Lucene search
K

56 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 8 : microcode_ctl-20190618-1.20191115.3.el8 (AXEA:2020-144:03)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXEA:2020-144:03 advisory. - Insufficient access control in protected memory subsystem for IntelR SGX for 6th, 7th, 8th, 9th Generation IntelR CoreTM Processor Families; IntelR...

6.5CVSS7.4AI score0.03133EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 7 : microcode_ctl-2.1-53.3.el7 (AXEA:2019-4383:06)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXEA:2019-4383:06 advisory. - Insufficient access control in protected memory subsystem for IntelR SGX for 6th, 7th, 8th, 9th Generation IntelR CoreTM Processor Families; Intel...

6.5CVSS7.4AI score0.03133EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003725)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003725 advisory. TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side...

6.5CVSS7.4AI score0.03133EPSS
Exploits0References33
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003131)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003131 advisory. Microarchitectural Store Buffer Data Sampling MSBDS: Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to...

5.6CVSS6.9AI score0.01497EPSS
Exploits0References28
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-1963

Malware in sbrugna...

5.5CVSS5.6AI score0.00159EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-1594

Malware in sbrugna...

5.5CVSS6.4AI score0.00145EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:9 a.m.6 views

CVE-2023-21345

In Game Manager Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

3.3CVSS5.4AI score0.00082EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:9 a.m.7 views

CVE-2023-21319

In UsageStatsService, there is a possible way to read installed 3rd party apps due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.5AI score0.00086EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:9 a.m.5 views

CVE-2023-21296

In Permission, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

5.5CVSS6.5AI score0.00096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:9 a.m.4 views

CVE-2023-21303

In Content, here is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.5AI score0.00091EPSS
Exploits0References1
NVD
NVD
added 2024/11/09 6:15 p.m.17 views

CVE-2024-52032

Mattermost versions 10.0.x = 10.0.0 and 9.11.x = 9.11.2 fail to properly query ElasticSearch when searching for the channel name in channel switcher which allows an attacker to get private channels names of channels that they are not a member of, when Elasticsearch v8 was enabled...

4.3CVSS0.00288EPSS
Exploits0References1
CVE
CVE
added 2024/11/09 5:19 p.m.61 views

CVE-2024-52032

Mattermost CVE-2024-52032 affects Mattermost Server versions 10.0.x (up to 10.0.0) and 9.11.x (up to 9.11.2). The root cause is a failure to properly query Elasticsearch when performing channel-name lookups in the channel switcher while Elasticsearch v8 is enabled. This can allow an attacker to o...

4.3CVSS4.5AI score0.00288EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/04 11:15 p.m.17 views

Design/Logic Flaw

In BTMBleVerifySignature of btmble.cc, there is a possible way to bypass signature validation due to side channel information disclosure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4CVSS7.3AI score0.00542EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/12/04 12:0 a.m.6 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to the disclosure of side-channel information in the BTMble.cc script BTMBleVerifySignature, which can be exploited by an attacker to gain elevated...

6.5CVSS6.9AI score0.00542EPSS
Exploits0References3
OSV
OSV
added 2023/10/30 5:15 p.m.3 views

CVE-2023-21354

In Package Manager Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.9AI score0.00085EPSS
Exploits0References1
NVD
NVD
added 2023/10/30 5:15 p.m.36 views

CVE-2023-21327

In Permission Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5AI score0.00086EPSS
Exploits0References1
OSV
OSV
added 2023/10/30 5:15 p.m.5 views

CVE-2023-21335

In Settings, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00101EPSS
Exploits0References1
OSV
OSV
added 2023/10/30 5:15 p.m.4 views

CVE-2023-21326

In Package Manager Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.9AI score
Exploits0References1
OSV
OSV
added 2023/10/30 5:15 p.m.4 views

CVE-2023-21324

In Package Installer, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS5.9AI score0.00093EPSS
Exploits0References1
NVD
NVD
added 2023/10/30 5:15 p.m.29 views

CVE-2023-21299

In Package Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5AI score0.00091EPSS
Exploits0References1
Rows per page
Query Builder