Lucene search
+L

72 matches found

CNNVD
CNNVD
added 2025/10/09 12:0 a.m.4 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm, Inc. A security vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when processing control commands...

7.8CVSS6.9AI score0.00081EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2016-2486

Malware in sbrugna...

9.8CVSS9.4AI score0.01778EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-27986

Malicious code in bioql PyPI...

8.6CVSS8.6AI score0.01125EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-37112

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00099EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 8:13 p.m.26 views

CVE-2025-58763

Tautulli (Python-based Plex monitoring) has a command-injection vulnerability affecting v2.15.3 and earlier. The flaw arises when cloning from GitHub and installing manually, where the update/version logic calls runGit via subprocess.Popen with shell=True. The checkout_git_branch path stores un s...

8CVSS8.2AI score0.01675EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2025/07/10 11:15 p.m.11 views

CVE-2025-1727

The protocol used for remote linking over RF for End-of-Train and Head-of-Train also known as a FRED relies on a BCH checksum for packet creation. It is possible to create these EoT and HoT packets with a software defined radio and issue brake control commands to the EoT device, disrupting...

8.1CVSS0.0053EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/03 12:0 a.m.4 views

Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets, which stems from the possibility of memory corruption due to accessing the write-back mode buffer after release when processing IOCTL commands...

7.8CVSS7AI score0.00083EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/28 12:22 a.m.12 views

CVE-2021-47634

In the Linux kernel, the following vulnerability has been resolved: ubi: Fix race condition between ctrlcdevioctl and ubicdevioctl Hulk Robot reported a KASAN report about use-after-free: ================================================================== BUG: KASAN: use-after-free in...

6.4CVSS7.4AI score0.00284EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/07 5:58 p.m.22 views

CVE-2024-38417

Information disclosure while processing IO control commands...

6.1CVSS6.8AI score0.00099EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 12:6 a.m.21 views

CVE-2022-47311

A proprietary protocol for iBoot devices is used for control and keepalive commands. The function compares the username and password; it also contains the configuration data for the user specified. If the user does not exist, then it sends a value for username and password, which allows successfu...

8.8CVSS7.1AI score0.00517EPSS
Exploits0
NVD
NVD
added 2025/02/03 5:15 p.m.38 views

CVE-2024-38417

Information disclosure while processing IO control commands...

6.1CVSS0.00099EPSS
Exploits0References1
CVE
CVE
added 2025/02/03 4:51 p.m.62 views

CVE-2024-38417

CVE-2024-38417 concerns information disclosure during IOCTL processing in Qualcomm embedded platform microcode used in Qualcomm chipsets (notably automotive multimedia). The root cause is a memory issue (buffer over-read) when handling IO control commands, enabling potential leakage of protected ...

6.1CVSS6.3AI score0.00099EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/02/03 4:51 p.m.41 views

CVE-2024-38417 Buffer Over-read in Automotive Multimedia

Information disclosure while processing IO control commands...

6.1CVSS0.00099EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/03 4:51 p.m.12 views

CVE-2024-38417 Buffer Over-read in Automotive Multimedia

Information disclosure while processing IO control commands...

6.1CVSS6.9AI score0.00099EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/05 8:46 p.m.26 views

Security Bulletin: IBM Storage Ceph is vulnerable to CWE in the RHEL UBI (CVE-2023-28487)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. CVE-2023-28487. Vulnerability Details CVEID:CVE-2023-28487 DESCRIPTION: Sudo Project Sudo could allow a remote attacker to obtain...

5.3CVSS5.4AI score0.00953EPSS
Exploits0Affected Software1
GithubExploit
GithubExploit
added 2023/11/28 3:47 a.m.465 views

Exploit for CVE-2022-30190

AmzWord an automated attack chain based on CVE-2022-30190, 16...

9.3CVSS7.6AI score0.99374EPSS
Exploits62
Vulnrichment
Vulnrichment
added 2023/05/22 10:12 p.m.10 views

CVE-2022-47311 CVE-2022-47311

A proprietary protocol for iBoot devices is used for control and keepalive commands. The function compares the username and password; it also contains the configuration data for the user specified. If the user does not exist, then it sends a value for username and password, which allows successfu...

8.5CVSS7.5AI score0.00517EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/22 10:12 p.m.37 views

CVE-2022-47311 CVE-2022-47311

A proprietary protocol for iBoot devices is used for control and keepalive commands. The function compares the username and password; it also contains the configuration data for the user specified. If the user does not exist, then it sends a value for username and password, which allows successfu...

8.5CVSS9.1AI score0.00517EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2023/03/17 8:12 a.m.33 views

CVE-2023-28486

A flaw was found in the sudo package, shipped with Red Hat Enterprise Linux 8 and 9, where sudo improperly escapes terminal control characters during logging operations. As sudo's log messages may contain user-controlled strings, this may allow an attacker to inject terminal control commands,...

5.3CVSS5.4AI score0.00915EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.4 views

SUSE CVE-2020-25656

A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality...

5.5CVSS6AI score0.00434EPSS
Exploits1References27
Rows per page
Query Builder