Lucene search
K

7652 matches found

OSV
OSV
added 2021/04/30 4:15 p.m.0 views

CVE-2021-20515

IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of service condition. IBM X-Force ID: 198366...

6.7CVSS6.4AI score0.00317EPSS
Exploits0References2
Prion
Prion
added 2021/04/30 4:15 p.m.19 views

Stack overflow

IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of service condition. IBM X-Force ID: 198366...

4.6CVSS6.9AI score0.00317EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/04/30 3:45 p.m.19 views

CVE-2021-20515

IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of service condition. IBM X-Force ID: 198366...

6.7CVSS7.1AI score0.00317EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/29 12:0 a.m.6 views

IBM Informix Dynamic Server 缓冲区错误漏洞

IBM Informix Dynamic Server is a scalable object-relational database server from IBM in the United States that provides clustered data centers with features such as continuous data availability and disaster recovery. A buffer overflow vulnerability exists in IBM Informix Dynamic Server that stems...

6.7CVSS6.7AI score0.00317EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/04/28 12:0 a.m.4 views

Cisco Adaptive Security Appliances Software 安全漏洞

Cisco Firepower Threat Defense FTD is a suite of unified software from Cisco that provides next-generation firewall services. A security vulnerability exists in the Cisco Adaptive Security Appliance, which is caused by insufficient boundary checking of specific data provided to the web service...

8.5CVSS7.4AI score0.01197EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/26 7:58 p.m.24 views

Security Bulletin: IBM® Db2® db2fm is vulnerable to a buffer overflow (CVE-2020-5025)

Summary IBM Db2 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges. Vulnerability Details CVEID: CVE-2020-5025 DESCRIPTION: IBM DB2 db2fm is vulnerable to a buffer overflow,...

8.4CVSS1.4AI score0.00564EPSS
Exploits0Affected Software1
NVD
NVD
added 2021/04/26 5:15 p.m.8 views

CVE-2021-29672

IBM Spectrum Protect Client 8.1.0.0-8 through 1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when processing the current locale settings. A local attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause...

8.4CVSS0.00345EPSS
Exploits0References3
OSV
OSV
added 2021/04/26 5:15 p.m.0 views

CVE-2021-20546

IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and cause the application to crash. IBM X-Force ID: 198934...

5.5CVSS7.1AI score0.00266EPSS
Exploits0References2
Prion
Prion
added 2021/04/26 5:15 p.m.15 views

Stack overflow

IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and cause the application to crash. IBM X-Force ID: 198934...

2.1CVSS5.5AI score0.00266EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2021/04/26 4:30 p.m.21 views

CVE-2021-29672

IBM Spectrum Protect Client 8.1.0.0-8 through 1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when processing the current locale settings. A local attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause...

8.4CVSS9AI score0.00345EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/04/26 4:30 p.m.14 views

CVE-2021-20546

IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and cause the application to crash. IBM X-Force ID: 198934...

6.2CVSS5.7AI score0.00266EPSS
Exploits0References2
CNVD
CNVD
added 2021/04/26 12:0 a.m.7 views

IBM Spectrum Protect Buffer Overflow Vulnerability (CNVD-2021-31236)

IBM Spectrum Protect formerly known as Tivoli Storage Manager is a suite of data protection platforms from IBM in the United States. The platform provides organizations with a single point of control and management, and supports backup and recovery for virtual, physical and cloud environments of...

8.4CVSS6.9AI score0.00345EPSS
Exploits0References1
Apple
Apple
added 2021/04/26 12:0 a.m.63 views

About the security content of tvOS 14.5

About the security content of tvOS 14.5 This document describes the security content of tvOS 14.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

9.8CVSS10AI score0.04258EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/04/23 12:0 a.m.4 views

IBM Spectrum Protect 缓冲区错误漏洞

IBM Spectrum Protect formerly known as Tivoli Storage Manager is a suite of data protection platforms from IBM in the United States. The platform provides organizations with a single point of control and management, and supports backup and recovery for virtual, physical and cloud environments of...

8.4CVSS7.2AI score0.00345EPSS
Exploits0References7
CNVD
CNVD
added 2021/04/23 12:0 a.m.9 views

CloudBees Jenkins Config File Provider Plugin Privilege Checking Vulnerability (CNVD-2021-31659)

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Config File Provider Plugin is used in one of...

4.3CVSS6.3AI score0.00887EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2021/04/22 4:20 p.m.71 views

Directory Traversal in Archive_Tar

Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948. :exclamation: Note: There was an initial fix for this vulnerability made in version 1.4.12. That fix introduced a bug which was...

7.5CVSS7.4AI score0.70595EPSS
Exploits0References19Affected Software1
OSV
OSV
added 2021/04/22 4:10 p.m.59 views

GHSA-M496-X567-F98C Fixes a bug in Zend Framework's Stream HTTP Wrapper

Impact CVE-2021-3007: Backport of ZendHttpResponseStream, added certain type checking as a way to prevent exploitation. https://vulners.com/cve/CVE-2021-3007 This vulnerability is caused by the unsecured deserialization of an object. In versions higher than Zend Framework 3.0.0, the attacker abus...

9.8CVSS9.4AI score0.01203EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/04/22 12:0 a.m.52 views

Ubuntu 16.04 LTS : Dnsmasq vulnerabilities (USN-4924-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4924-1 advisory. It was discovered that Dnsmasq incorrectly handled certain wildcard synthesized NSEC records. A remote attacker could possibly use this issue to prove th...

7.5CVSS6.8AI score0.02697EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/04/21 12:0 a.m.17 views

Jenkins Config File Provider Plugin 安全漏洞

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Config File Provider Plugin is used in one of...

4.3CVSS5.6AI score0.00887EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:3083-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.14806EPSS
Exploits18References38
Rows per page
Query Builder