Lucene search
+L

96 matches found

RedHat Linux
RedHat Linux
added 2019/07/30 11:2 a.m.6 views

kernel: infinite loop in update_blocked_averages() in kernel/sched/fair.c leading to denial of service

The CFS Linux kernel scheduler mishandles handling of leaf cfsrq's in the kernel/sched/fair.c code, which allows a local unprivileged attacker to cause a denial of service DoS by entering an infinite loop in updateblockedaverages function by inducing a high load on a system. Due to the nature of...

9.8CVSS6.7AI score0.04173EPSS
Exploits0References4
CNVD
CNVD
added 2018/01/09 12:0 a.m.3 views

Dell SonicWall SonicOS NSA Cross-Site Scripting Vulnerability (CNVD-2018-03085)

The Dell SonicWall Network Security Appliance NSA 2017 Q4 devices is a firewall appliance from Dell USA.SonicWall SonicOS is a system that runs on it.CFS Custom Category and Cloud AV DB Exclusion Settings are among the modules. A cross-site scripting vulnerability exists in the CFS Custom Categor...

5.4CVSS6.3AI score0.02529EPSS
Exploits3References1
Prion
Prion
added 2018/01/08 9:29 a.m.9 views

Information disclosure

SonicWall SonicOS on Network Security Appliance NSA 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens...

3.5CVSS5.2AI score0.02529EPSS
Exploits3References3
SonicWall
SonicWall
added 2018/01/08 9:29 a.m.16 views

Dell SonicWall SonicOS NSA CVE-2018-5281 Multiple HTML Injection Vulnerabilities

SonicWall SonicOS on Network Security Appliance NSA 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens. CVE: CVE-2018-5281 Last updated: Jan. 30, 2018, 4:12 p.m...

5.4CVSS5.9AI score0.02529EPSS
Exploits3
Cvelist
Cvelist
added 2018/01/08 9:0 a.m.24 views

CVE-2018-5281

SonicWall SonicOS on Network Security Appliance NSA 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens...

5.4AI score0.02529EPSS
Exploits3References3
CVE
CVE
added 2018/01/08 9:0 a.m.62 views

CVE-2018-5281

SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices is affected by a cross-site scripting (XSS) vulnerability via the CFS Custom Category and Cloud AV DB Exclusion Settings screens. The available connected data confirms the affected product and the vulnerability class, but does ...

5.4CVSS5.3AI score0.02529EPSS
Exploits3References3Affected Software1
Packet Storm
Packet Storm
added 2018/01/05 12:0 a.m.48 views

SonicWall SonicOS NSA Filter Bypass

Document Title: =============== SonicWall SonicOS NSA - Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1729 Release Date: ============= 2018-01-04 Vulnerability Laboratory ID VL-ID: ====================================...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2014/08/27 2:1 p.m.50 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

7.1CVSS6.6AI score0.04354EPSS
Exploits12References6
OpenVAS
OpenVAS
added 2011/09/21 12:0 a.m.16 views

FreeBSD Ports: cfs

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS6.6AI score0.04127EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/09/21 12:0 a.m.24 views

FreeBSD Ports: cfs

The remote host is missing an update to the system as announced in the referenced advisory. VID e55f948f-d729-11e0-abd1-0017f22d6707 OpenVAS Vulnerability Test $ Description: Auto generated from VID e55f948f-d729-11e0-abd1-0017f22d6707 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

7.5CVSS0.2AI score0.04127EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/09/06 12:0 a.m.13 views

FreeBSD : security/cfs -- buffer overflow (e55f948f-d729-11e0-abd1-0017f22d6707)

Debian reports : Zorgon found several buffer overflows in cfsd, a daemon that pushes encryption services into the Unixtm file system. We are not yet sure if these overflows can successfully be exploited to gain root access to the machine running the CFS daemon. However, since cfsd can easily be...

7.5CVSS5.6AI score0.04127EPSS
Exploits0References2
securityvulns
securityvulns
added 2009/05/27 12:0 a.m.59 views

SEC Consult SA-20090525-4 :: SonicOS Format String Vulnerability

SEC Consult Security Advisory 20090525-4 ========================================================================== title: SonicOS Format String Vulnerability program: SonicWALL Global VPN Client vulnerable version: PRO 4100 SonicOS 4.0.0.2-51e Standard and Enhanced possibly other versions...

Exploits0
Prion
Prion
added 2008/11/04 9:0 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in SonicWALL SonicOS Enhanced before 4.0.1.1, as used in SonicWALL Pro 2040 and TZ 180 and 190, allows remote attackers to inject arbitrary web script or HTML into arbitrary web sites via a URL to a site that is blocked based on content filtering, which is n...

4.3CVSS6AI score0.06425EPSS
Exploits0References15Affected Software1
Cvelist
Cvelist
added 2008/11/04 8:0 p.m.23 views

CVE-2008-4918

Cross-site scripting XSS vulnerability in SonicWALL SonicOS Enhanced before 4.0.1.1, as used in SonicWALL Pro 2040 and TZ 180 and 190, allows remote attackers to inject arbitrary web script or HTML into arbitrary web sites via a URL to a site that is blocked based on content filtering, which is n...

5.6AI score0.06425EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.14 views

Debian Security Advisory DSA 116-1 (cfs)

The remote host is missing an update to cfs announced via advisory DSA 116-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.04127EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.20 views

Debian Security Advisory DSA 1138-1 (cfs)

The remote host is missing an update to cfs announced via advisory DSA 1138-1. Carlo Contavalli discovered an integer overflow in CFS, a cryptographic filesystem, which allows local users to crash the encryption daemon. OpenVAS Vulnerability Test $Id: deb11381.nasl 6616 2017-07-07 12:10:49Z...

2.1CVSS6.6AI score0.00365EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.12 views

Debian: Security Advisory (DSA-1138-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS7.2AI score0.00365EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.30 views

Fedora 7 : kernel-2.6.22.4-65.fc7 (2007-1785)

Update to kernel 2.6.22.2, 2.6.22.3 and 2.6.22.4: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.2 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.3 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.4 - Fix failure to find serial ports on some machines. -...

1.9CVSS5.7AI score0.00363EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.25 views

Fedora 7 : kernel-2.6.22.1-27.fc7 (2007-1130)

Rebase kernel to 2.6.22.1: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.1 Includes the CFS scheduler from upstream kernel 2.6.23. Users should update to the latest autofs package with this kernel or autofs will use...

7.8CVSS5.5AI score0.03872EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.39 views

Fedora 7 : kernel-2.6.22.7-85.fc7 (2007-2298)

Update to official Linux 2.6.22.6 from 2.6.22.6-rc1: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6 Update to Linux 2.6.22.7: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7 - libata: add option to disable DMA on PATA devices libata.patadma, see kernel-parameters.tx...

7.2CVSS5.4AI score0.0082EPSS
Exploits0References4
Rows per page
Query Builder