Lucene search
K

10 matches found

EUVD
EUVD
added 2026/07/02 2:14 a.m.8 views

EUVD-2026-41242

GeoWebPlayer also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud is an addon that can be installed with various GeoVision software GV-VMS, GV-Cloud, .... It creates a websocket server that expands the capabilities of the various web-interfaces provided by the...

8.3CVSS5.8AI score0.00215EPSS
Exploits0References2
CVE
CVE
added 2026/07/02 2:14 a.m.11 views

CVE-2026-13131

GeoWebPlayer Websocket Server (GeoVision) has a concrete out-of-bounds read vulnerability in the connectInfo command (index not range-checked), enabling out-of-bounds access to viewer IPCams and potential code execution. Reported for GeoWebPlayer 1.1.1.0; CVSSv3.1 score 8.3 (NETWORK, HIGH impact)...

8.3CVSS5.8AI score0.00215EPSS
Exploits0References2
Talos
Talos
added 2026/07/01 12:0 a.m.8 views

GeoVision GeoWebPlayer Websocket Server out-of-bounds read vulnerabilities

Summary Multiple exploitable out-of-bounds read vulnerabilities exist in the Websocket Server functionality of GeoWebPlayer versions: 1.1.1.0. A specially crafted websocket message can lead to a arbitrary code execution. An attacker can stage a malicious webpage to trigger these vulnerabilities...

8.3CVSS6.1AI score0.00215EPSS
Exploits0
Talos
Talos
added 2026/07/01 12:0 a.m.7 views

GeoVision GeoWebPlayer Websocket Server connectInfo handler stack-based buffer overflow vulnerabilities

Summary Multiple exploitable stack-based buffer overflow vulnerabilities exist in the Websocket Server connectInfo handler functionality of GeoWebPlayer versions: 1.1.1.0. A specially crafted websocket message can lead to a arbitrary code execution. An attacker can stage a malicious webpage to...

8.3CVSS6.4AI score0.00286EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000862)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000862 advisory. The procconnectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to...

6.2CVSS6.8AI score0.00553EPSS
Exploits0References31
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003338)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003338 advisory. The procconnectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to...

6.2CVSS6.8AI score0.00553EPSS
Exploits0References31
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002870)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002870 advisory. The procconnectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to...

6.2CVSS6.8AI score0.00553EPSS
Exploits0References31
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.2 views

SUSE CVE-2016-4482

The procconnectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted USBDEVFSCONNECTINFO ioctl call...

6.2CVSS7AI score0.00553EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2016/06/22 12:0 a.m.60 views

openSUSE Security Update : the Linux Kernel (openSUSE-2016-753)

The openSUSE Leap 42.1 kernel was updated to 4.1.26 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils wa...

10CVSS6.7AI score0.2593EPSS
Exploits30References55
Positive Technologies
Positive Technologies
added 2016/05/23 12:0 a.m.6 views

PT-2016-5973 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.7 Description: The issue concerns the proc connectinfo function in the Linux kernel, which fails to initialize a certain data structure. This allows local users to obtain sensitive information from kernel stac...

10CVSS6.7AI score0.80855EPSS
Exploits107References737
Rows per page
Query Builder