Lucene search
+L

23 matches found

nessus
nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-39685

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In various setup methods of the USB gadget subsystem, there is a possible out of bounds write due to an incorrect flag check. This could lead to local escalatio...

7.8CVSS6.7AI score0.00461EPSS
Exploits2References2
githubexploit
githubexploit
added 2023/08/06 10:1 a.m.323 views

Exploit for Out-of-bounds Write in Google Android

android-gadget Summary Certain revisions of the Linux ker...

7.8CVSS6.2AI score0.00461EPSS
Exploits2
susecve
susecve
added 2023/02/15 3:38 a.m.4 views

SUSE CVE-2021-39685

In various setup methods of the USB gadget subsystem, there is a possible out of bounds write due to an incorrect flag check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.8CVSS7AI score0.00461EPSS
Exploits2References12
openvas
openvas
added 2022/08/26 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-5505-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS8.1AI score0.06451EPSS
Exploits9References2
openvas
openvas
added 2022/08/26 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-5513-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS8.1AI score0.06451EPSS
Exploits9References2
nessus
nessus
added 2022/07/15 12:0 a.m.48 views

EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2022-2026)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device...

9CVSS7.3AI score0.89063EPSS
Exploits126References31
openvas
openvas
added 2022/05/05 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1607)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS7.3AI score0.05918EPSS
Exploits11References4
nessus
nessus
added 2022/04/20 12:0 a.m.62 views

EulerOS 2.0 SP10 : kernel (EulerOS-SA-2022-1489)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Rogue backends can cause DoS of guests via high frequency events This CNA information record relates to multiple CVEs; the text explains which...

7.8CVSS6.8AI score0.01747EPSS
Exploits6References14
openvas
openvas
added 2022/04/20 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1489)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.01747EPSS
Exploits6References2
ubuntu
ubuntu
added 2022/04/06 9:21 p.m.144 views

USN-5368-1: Linux kernel vulnerabilities

It was discovered that the BPF verifier in the Linux kernel did not properly restrict pointer types in certain situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-23222 It was discovered that the network traffic contro...

9.1CVSS7.8AI score0.67994EPSS
Exploits29
openvas
openvas
added 2022/03/23 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-5337-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.5AI score0.67994EPSS
Exploits26References2
nessus
nessus
added 2022/03/23 12:0 a.m.58 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9245)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9245 advisory. - lib/ioviter: initialize 'flags' in new pipebuffer Max Kellermann Orabug: 33942325 CVE-2022-0847 - arm64: Use the clearbhb instruction in...

9CVSS7.3AI score0.89063EPSS
Exploits122References11
osv
osv
added 2022/03/16 3:15 p.m.11 views

CVE-2021-39685

In various setup methods of the USB gadget subsystem, there is a possible out of bounds write due to an incorrect flag check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.8CVSS8AI score
Exploits0References2
cve
cve
added 2022/03/16 2:4 p.m.278 views

CVE-2021-39685

CVE-2021-39685 affects the Linux kernel USB Gadget subsystem, with an out-of-bounds write caused by an incorrect flag check in several gadget setups. The issue allows local privilege escalation (no user interaction required) and can lead to information disclosure or DoS as described in upstream n...

7.8CVSS7.9AI score0.00461EPSS
Exploits2References1Affected Software1
openvas
openvas
added 2022/02/23 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5297-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.02579EPSS
Exploits7References2
ubuntu
ubuntu
added 2022/02/18 12:35 a.m.148 views

USN-5294-1: Linux kernel vulnerabilities

It was discovered that the Packet network protocol implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-22600 Szymon Heidrich discovered that the USB Gadget...

7.8CVSS7.4AI score0.05918EPSS
Exploits9
openvas
openvas
added 2022/02/18 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-5294-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.05918EPSS
Exploits9References4
openvas
openvas
added 2022/02/12 12:0 a.m.27 views

openSUSE: Security Advisory for the (openSUSE-SU-2022:0370-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9CVSS7.4AI score0.67994EPSS
Exploits13References4
openvas
openvas
added 2022/02/12 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2022:0370-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.3AI score0.67994EPSS
Exploits13References4
ubuntu
ubuntu
added 2022/02/09 2:16 a.m.137 views

USN-5278-1: Linux kernel (OEM) vulnerabilities

It was discovered that the rlimit tracking for user namespaces in the Linux kernel did not properly perform reference counting, leading to a use-after- free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2022-24122 It was...

7.8CVSS7.4AI score0.05918EPSS
Exploits18
Rows per page
Query Builder