Lucene search
K

7652 matches found

Cvelist
Cvelist
added 2021/10/19 1:11 p.m.23 views

CVE-2021-30845

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6. A local user may be able to read kernel memory...

5.9AI score0.00249EPSS
Exploits0References1
Code423n4
Code423n4
added 2021/10/18 12:0 a.m.24 views

Incorrect checking of signature length

Handle JMukesh Vulnerability details Impact signature which have SignatureMode.EthSign/SignatureMode.EIP712 have length 65 , so all signature coming through both mode will be reverted Proof of Concept Tools Used manual review Recommended Mitigation Steps update the correct signature length --- Th...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.7 views

The vulnerability in the VMI web interface of vCenter Server Appliance, a management tool for VMware vCenter Server virtual infrastructure, allows an attacker to gain unauthorized access to protected information.

The vulnerability in the VCenter Server Management Interface of the VMware vCenter Server web interface relates to deficiencies in path name checking for access to restricted directories. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information by...

7.5CVSS7.6AI score0.01602EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.4 views

The vulnerability of the Adobe Genuine Service application checking service, related to errors in processing symbolic links, allows a perpetrator to re-record arbitrary files and increase their privileges.

The vulnerability of the Adobe Genuine Service application checking service is related to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to rewrite arbitrary files and increase their privileges...

7.8CVSS7.6AI score0.01637EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2021/10/11 11:15 a.m.14 views

CVE-2021-40884

Projectsend version r1295 is affected by sensitive information disclosure. Because of not checking authorization in ids parameter in files-edit.php and id parameter in process.php function, a user with uploader role can download and edit all files of users in application...

8.1CVSS0.00923EPSS
Exploits1References1
CNVD
CNVD
added 2021/10/09 12:0 a.m.17 views

IBM Sterling File Gateway Denial of Service Vulnerability

IBM Sterling File Gateway is an application for transferring files between internal and external partners, allowing you to more securely and reliably transfer files with trading partners. IBM Sterling File Gateway versions 2.2.0.0-5.2.6.53, 6.0.0.0- 6.0.0.6, 6.0 .1.0-6.0.3.4, and 6.1.0.0-6.1.0.1...

4CVSS5.2AI score0.01207EPSS
Exploits0Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/10/08 12:0 a.m.5 views

The vulnerability of the Apache HTTP Server’s web server, related to path checking failures, allows attackers to execute arbitrary code.

The vulnerability of the Apache HTTP Server is related to deficiencies in path checking for directories. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted HTTP request...

10CVSS8.3AI score0.99964EPSS
Exploits62References17Affected Software8
NVD
NVD
added 2021/10/07 6:15 p.m.13 views

CVE-2021-20372

IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518...

4.3CVSS0.01207EPSS
Exploits0References2
Prion
Prion
added 2021/10/07 6:15 p.m.15 views

Design/Logic Flaw

IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518...

4CVSS4.4AI score0.01207EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/10/07 6:5 p.m.19 views

CVE-2021-20372

IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518...

4.3CVSS4.6AI score0.01207EPSS
Exploits0References2
NVD
NVD
added 2021/10/06 6:15 p.m.18 views

CVE-2021-25493

Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read...

7.1CVSS0.00226EPSS
Exploits0References1
NVD
NVD
added 2021/10/06 6:15 p.m.13 views

CVE-2021-25488

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

5.5CVSS0.00105EPSS
Exploits0References1
NVD
NVD
added 2021/10/06 6:15 p.m.21 views

CVE-2021-25492

Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read...

7.3CVSS0.0022EPSS
Exploits0References1
Prion
Prion
added 2021/10/06 6:15 p.m.18 views

Design/Logic Flaw

Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read...

3.6CVSS6.9AI score0.0022EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/10/06 6:15 p.m.12 views

Design/Logic Flaw

Lack of boundary checking of a buffer in livfivextractor library prior to SMR Oct-2021 Release 1 allows OOB read...

5CVSS6.5AI score0.00232EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/10/06 6:15 p.m.20 views

Design/Logic Flaw

Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read...

3.6CVSS6.8AI score0.00226EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/10/06 5:11 p.m.22 views

CVE-2021-25493

Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read...

4CVSS7.1AI score0.00226EPSS
Exploits0References1
CVE
CVE
added 2021/10/06 5:10 p.m.48 views

CVE-2021-25488

The CVE-2021-25488 issue affects Samsung devices via the modem interface driver’s recv_data() function. The root cause is a missing boundary check in the buffer handling, before the SMR Oct-2021 Release 1 patch, which permits an out-of-bounds (OOB) read. The vulnerability is documented across mul...

5.5CVSS5.6AI score0.00105EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/10/06 5:10 p.m.20 views

CVE-2021-25487

Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer...

7.3CVSS8.1AI score0.0062EPSS
Exploits0References1
CVE
CVE
added 2021/10/06 5:10 p.m.438 views

CVE-2021-25487

CVE-2021-25487 : Samsung Mobile Devices exhibit an out-of-bounds/read boundary issue in the modem interface driver’s set_skb_priv() prior to SMR Oct-2021 Release 1. This OOB read can lead to arbitrary code execution by dereferencing an invalid function pointer. Connected sources consistently desc...

7.8CVSS8AI score0.0062EPSS
In wildExploits0References2Affected Software1
Rows per page
Query Builder