Lucene search
K

72 matches found

nessus
nessus
added 2026/03/18 12:0 a.m.64 views

Windows Speculative Execution Configuration Check - Intel BHI (CVE-2022-0001)

Binary data microsoftwindowsspecexecutionCVE-2022-0001.nbin...

6.5CVSS6.6AI score0.00508EPSS
Exploits0References4
nessus
nessus
added 2025/03/05 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2022-0001

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Non-transparent sharing of branch predictor selectors between contexts in some IntelR Processors may allow an authorized user to potentially enable information...

6.5CVSS6.7AI score0.00508EPSS
Exploits0References3
openvas
openvas
added 2024/07/04 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-6866-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.08555EPSS
Exploits0References2
nessus
nessus
added 2024/07/04 12:0 a.m.160 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6868-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6868-1 advisory. Sander Wiebing, Alvise de Faveri Tron, Herbert Bos, and Cristiano Giuffrida discovered that the Linux kernel mitigations for the initial Bran...

6.5CVSS7.5AI score0.08555EPSS
Exploits0References4
ubuntu
ubuntu
added 2024/07/03 11:4 p.m.57 views

USN-6868-1: Linux kernel vulnerabilities

Sander Wiebing, Alvise de Faveri Tron, Herbert Bos, and Cristiano Giuffrida discovered that the Linux kernel mitigations for the initial Branch History Injection vulnerability CVE-2022-0001 were insufficient for Intel processors. A local attacker could potentially use this to expose sensitive...

5.5CVSS7.2AI score0.08555EPSS
Exploits0
openvas
openvas
added 2024/05/21 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-6766-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.78388EPSS
Exploits2References2
nessus
nessus
added 2024/05/11 12:0 a.m.40 views

RHEL 6 : hw (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - hw: cpu: AMD: RetBleed Arbitrary Speculative Code Execution with Return Instructions CVE-2022-29900 - hw:...

8.1AI score0.08555EPSS
Exploits1References13
nessus
nessus
added 2024/05/11 12:0 a.m.39 views

RHEL 7 : hw (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - hw: cpu: intel: Intra-Mode BTI CVE-2022-0002 - hw: Intel: Improper restriction in memory buffer in graphi...

8.3AI score0.01231EPSS
Exploits1References5
mscve
mscve
added 2024/04/09 7:0 a.m.122 views

Intel: CVE-2022-0001 Branch History Injection

This CVE was assigned by Intel. Please see CVE-2022-0001 on CVE.org for more information...

6.5CVSS7.6AI score0.00508EPSS
Exploits0
cert
cert
added 2024/04/09 12:0 a.m.94 views

Linux kernel on Intel systems is susceptible to Spectre v2 attacks

Overview A new cross-privilege Spectre v2 vulnerability that impacts modern CPU architectures supporting speculative execution has been discovered. CPU hardware utilizing speculative execution that are vulnerable to Spectre v2 branch history injection BHI are likely affected. An unauthenticated...

6.5CVSS7AI score0.08555EPSS
Exploits0References6
amazon
amazon
added 2023/03/22 12:0 a.m.31 views

Important: kernel

Issue Overview: AMD recommends using a software mitigation for this issue, which the kernel is enabling by default. The Linux kernel will use the generic retpoline software mitigation, instead of the specialized AMD one, on AMD instances 5a. This is done by default, and no administrator action is...

9.1CVSS5AI score0.89063EPSS
Exploits197
openvas
openvas
added 2022/09/26 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2348)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.05496EPSS
Exploits31References2
hackerone
hackerone
added 2022/09/02 10:36 p.m.68 views

Internet Bug Bounty: Airflow Daemon Mode Insecure Umask Privilege Escalation

Apache Airflow prior to 2.3.4 had multiple components with an insecure daemon umask of 0, resulting in critical files and directories to be world writable. As such, any local user can infer Airflow to process specially crafted input and ultimately perform a privilege escalation to user executing...

1CVSS5.9AI score0.00593EPSS
Exploits0
openvas
openvas
added 2022/07/29 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2159)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.0155EPSS
Exploits7References2
openvas
openvas
added 2022/07/08 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1969)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.02913EPSS
Exploits14References2
nessus
nessus
added 2022/05/24 12:0 a.m.88 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2022-023 (ALASKERNEL-5.4-2022-023)

The version of kernel installed on the remote host is prior to 5.4.181-99.354. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2022-023 advisory. AMD recommends using a software mitigation for this issue, which the kernel is enabling by default. The Lin...

9CVSS6.9AI score0.67994EPSS
Exploits2References50
almalinux
almalinux
added 2022/05/10 8:11 a.m.73 views

Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fget: check that the fd still exists after getting a ref to it CVE-2021-4083 kernel: avoid cyclic entity chains due to malformed USB descriptors CVE-2020-0404 kernel: speculation on...

9.8CVSS8.4AI score0.74041EPSS
Exploits23References39
openvas
openvas
added 2022/05/10 12:0 a.m.24 views

Slackware: Security Advisory (SSA:2022-129-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.3AI score0.06197EPSS
Exploits37References2
slackware
slackware
added 2022/05/09 9:58 p.m.97 views

[slackware-security] Slackware 15.0 kernel

New kernel packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/linux-5.15.38/: Upgraded. These updates fix various bugs and security issues. Be sure to upgrade your initrd after upgrading the kernel packages. I...

9.1CVSS0.1AI score0.06197EPSS
Exploits37
nessus
nessus
added 2022/05/02 12:0 a.m.78 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2022-011 (ALASKERNEL-5.10-2022-011)

The version of kernel installed on the remote host is prior to 5.10.102-99.473. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2022-011 advisory. AMD recommends using a software mitigation for this issue, which the kernel is enabling by default. The...

9CVSS7.2AI score0.89063EPSS
Exploits103References96
Rows per page
Query Builder