540 matches found
PT-2022-34731 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0 Description: The issue is related to an underflow in nft counters enabled at nf tables addchain. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel version...
Code injection
In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...
Wordfence 7.7.0 Is Out! Here Are The Changes
Wordfence 7.7.0 has just been released and as usual, it includes several awesome enhancements and updates for our security conscious WordPress publishers and e-commerce websites. This post goes into a little more detail on each change weve included. We dont usually post additional detail like thi...
CVE-2021-4218
A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading the counter sysctl panics the system. This flaw allows a local attacker with local access to cause a denial of service while the system reboots. The issue is specific to CentOS/RHEL...
CVE-2021-4218
A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading the counter sysctl panics the system. This flaw allows a local attacker with local access to cause a denial of service while the system reboots. The issue is specific to CentOS/RHEL...
UBUNTU-CVE-2021-4218
A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading the counter sysctl panics the system. This flaw allows a local attacker with local access to cause a denial of service while the system reboots. The issue is specific to CentOS/RHEL...
CVE-2022-2245
The Counter Box WordPress plugin before 1.2.1 is lacking CSRF check when activating and deactivating counters, which could allow attackers to make a logged in admin perform such actions via CSRF attacks...
CVE-2022-2245
The Counter Box WordPress plugin before 1.2.1 is lacking CSRF check when activating and deactivating counters, which could allow attackers to make a logged in admin perform such actions via CSRF attacks...
Uber: Golang expvar Information Disclosure
Package expvar provides a standardized interface to public variables, such as stack trace information and operation counters in servers...
The vulnerability of Windows operating system’s performance counters, which allows a hacker to enhance their privileges
The vulnerability of Windows operating system’s performance counters is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...
CVE-2022-22036
Performance Counters for Windows Elevation of Privilege Vulnerability...
CVE-2022-22036
Performance Counters for Windows Elevation of Privilege Vulnerability...
CVE-2022-22036
Performance Counters for Windows Elevation of Privilege Vulnerability...
Privilege escalation
Performance Counters for Windows Elevation of Privilege Vulnerability...
CVE-2022-22036
Technical details for CVE-2022-22036 are not publicly available in the provided documents. Monitor for updates.
CVE-2022-22036 Performance Counters for Windows Elevation of Privilege Vulnerability
...
Performance Counters for Windows Elevation of Privilege Vulnerability
...
Microsoft Windows 权限许可和访问控制问题漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A vulnerability exists in Microsoft Windows Performance Counters with privilege permission and access control issues. The following products and versions are affected:Windows 10 Version...
PT-2022-3715 · Microsoft · Windows Performance Counters +1
Name of the Vulnerable Software and Affected Versions: Windows Performance Counters affected versions not specified Description: The issue is related to insufficient access restrictions in Windows Performance Counters, allowing an attacker to elevate their privileges. This can affect the system,...
KLA12581 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of...