23 matches found
MISP modules 信任管理问题漏洞
MISP modules are scalable threat intelligence platform modules developed under the open-source MISP Project. They support import, export, expansion, and automated workflows. Prior to version 3.0.7, there were vulnerabilities related to trust management in MISP modules. These vulnerabilities stemm...
GHSA-Q5QQ-MVFM-J35X Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist
Fickling's assessment ctypes, importlib, runpy, code and multiprocessing were added the list of unsafe imports https://github.com/trailofbits/fickling/commit/9a2b3f89bd0598b528d62c10a64c1986fcb09f66, https://github.com/trailofbits/fickling/commit/eb299b453342f1931c787bcb3bc33f3a03a173f9,...
CVE-2021-33124
Out-of-bounds write in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...
EUVD-2009-4386
Malware in sbrugna...
EUVD-2021-19818
Malware in sbrugna...
Malicious code in shell-old-code-module-kappa (npm)
The package shell-old-code-module-kappa was found to contain malicious code...
The vulnerability of the gbak() function in the burp.cpp module of the “Red Database” database management system allows a hacker to cause a service failure.
The vulnerability of the gbak function in the burp.cpp module of the “Red Database” database management system is related to incorrect validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
Drupal Access code 安全漏洞
Drupal Access code is a Drupal module for the Drupal community. A security vulnerability exists in Drupal Access code versions prior to 2.0.4, which stems from an improperly restricted authentication attempt that could lead to brute force cracking...
USN-7247-1: OpenCV vulnerabilities
It was discovered that OpenCV did not properly manage certain XML data, leading to a NULL pointer dereference. If a user were tricked into loading a specially crafted file, a remote attacker could possibly use this issue to make OpenCV crash, resulting in a denial of service. This issue only...
Ubuntu 18.04 LTS / 22.04 LTS : OpenCV vulnerabilities (USN-7247-1)
The remote Ubuntu 18.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7247-1 advisory. It was discovered that OpenCV did not properly manage certain XML data, leading to a NULL pointer dereference. If a user were tricked into...
The vulnerability of the Authenticated Code Module (ACM) in Intel microprogramming system BIOS allows a hacker to enhance their privileges.
The vulnerability of the Authenticated Code Module ACM in Intel microprogramming system BIOS is related to data writing beyond the buffer. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Authenticated Code Module (ACM) in Intel microprogramming system BIOS allows a hacker to enhance their privileges.
The vulnerability of the Authenticated Code Module ACM in Intel microprogramming system BIOS is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow attackers to enhance their privileges...
F5 Networks BIG-IP : Intel BIOS vulnerability (K87351324)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K87351324 advisory. Out-of-bounds write in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to...
CVE-2021-33124
Out-of-bounds write in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...
CVE-2021-33124
CVE-2021-33124 refers to an out-of-bounds write in the BIOS authenticated code module for some Intel processors that may allow a privileged local user to escalate privileges. Public advisories (Intel SA-00601) describe this class of BIOS/firmware flaws and recommend applying the latest Intel BIOS...
CVE-2021-33123
Improper access control in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...
CVE-2021-44485
An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in tripgen in srport/emitcode.c allows attackers to crash the application by dereferencing a NULL pointer...
PT-2021-7227 · Intel · Intel Processors
Name of the Vulnerable Software and Affected Versions: IntelR Processors affected versions not specified Description: The issue is related to an out-of-bounds write in the BIOS authenticated code module for some IntelR Processors. This may allow a privileged user to potentially enable escalation ...
CVE-2015-4362
Cross-site request forgery CSRF vulnerability in trackingcode.admin.inc in the Tracking Code module 7.x-1.x before 7.x-1.6 for Drupal allows remote attackers to hijack the authentication of administrators for requests that disable tracking codes via unspecified vectors...
Drupal Tracking Code module cross-site request forgery vulnerability
Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.Tracking Code is one of the code tracking modules. A cross-site request forgery vulnerability exists in the Drupal Tracking Code module. A remote attacker can exploit this vulnerability...