Lucene search
+L

295 matches found

vulnersosv
vulnersosv
added 2021/05/14 8:15 p.m.5 views

pycnet-audio (>=0.5.1 <=0.5.8) potentially affected by CVE-2021-29524 via tensorflow-cpu (=2.2.0)

tensorflow-cpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - pycnet-audio =0.5.1, =0.5.8 Source cves: CVE-2021-29524 Source advisory: OSV:PYSEC-2021-452...

5.5CVSS6AI score0.00189EPSS
Exploits1
intel
intel
added 2021/05/11 12:0 a.m.57 views

Microarchitectural Data Sampling Advisory

Summary: A potential security vulnerability in CPUs may allow information disclosure. Intel is releasing Microcode Updates MCU updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2018-12126 Microarchitectural Store Buffer Data Sampling MSBDS: Store buffers on some...

5.9CVSS6AI score0.01553EPSS
Exploits0
nessus
nessus
added 2021/04/29 12:0 a.m.35 views

Xen Paging Tables Race Condition (XSA-328)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by an issue allowing Intel guest OS users to gain privileges or cause a denial of service because of non-atomic modification of a live EPT PTE. When mapping guest EPT nested paging tables, X...

7.8CVSS8AI score0.00276EPSS
Exploits0References2
openvas
openvas
added 2021/04/19 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2018:1614-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS8.3AI score0.60631EPSS
Exploits2References4
vulnersosv
vulnersosv
added 2020/11/13 5:18 p.m.4 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +100 more potentially affected by CVE-2020-15266 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2020-15266 Source advisory: OSV:GHSA-XWHF-G6J5-J5GC...

7.5CVSS7AI score0.00927EPSS
Exploits1
vulnersosv
vulnersosv
added 2020/09/25 7:15 p.m.6 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +99 more potentially affected by CVE-2020-15201 via tensorflow-cpu (>=1.15.0 <=2.2.3)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.0.1, =0.3.3 and more Source cves: CVE-2020-15201 Source advisory: OSV:PYSEC-2020-281...

6.8CVSS5.8AI score0.00563EPSS
Exploits1
vulnersosv
vulnersosv
added 2020/09/25 7:15 p.m.6 views

a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +99 more potentially affected by CVE-2020-15196 via tensorflow-cpu (>=1.15.0 <=2.2.3)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.0.1, =0.3.3 and more Source cves: CVE-2020-15196 Source advisory: OSV:PYSEC-2020-276...

9.9CVSS7.2AI score0.00902EPSS
Exploits1
vulnersosv
vulnersosv
added 2020/09/25 7:15 p.m.6 views

gamornet-cpu (>=0.2.3 <=0.4.3), tchatbot (=0.1.0) +1 more potentially affected by CVE-2020-15210 via tensorflow-cpu (=1.15.0)

tensorflow-cpu PYPI version =1.15.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - gamornet-cpu =0.2.3, =0.7.0, =0.7.5 Source cves: CVE-2020-15210 Source advisory: OSV:PYSEC-2020-290...

6.5CVSS6.5AI score0.00729EPSS
Exploits1
vulnersosv
vulnersosv
added 2020/09/25 6:28 p.m.7 views

tensorflowjs (>=1.5.2 <=1.7.4) potentially affected by CVE-2020-15190 via tensorflow-cpu (=2.1.0)

tensorflow-cpu PYPI version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - tensorflowjs =1.5.2, =1.7.4 Source cves: CVE-2020-15190 Source advisory: OSV:GHSA-4G9F-63RX-5CW4...

5.3CVSS6AI score0.00943EPSS
Exploits1
vulnersosv
vulnersosv
added 2020/09/01 4:43 p.m.4 views

sysmonitor-client (>=0.0.1 <=1.0.0), sytemmonitor-client (=0.0.1) potentially affected by CVE-2017-1000219 via windows-cpu (=0.1.4)

windows-cpu NPM version =0.1.4 is affected by a known vulnerability. The following packages have a transitive dependency on windows-cpu and may be impacted: - sysmonitor-client =0.0.1, =1.0.0 - sytemmonitor-client =0.0.1 Source cves: CVE-2017-1000219 Source advisory: OSV:GHSA-63M4-FHF2-CMF7...

