Lucene search
K

7653 matches found

CVE
CVE
added 2021/10/06 5:10 p.m.438 views

CVE-2021-25487

CVE-2021-25487 : Samsung Mobile Devices exhibit an out-of-bounds/read boundary issue in the modem interface driver’s set_skb_priv() prior to SMR Oct-2021 Release 1. This OOB read can lead to arbitrary code execution by dereferencing an invalid function pointer. Connected sources consistently desc...

7.8CVSS8AI score0.0062EPSS
In wildExploits0References2Affected Software1
CVE
CVE
added 2021/10/06 5:9 p.m.37 views

CVE-2021-25483

Summary of CVE-2021-25483 (livfivextractor) : The vulnerability affects the livfivextractor library prior to Samsung SMR Oct-2021 Release 1, due to a lack of boundary checking in a buffer which allows an out-of-bounds read. Reported across multiple feeds (NVD, Red Hat advisory, CVE lists, and CNN...

6.5CVSS6.5AI score0.00232EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/10/06 5:9 p.m.17 views

CVE-2021-25483

Lack of boundary checking of a buffer in livfivextractor library prior to SMR Oct-2021 Release 1 allows OOB read...

4CVSS6.8AI score0.00232EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/10/06 12:0 a.m.5 views

IBM Sterling File Gateway 授权问题漏洞

IBM Sterling File Gateway is an application for transferring files between internal and external partners, allowing you to more securely and reliably transfer files with trading partners. IBM Sterling File Gateway versions 2.2.0.0-5.2.6.53, 6.0.0.0- 6.0.0.6, 6.0 .1.0-6.0.3.4, and 6.1.0.0-6.1.0.1...

4.3CVSS5.2AI score0.01207EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2021/10/06 12:0 a.m.23 views

CVE-2021-25487

Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed...

7.8CVSS7.7AI score0.0062EPSS
In wildExploits0References2
CNNVD
CNNVD
added 2021/10/06 12:0 a.m.6 views

Silverstripe SilverStripe 访问控制错误漏洞

Silverstripe SilverStripe is New Zealand SilverStripe Silverstripe company's set of open source programming framework and content management system CMS. The system has support for multiple languages , cross-platform and other features . An access control error vulnerability exists in SilverStripe...

4.3CVSS5AI score0.00786EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2021/10/05 12:0 a.m.5 views

The vulnerability of software for performing virtualization at the operating system level, also known as containerization, Singularity, arises from insufficient checking of unusual or exceptional states. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of software for performing virtualization at the operating system level, also known as containerization, is related to improper checking of the return value of functions. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise it...

9.8CVSS7.7AI score0.01258EPSS
Exploits0References4Affected Software2
CNNVD
CNNVD
added 2021/10/04 12:0 a.m.3 views

Qualcomm 多款产品缓冲区错误漏洞

The Qualcomm QCA6574AU and SDX55 are both products of Qualcomm Incorporated Qualcomm, U.S.A. The QCA6574AU is a central processing unit CPU product.The SDX55 is a modem. A security vulnerability exists in multiple Qualcomm products that could result in out-of-bounds memory accesses due to imprope...

8.4CVSS7.3AI score0.00154EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/10/04 12:0 a.m.5 views

多款Qualcomm产品缓冲区错误漏洞

Qualcomm MSM8996AU and others are products of Qualcomm Incorporated, U.S.A. The MSM8996AU is a central processing unit CPU product.The QCA6574AU is a central processing unit CPU product.The SDX24 is a modem. A security vulnerability exists in Qualcomm that could result in a stack overflow due to...

8.4CVSS7.4AI score0.00157EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/10/04 12:0 a.m.30 views

Ubuntu 18.04 LTS : Mercurial vulnerabilities (USN-5102-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5102-1 advisory. It was discovered that Mercurial mishandled symlinks in subrepositories. An attacker could use this issue to write arbitrary files to the targets...

9.1CVSS7.3AI score0.02033EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/09/30 7:6 p.m.4 views

ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite()

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00424EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 7:6 p.m.6 views

ntfs-3g: Heap buffer overflow triggered by a specially crafted Unicode string

The ntfs3g package is susceptible to a heap overflow on crafted unicode input. When processing NTFS unicode input, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00432EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 7:6 p.m.3 views

ntfs-3g: Heap buffer overflow in ntfs_get_attribute_value() caused by an unsanitized attribute

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00424EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 7:6 p.m.5 views

ntfs-3g: Heap buffer overflow in ntfs_inode_real_open() triggered by a specially crafted NTFS inode

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing NTFS inodes, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00432EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 7:6 p.m.3 views

ntfs-3g: Heap buffer overflow in ntfs_inode_lookup_by_name()

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00427EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 4:59 p.m.3 views

ntfs-3g: Heap buffer overflow triggered by a specially crafted MFT section

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing the MFT, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00445EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 4:59 p.m.4 views

ntfs-3g: Heap buffer overflow in ntfs_get_attribute_value() caused by an unsanitized attribute

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00424EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 4:59 p.m.4 views

ntfs-3g: Out-of-bounds access in ntfs_decompress()

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00392EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 4:59 p.m.1 views

ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite()

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00424EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/09/30 4:59 p.m.2 views

ntfs-3g: Heap buffer overflow in ntfs_inode_lookup_by_name()

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.8AI score0.00427EPSS
Exploits0References5
Rows per page
Query Builder