu
Ubuntu
added 2019/09/02 8:38 p.m.283 views

USN-4115-1: Linux kernel vulnerabilities

Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2018-19985 Zhipeng Xie discovered that an...

10CVSS7.6AI score0.05789EPSS
Exploits17
OSV
OSV
added 2019/09/02 8:38 p.m.4 views

USN-4115-1 linux, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2 vulnerabilities

Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2018-19985 Zhipeng Xie discovered that an...

10CVSS7.2AI score0.05789EPSS
Exploits17References29
Rows per page
Query Builder