Lucene search
K

7653 matches found

NVD
NVD
added 2021/12/13 7:15 p.m.11 views

CVE-2021-39049

IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214439...

7.8CVSS0.00299EPSS
Exploits0References2
OSV
OSV
added 2021/12/13 7:15 p.m.0 views

CVE-2021-39048

IBM Spectrum Protect Client 7.1 and 8.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 214438...

5.5CVSS6.7AI score0.00277EPSS
Exploits0References3
Prion
Prion
added 2021/12/13 7:15 p.m.15 views

Stack overflow

IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214439...

4.6CVSS7.6AI score0.00299EPSS
Exploits0References2
Prion
Prion
added 2021/12/13 7:15 p.m.14 views

Stack overflow

IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214440...

4.6CVSS7.6AI score0.00299EPSS
Exploits0References2
Prion
Prion
added 2021/12/13 7:15 p.m.11 views

Stack overflow

IBM Spectrum Protect Client 7.1 and 8.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 214438...

2.1CVSS5.6AI score0.00277EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2021/12/13 6:35 p.m.21 views

CVE-2021-39050

IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214440...

5.3CVSS7.7AI score0.00299EPSS
Exploits0References2
CVE
CVE
added 2021/12/13 6:35 p.m.46 views

CVE-2021-39048

CVE-2021-39048 affects IBM Spectrum Protect Client 7.1 and 8.1, with a stack-based buffer overflow due to improper bounds checking. Local attackers could cause a denial of service. Public sources (e.g., Gentoo GLSA 202209-02) indicate fixes are available: upgrade to IBM Spectrum Protect Client 7....

6.2CVSS5.6AI score0.00277EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2021/12/13 12:0 a.m.2 views

PT-2021-22359 · Ibm · Ibm Spectrum Protect Client

Name of the Vulnerable Software and Affected Versions: IBM Spectrum Protect Client versions 7.1 through 8.1 Description: The issue is caused by improper bounds checking, leading to a stack-based buffer overflow. A local attacker could exploit this and cause a denial of service. Recommendations: F...

6.2CVSS6.1AI score0.00277EPSS
Exploits0References5
Apple
Apple
added 2021/12/13 12:0 a.m.45 views

About the security content of macOS Big Sur 11.6.2

About the security content of macOS Big Sur 11.6.2 This document describes the security content of macOS Big Sur 11.6.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

9.3CVSS9.3AI score0.18024EPSS
Exploits1References1Affected Software1
Apple
Apple
added 2021/12/13 12:0 a.m.71 views

About the security content of Security Update 2021-008 Catalina

About the security content of Security Update 2021-008 Catalina This document describes the security content of Security Update 2021-008 Catalina. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has...

9.3CVSS9.3AI score0.18024EPSS
Exploits1References1Affected Software1
CISA KEV Catalog
CISA KEV Catalog
added 2021/12/10 12:0 a.m.27 views

Fortinet FortiOS Arbitrary File Download

Fortinet FortiOS "execute restore src-vis" downloads code without integrity checking, allowing an attacker to arbitrarily download files...

7.8CVSS3.9AI score0.00873EPSS
In wildExploits2
CNNVD
CNNVD
added 2021/12/08 12:0 a.m.4 views

Bentley Systems Bentley View 缓冲区错误漏洞

Bentley View is a free viewer from Bentley Systems, Inc. Bentley View is vulnerable to a buffer overflow vulnerability caused by incorrect boundary checking when parsing JT files. An attacker could exploit the vulnerability to cause a buffer overflow and execute arbitrary code on the system...

7.8CVSS6.6AI score0.01937EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/12/08 12:0 a.m.3 views

Samsung Ldfw 缓冲区错误漏洞

Samsung Ldfw is a loadable firmware from Samsung South Korea. A security vulnerability exists in Samsung LDFW and BL31 that stems from incorrect boundary checking of the LDFW and BL31 security logs, allowing an attacker to arbitrarily write to memory and execute code...

6.7CVSS6.7AI score0.00111EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/12/03 12:0 a.m.44 views

SUSE SLES12 Security Update : nodejs14 (SUSE-SU-2021:3886-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3886-1 advisory. nodejs14 was updated to 14.18.1: deps: update llhttp to 2.1.4 Security fixes: - HTTP Request Smuggling due to spaced in headers bsc1191601,...

8.6CVSS6.8AI score0.03286EPSS
Exploits2References22
CNVD
CNVD
added 2021/12/01 12:0 a.m.6 views

Bluez buffer overflow vulnerability (CNVD-2021-95605)

BlueZ is a Bluetooth protocol stack written in C. It is primarily used to provide support for the core Bluetooth layers and protocols. A security vulnerability exists in Bluetoothd in BlueZ version 5.48 and earlier, which stems from a program receiving data without any size checking, and which ca...

8.8CVSS6.8AI score0.0143EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2021/12/01 12:0 a.m.4 views

The vulnerability of the TightVNC Viewer (tvnviewer.exe) component of the TightVNC remote desktop access system allows a hacker to execute arbitrary code.

The vulnerability of the TightVNC Viewer tvnviewer.exe component of the TightVNC remote desktop access system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS8.2AI score0.02267EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.6 views

The vulnerability of the command-line interface (CLI) of Cisco Firepower Threat Defense (FTD) microprogramming system allows a attacker to execute arbitrary commands.

The vulnerability of the command-line interface CLI of Cisco Firepower Threat Defense FTD microprogramming systems lies in insufficient checking of command arguments. Exploiting this vulnerability allows an attacker to execute arbitrary commands...

7.8CVSS7.5AI score0.00262EPSS
Exploits0References3Affected Software1
Fedora
Fedora
added 2021/11/24 1:10 a.m.28 views

[SECURITY] Fedora 34 Update: roundcubemail-1.4.12-1.fc34

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

9.8CVSS8AI score0.42908EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2021/11/19 12:0 a.m.4 views

The vulnerability of the vDaemon software from Cisco IOS XE SD-WAN allows a attacker to trigger buffer overflows.

The vulnerability of the vDaemon software in Cisco IOS XE SD-WAN lies in insufficient boundary checking during traffic processing. Exploiting this vulnerability can allow a remote attacker to trigger buffer overflows...

10CVSS8.2AI score0.02546EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/11/18 12:0 a.m.3 views

MediaTek Apusys 缓冲区错误漏洞

MediaTek Apusys is a chipset from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Apusys that stems from a read out-of-bounds condition that may occur in apusys due to incorrect boundary checking. This could result in the disclosure of local information that...

4.4CVSS5.3AI score0.00116EPSS
Exploits0References2
Rows per page
Query Builder