15 matches found
GitHub Copilot CLI 安全漏洞
GitHub Copilot CLI is a terminal AI programming assistant open sourced by GitHub. Versions of GitHub Copilot CLI prior to version 1.0.43 contained a security vulnerability. This vulnerability stemmed from malicious bare git repositories nested within project directories. When the agent performed...
EUVD-2017-16725
Malware in sbrugna...
CVE-2024-33052
Memory corruption when user provides data for FM HCI command control operations...
SUSE CVE-2015-2751
Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service host lock via unspecified domctl operations...
Unauthorized Access Vulnerability in 360 Smart Camera PTZ AI Edition Standard Model AP2C
360 Smart Camera PTZ AI Edition Standard Model AP2C is a device under the 360 Smart Home platform, which can help the owner to realize real-time monitoring of the home situation. 360 Smart Camera PTZ AI Edition Standard Model AP2C suffers from an unauthorized access vulnerability, which can be...
Use-after-Free
Mozilla Firefox is vulnerable to use-after-free vulnerability. The vulnerability is caused during video control operations when a "" element holds a reference to an older window if that window has been replaced in the DOM resulting in an application crash...
Excerpts from The Ransomware Economy: The Ransomware Supply Chain
Carbon Black recently published an investigative report on the Dark Web marketplace for ransomware. This is an excerpt from that report, which you can find here. For more information about the rise of ransomware, and what you can do about it, check out the Ransomware Epidemic: Stop Bad Rabbit In...
CVE-2017-7750
A use-after-free vulnerability during video control operations when a "" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially exploitable crash. This vulnerability affects Firefox 54, Firefox ESR 52.2, and Thunderbird 52.2...
Memory corruption
arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACEPOKEUSRAREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a...
CVE-2014-3534
arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACEPOKEUSRAREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a...
CVE-2014-2599
The HVMOPsetmemaccess HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service CPU consumption by leveraging access to certain service domains for HVM guests and a large input...
DSA-2636-1 xen - several
Bulletin has no description...
CVE-2012-6333
Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM guest OS administrators to cause a denial of service physical CPU consumption via a large input...
CVE-2012-6333
CVE-2012-6333 affects Xen hypervisor versions 3.4–4.2, where multiple HVM control operations can be abused by local HVM guest admins to cause a denial of service through high physical CPU consumption by supplying a large input. The initial description specifies local access with no authentication...
CVE-2012-6033
The dotmemcontrol function in the Transcendent Memory TMEM in Xen 4.0, 4.1, and 4.2 does not properly check privileges, which allows local guest OS users to access control stack operations via unspecified vectors. NOTE: this issue was originally published as part of CVE-2012-3497, which was too...