Lucene search
K

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/08/29 3:48 p.m.42 views

Security Bulletin: IBM Concert is vulnerable to multiple issues due to Cloud Pak Openshift

Summary IBM Concert Software uses multiple open source libraries from Cloud Pak Openshift which are susceptible to various security vulnerabilities. Vulnerability Details CVEID:CVE-2020-12912 DESCRIPTION: AMD Energy Driver for Linux could allow a local attacker to obtain sensitive information,...

7.8CVSS8.7AI score0.91969EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/12/21 12:0 a.m.33 views

SUSE SLES15: docker / docker-bash-completion / docker-fish-completion / etc (SUSE-SU-2023:4936-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4936-1 advisory. docker: - Update to Docker 24.0.7-ce. See upstream changelong online at...

5.5CVSS6.7AI score0.00462EPSS
Exploits0References15
Github Security Blog
Github Security Blog
added 2023/12/19 9:17 p.m.48 views

containerd allows RAPL to be accessible to a container

/sys/devices/virtual/powercap accessible by default to containers Intel's RAPL Running Average Power Limit feature, introduced by the Sandy Bridge microarchitecture, provides software insights into hardware energy consumption. To facilitate this, Intel introduced the powercap framework in Linux...

5.5CVSS7AI score0.00462EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/10/30 3:25 p.m.58 views

GHSA-JQ35-85CJ-FJ4P /sys/devices/virtual/powercap accessible by default to containers

Intel's RAPL Running Average Power Limit feature, introduced by the Sandy Bridge microarchitecture, provides software insights into hardware energy consumption. To facilitate this, Intel introduced the powercap framework in Linux kernel 3.13, which reads values via relevant MSRs model specific...

5.8AI score
Exploits0References8
OpenVAS
OpenVAS
added 2021/01/11 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-4678-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.2AI score0.00462EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2021/01/06 10:27 p.m.155 views

USN-4678-1: Linux kernel vulnerabilities

It was discovered that the AMD Running Average Power Limit RAPL driver in the Linux kernel did not properly restrict access to power data. A local attacker could possibly use this to expose sensitive information. CVE-2020-12912 Jann Horn discovered that the iouring subsystem in the Linux kernel d...

7.8CVSS6.4AI score0.00462EPSS
Exploits1
CVE
CVE
added 2020/11/12 7:8 p.m.118 views

CVE-2020-12912

CVE-2020-12912 describes an AMD Linux hwmon/RAPL issue where improper access control could let a local attacker observe power-usage data leading to side-channel information disclosure. AMD updated the RAPL interface to require privileged access, mitigating the vulnerability. Connected advisories ...

5.5CVSS5.3AI score0.00462EPSS
Exploits0References1Affected Software1
Lenovo
Lenovo
added 2020/11/06 5:34 p.m.30 views

AMD Energy Driver for Linux Vulnerability (RAPL) - Lenovo Support US

No description provided...

5.5CVSS5.6AI score0.00462EPSS
Exploits0
Rows per page
Query Builder