9.8CVSS7.2AI score0.04236EPSS
Exploits1
ubuntucve
ubuntucve
added 2020/07/07 1:15 p.m.30 views

CVE-2020-15567

An issue was discovered in Xen through 4.13.x, allowing Intel guest OS users to gain privileges or cause a denial of service because of non-atomic modification of a live EPT PTE. When mapping guest EPT nested paging tables, Xen would in some circumstances use a series of non-atomic bitfield write...

7.8CVSS7.1AI score0.00276EPSS
Exploits0References5
cvelist
cvelist
added 2020/07/07 12:26 p.m.37 views

CVE-2020-15567

An issue was discovered in Xen through 4.13.x, allowing Intel guest OS users to gain privileges or cause a denial of service because of non-atomic modification of a live EPT PTE. When mapping guest EPT nested paging tables, Xen would in some circumstances use a series of non-atomic bitfield write...

8.1AI score0.00276EPSS
Exploits0References8
oraclelinux
oraclelinux
added 2020/06/10 12:0 a.m.54 views

Unbreakable Enterprise kernel security update

4.1.12-124.39.5.1 - x86/speculation: Add Ivy Bridge to affected list Josh Poimboeuf Orabug: 31352782 CVE-2020-0543 - x86/speculation: Add SRBDS vulnerability and mitigation documentation Mark Gross Orabug: 31352782 CVE-2020-054 3 - x86/speculation: Add Special Register Buffer Data Sampling SRBDS...

5.5CVSS2.7AI score0.0054EPSS
Exploits0
prion
prion
added 2020/04/15 3:15 p.m.16 views

Information disclosure

An information disclosure vulnerability exists when certain central processing units CPU speculatively access memory, aka 'Windows Kernel Information Disclosure in CPU Memory Access'...

2.1CVSS5.5AI score0.01487EPSS
Exploits0References1Affected Software5
thn
thn
added 2020/03/10 4:30 p.m.81 views

LVI Attacks: New Intel CPU Vulnerability Puts Data Centers At Risk

It appears there is no end in sight to the hardware level security vulnerabilities in Intel processors, as well as to the endless 'performance killing' patches that resolve them. Modern Intel CPUs have now been found vulnerable to a new attack that involves reversely exploiting Meltdown-type data...

5.6CVSS0.1AI score0.0104EPSS
Exploits1
osv
osv
added 2020/03/02 1:24 p.m.17 views

SUSE-SU-2020:0558-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-2732: Fixed an issue affecting Intel CPUs where an L2 guest may trick the L0 hypervisor into accessing sensitive L1 resources bsc1163971. -...

10CVSS8.1AI score0.08667EPSS
Exploits7References181
threatpost
threatpost
added 2020/01/28 10:58 p.m.100 views

New ‘CacheOut’ Attack Targets Intel CPUs

Researchers have identified a new speculative execution type attack, dubbed CacheOut, that could allow attackers to trigger data leaks from most Intel CPUs. The more serious of the two bugs, revealed Monday, is rated medium severity by Intel, who said fixes for both flaws are on the way. The more...

2.1CVSS1AI score0.00587EPSS
Exploits0References5
debian
debian
added 2019/12/30 10:33 p.m.958 views

[SECURITY] [DLA 2051-1] intel-microcode security update

Package : intel-microcode Version : 3.20191115.2deb8u1 CVE ID : CVE-2019-11135 CVE-2019-11139 This update ships updated CPU microcode for some types of Intel CPUs. In particular it provides mitigations for the TAA TSX Asynchronous Abort vulnerability. For affected CPUs, to fully mitigate the...

6.5CVSS7.5AI score0.03133EPSS
Exploits0
malwarebytes
malwarebytes
added 2019/12/16 5:8 p.m.34 views

A week in security (December 9 – 15)

Last week on Malwarebytes Labs, we cautioned readers against purchasing potentially privacy-invasive, cyber-insecure smart doorbells, warned about a new credit card skimmer vulnerability embedded within hundreds of fraudulent web sites selling supposedly name-brand shoes, and looked at the newest...

7.7AI score
Exploits0
nessus
nessus
added 2019/11/15 12:0 a.m.58 views

openSUSE Security Update : qemu (openSUSE-2019-2505)

This update for qemu fixes the following issues : - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE15 - Fix use-after-free in slirp CVE-2018-20126 bsc1119991 - Fix potential DOS in lsi scsi controller emulation CVE-2019-12068 bsc1146873 - Expose taa-no 'feature',...

6.5CVSS6.9AI score0.03133EPSS
Exploits0References9
Rows per page
Query Builder