CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

538 matches found

Prion•added 2021/02/26 2:15 a.m.•12 views

Design/Logic Flaw

Vapor is a web framework for Swift. In Vapor before version 4.40.1, there is a DoS attack against anyone who Bootstraps a metrics backend for their Vapor app. The following is the attack vector: 1. send unlimited requests against a vapor instance with different paths. this will create unlimited...

5CVSS5.2AI score0.01625EPSS

Exploits0References4Affected Software1

Cvelist•added 2021/02/26 1:45 a.m.•14 views

CVE-2021-21328 Denial of Service

5.3CVSS5.5AI score0.01625EPSS

Exploits0References4

Positive Technologies•added 2021/02/26 12:0 a.m.•2 views

PT-2021-14425 · Vapor · Vapor

Name of the Vulnerable Software and Affected Versions: Vapor versions prior to 4.40.1 Description: The issue allows for a Denial of Service DoS attack against Vapor applications that have a metrics backend enabled. An attacker can send unlimited requests with different paths to a Vapor instance,...

5.3CVSS5AI score0.01625EPSS

Exploits0References9

Kitploit•added 2021/02/21 8:30 p.m.•46 views

Perfusion - Exploit For The RpcEptMapper Registry Key Permissions Vulnerability (Windows 7 / 2088R2 / 8 / 2012)

On Windows 7 , Windows Server 2008R2 , Windows 8 , and Windows Server 2012 , the registry key of the RpcEptMapper and DnsCache 7/2008R2 only services is configured with weak permissions. Any local user can create a Performance subkey and then leverage the WindowsPerformance Counters to load an...

7.6AI score

Exploits0References3

RedHat Linux•added 2021/02/16 2:32 p.m.•4 views

kernel: performance counters race condition use-after-free

A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidentiality and integri...

7.8CVSS6.8AI score0.00302EPSS

Exploits0References4

RedHat Linux•added 2021/02/16 2:28 p.m.•274 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.9AI score0.06692EPSS

Exploits3References4

RedHat Linux•added 2021/02/16 2:28 p.m.•3 views

kernel: performance counters race condition use-after-free

7.8CVSS6.8AI score0.00302EPSS

Exploits0References4

Tenable Nessus•added 2021/02/16 12:0 a.m.•65 views

RHEL 8 : kernel (RHSA-2021:0558)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0558 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: locking issue in...

7.8CVSS7.1AI score0.06692EPSS

Exploits3References8

Zero Day Initiative•added 2020/11/22 12:0 a.m.•68 views

Linux Kernel Performance Counters Race Condition Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementation of...

7.8CVSS4.7AI score0.00302EPSS

Exploits0References1

Fedora•added 2020/09/25 5:16 p.m.•52 views

[SECURITY] Fedora 33 Update: jctools-3.1.0-1.fc33

This project aims to offer some concurrent data structures currently missing from the JDK: =EF=BF=BD=EF=BF=BD SPSC/MPSC/SPMC/MPMC Bounded lock free queues =EF=BF=BD=EF=BF=BD SPSC/MPSC Unbounded lock free queues =EF=BF=BD=EF=BF=BD Alternative interfaces for queues =EF=BF=BD=EF=BF=BD Offheap...

9.1CVSS3.8AI score0.13474EPSS

Exploits3

Tenable Nessus•added 2019/09/23 12:0 a.m.•56 views

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2019:2412-1)

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following new features were implemented : jscSLE-4875: CML New device IDs for CML jscSLE-7294: Add cpufreq driver for Raspberry Pi fate322438: Integrate P9 XIVE support on PowerVM only fate322447: Ad...

10CVSS7.1AI score0.05189EPSS

Exploits23References305

Tenable Nessus•added 2019/05/08 12:0 a.m.•12 views

Emerson 396897-01-0 Non-isolated Mixed Input/Output module Detection

Binary data 756520.prm...

7.3AI score

Exploits0

Tenable Nessus•added 2019/05/08 12:0 a.m.•14 views

Emerson 396897-03-7 Non-isolated Mixed Input/Output module Detection

Binary data 756522.prm...

7.3AI score

Exploits0