Lucene search
+L

24 matches found

cnvd
cnvd
added 2020/09/07 12:0 a.m.2 views

IBM InfoSphere Metadata Asset Manager Server-Side Request Forgery Vulnerability

IBM InfoSphere Metadata Asset Manager imports, exports, and manages common metadata assets. A server-side request forgery vulnerability exists in IBM InfoSphere Metadata Asset Manager 11.7, which can be exploited by a remote authenticated attacker to submit or control server requests by sending...

6.5CVSS6.8AI score0.00924EPSS
Exploits0References1
osv
osv
added 2020/05/12 4:15 p.m.3 views

CVE-2020-5898

In versions 7.1.5-7.1.9, BIG-IP Edge Client Windows Stonewall driver does not sanitize the pointer received from the userland. A local user on the Windows client system can send crafted DeviceIoControl requests to \.\urvpndrv device causing the Windows kernel to crash...

5.5CVSS6.1AI score0.00261EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2016/08/31 12:0 a.m.5 views

Multiple vulnerabilities in the Kaspersky Total Security antivirus protection system allow attackers to obtain confidential information.

The multiple vulnerabilities of the KLDISK driver in the Kaspersky Total Security antivirus protection software are related to the lack of protection for operational data. Exploiting these vulnerabilities could allow an intruder, operating locally, to gain access to confidential information—such ...

4.6CVSS5.9AI score0.0067EPSS
Exploits2References2Affected Software1
redhat
redhat
added 2015/01/28 6:52 p.m.10 views

ntp: automatic generation of weak default key in config_auth()

It was found that ntpd automatically generated weak keys for its internal use if no ntpdc request authentication key was specified in the ntp.conf configuration file. A remote attacker able to match the configured IP restrictions could guess the generated key, and possibly use it to send ntpdc...

7.5CVSS7.2AI score0.12978EPSS
Exploits1References6
Rows per page
Query Builder