Lucene search
K

7652 matches found

OSV
OSV
added 2021/11/16 7:15 p.m.5 views

CVE-2021-26336

Insufficient bounds checking in System Management Unit SMU may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components...

5.5CVSS5.8AI score0.00212EPSS
Exploits0References1
Prion
Prion
added 2021/11/16 7:15 p.m.15 views

Input validation

Improper input and range checking in the AMD Secure Processor ASP boot loader image header may allow an attacker to use attacker-controlled values prior to signature validation potentially resulting in arbitrary code execution...

7.2CVSS8AI score0.00286EPSS
Exploits0References1Affected Software58
Cvelist
Cvelist
added 2021/11/16 6:8 p.m.27 views

CVE-2021-26335

Improper input and range checking in the AMD Secure Processor ASP boot loader image header may allow an attacker to use attacker-controlled values prior to signature validation potentially resulting in arbitrary code execution...

8AI score0.00286EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/11/16 6:4 p.m.16 views

CVE-2021-26336

Insufficient bounds checking in System Management Unit SMU may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components...

5.7AI score0.00212EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2021/11/16 3:38 p.m.50 views

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM InfoSphere Information Server

Summary Multiple vulnerabilities in OpenSSL used by IBM InfoSphere Information Server were addressed. Vulnerability Details CVEID: CVE-2021-3712 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an out-of-bounds read when processing ASN.1 strings. By...

9.8CVSS9.1AI score0.87816EPSS
Exploits1Affected Software1
Positive Technologies
Positive Technologies
added 2021/11/16 12:0 a.m.5 views

PT-2021-17013 · Unknown · Amd System Management Unit

Name of the Vulnerable Software and Affected Versions: System Management Unit SMU affected versions not specified Description: The issue is related to insufficient bounds checking in the System Management Unit SMU, which may cause invalid memory accesses or updates. This could result in the SMU...

5.5CVSS5.2AI score0.00212EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.258 views

dnf security and bug fix update

dnf 4.7.0-4.0.1 -Fixed python stack trace with updateinfo list cves command Orabug: 32749660 - Replaced upstream bugzilla reporting reference. Orabug: 32829849 4.7.0-4 - Update translations RhBug:1961632 4.7.0-3 - Improve signature checking using rpmkeys RhBug:1967454 4.7.0-2 - Fix covscan issue:...

7.5CVSS8.8AI score0.01117EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/11/12 12:0 a.m.8 views

The vulnerability of the command-line interface (CLI) of Cisco IOS XE SD-WAN software allows a attacker to execute arbitrary commands.

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands...

6.8CVSS6.9AI score0.00346EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/11/11 12:0 a.m.4 views

The vulnerability of the Adobe Genuine Service’s application checking mechanism lies in its insecure method of searching for DLL libraries. This allows attackers to exploit their privileges.

The vulnerability of the Adobe Genuine Service application checking mechanism is related to a insecure procedure for locating DLL libraries. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.8CVSS6.8AI score0.00683EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.17 views

Mozilla Firefox Security Advisory (MFSA2013-78) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

9.3CVSS6.5AI score0.04357EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/11/10 3:33 a.m.39 views

CVE-2020-25722

Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise...

8.8CVSS8.2AI score0.01581EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/11/10 12:0 a.m.69 views

Debian DSA-5003-1 : samba - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5003 advisory. - Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total doma...

9CVSS6.8AI score0.01984EPSS
Exploits0References19
CNVD
CNVD
added 2021/11/10 12:0 a.m.21 views

JetBrains TeamCity Permission Check Insufficient Vulnerability

TeamCity, a Java-based build management and continuous integration server from JetBrains, is vulnerable to insufficient privilege checking in the "Create Patch" feature in versions prior to JetBrains TeamCity 2021.1.2. No details of the vulnerability are currently available...

5.3CVSS3.8AI score0.00649EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/11/09 12:0 a.m.31 views

CVE-2020-25722

Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise...

8.8CVSS6.9AI score0.01581EPSS
Exploits0References5
OSV
OSV
added 2021/11/09 12:0 a.m.2 views

UBUNTU-CVE-2020-25722

Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to cause total domain compromise...

8.8CVSS6.9AI score0.01581EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/11/08 12:0 a.m.6 views

Jetbrains JetBrains TeamCity 安全漏洞

TeamCity, a Java-based build management and continuous integration server from JetBrains, is vulnerable to insufficient privilege checking in the "Create Patch" feature in versions prior to JetBrains TeamCity 2021.1.2. No details of the vulnerability are currently available...

5.3CVSS5.6AI score0.00649EPSS
Exploits0References3
CNVD
CNVD
added 2021/11/04 12:0 a.m.16 views

WordPress Stylish Price List plugin access control error vulnerability

WordPress is the WordPress Foundation's set of blogging platforms developed using the PHP language. The WordPress Stylish Price List plugin is vulnerable to an access control error in versions prior to 6.9.0, which stems from the plugin's lack of user identity checking in its spluploadserimg AJAX...

5.3CVSS1.6AI score0.0102EPSS
Exploits2References1
OSV
OSV
added 2021/11/03 4:15 p.m.23 views

CVE-2021-43082

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in the stats-over-http plugin of Apache Traffic Server allows an attacker to overwrite memory. This issue affects Apache Traffic Server 9.1.0...

9.8CVSS6.6AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.4 views

The vulnerability of the command-line interface (CLI) of Cisco Firepower Threat Defense software allows a attacker to execute arbitrary commands with root privileges.

The vulnerability of the command-line interface CLI of Cisco Firepower Threat Defense software-related microprogramming systems lies in insufficient checking of arguments passed in commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges...

6.8CVSS7.9AI score0.00262EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2021/11/02 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2020:2879-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00492EPSS
Exploits0References2
Rows per page
Query Builder