Lucene search
K

7652 matches found

Apple
Apple
added 2021/05/24 12:0 a.m.80 views

About the security content of Security Update 2021-004 Mojave

About the security content of Security Update 2021-004 Mojave This document describes the security content of Security Update 2021-004 Mojave. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurre...

9.8CVSS9.3AI score0.84224EPSS
Exploits1References1Affected Software1
Github Security Blog
Github Security Blog
added 2021/05/21 4:22 p.m.38 views

github.com/nats-io/nats-server Import token permissions checking not enforced

This advisory is canonically Problem Description The NATS server provides for Subjects which are namespaced by Account; all Subjects are supposed to be private to an account, with an Export/Import system used to grant cross-account access to some Subjects. Some Exports are public, such that anyon...

7.5CVSS7.4AI score0.0146EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2021/05/21 4:22 p.m.21 views

GHSA-J756-F273-XHP4 github.com/nats-io/nats-server Import token permissions checking not enforced

This advisory is canonically Problem Description The NATS server provides for Subjects which are namespaced by Account; all Subjects are supposed to be private to an account, with an Export/Import system used to grant cross-account access to some Subjects. Some Exports are public, such that anyon...

7.5CVSS7.4AI score0.0146EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/05/18 2:2 p.m.4 views

webkitgtk: out-of-bounds write may lead to code execution

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Safari 14.0. Processing maliciously crafted web content may lead to code execution...

8.8CVSS6.8AI score0.01996EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2021/05/18 5:33 a.m.53 views

Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Integer overflow in IntelR Graphics Drivers CVE-2020-12362 kernel: memory leak in sofsetgetlargectrldata function in sound/soc/sof/ipc.c CVE-2019-18811 kernel: use-after-free caused by a...

7.8CVSS8.2AI score0.03252EPSS
Exploits6References26
CNVD
CNVD
added 2021/05/13 12:0 a.m.7 views

JetBrains TeamCity Plugin Changed Permission Check Implementation Error Vulnerability

TeamCity is a Java-based build management and continuous integration server from JetBrains. A vulnerability exists in JetBrains TeamCity versions prior to 2020.2.2 in the implementation error of permission checking for plugin changes. No detailed vulnerability details are provided at this time...

5.3CVSS6.6AI score0.00883EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/05/12 12:0 a.m.4 views

PT-2024-11197 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A buffer overflow issue has been resolved in the Linux kernel. The issue is located in the otx2 set rxfh context function, which is called from ethtool set rxfh. The rss context variab...

7.8CVSS7.1AI score0.00234EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2021/05/07 12:0 a.m.54 views

IBM Informix Dynamic Server 14.10.x < 14.10.xC5 Buffer Overflow (6448568)

The version of IBM Informix Dynamic Server installed on the remote is 14.10.x prior to 14.10.xC5. It is, therefore, affected by a buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of...

6.7CVSS7.4AI score0.00317EPSS
Exploits0References2
Kitploit
Kitploit
added 2021/05/04 9:30 p.m.246 views

Pystinger - Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger implements SOCK4 proxy and port mapping through webshell. It can be directly used by metasploit-framework, viper, cobalt strike for session online. Pystinger is developed in python, and currently supports three proxy scripts: php, jspx and aspx. Usage Suppose the domain name of the serv...

7.1AI score
Exploits0References4
CNNVD
CNNVD
added 2021/05/04 12:0 a.m.3 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from the Google Open Handheld Alliance Google. Google Android suffers from an elevation of privilege vulnerability. The vulnerability is caused due to a privilege checking error in the memory management driver. An attacker could exploit...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/05/04 12:0 a.m.4 views

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the Google Open Handheld Consortium Google. Google Android suffers from an elevation of privilege vulnerability. The vulnerability stems from an out-of-bounds write in the memory management driver due to a lack of boundary checking...

7.8CVSS5.9AI score0.00132EPSS
Exploits0References3
NVD
NVD
added 2021/05/03 10:15 p.m.14 views

CVE-2021-32020

The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...

9.8CVSS0.01303EPSS
Exploits0References1
OSV
OSV
added 2021/05/03 10:15 p.m.3 views

CVE-2021-32020

The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...

9.8CVSS5.4AI score0.01303EPSS
Exploits0References1
Prion
Prion
added 2021/05/03 10:15 p.m.15 views

Design/Logic Flaw

The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...

7.5CVSS9.2AI score0.01303EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/05/03 9:12 p.m.18 views

CVE-2021-32020

The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...

9.5AI score0.01303EPSS
Exploits0References1
CVE
CVE
added 2021/05/03 9:12 p.m.73 views

CVE-2021-32020

CVE-2021-32020 affects the kernel of Amazon Web Services FreeRTOS prior to 10.4.3, where insufficient bounds checking during heap memory management is the root cause. The issue is exploitable over a network with low attack complexity and no authentication, and it carries high potential impact to ...

9.8CVSS9.2AI score0.01303EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/03 3:13 p.m.19 views

Security Bulletin: TensorFlow is vulnerable to a heap-based buffer overflow on IBM Watson Machine Learning on CP4D

Summary TensorFlow is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by UnsortedSegmentSum on IBM Watson Machine Learning on CP4D Vulnerability Details CVEID: CVE-2019-16778 DESCRIPTION: TensorFlow is vulnerable to a heap-based buffer overflow, caused by improper...

9.8CVSS1.8AI score0.00777EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2021/05/03 12:0 a.m.6 views

Qualcomm 多款产品资源管理错误漏洞

Qualcomm MDM9206 and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The MDM9206 is a central processing unit CPU product.The MDM9650 is a central processing unit CPU product.The MSM8996AU is a central processing unit CPU product.The MSM8996AU is a central processing unit CPU...

10CVSS8.5AI score0.00576EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/05/03 12:0 a.m.6 views

Qualcomm 组件输入验证错误漏洞

The Qualcomm Component is a component of Qualcomm Incorporated USA. An intrinsic part that provides the functionality of Qualcomm devices. An input validation error vulnerability exists in the Qualcomm Component that stems from incorrect length checking of SDES packets. The following products and...

10CVSS8.3AI score0.00819EPSS
Exploits0References5
NVD
NVD
added 2021/04/30 4:15 p.m.14 views

CVE-2021-20515

IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of service condition. IBM X-Force ID: 198366...

6.7CVSS0.00317EPSS
Exploits0References2
Rows per page
Query Builder