Lucene search
K

70 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-34918

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nftseteleminit leading to a buffer overflow could be used by a local attacke...

7.8CVSS6.8AI score0.05496EPSS
Exploits16References2
VulnCheck KEV
VulnCheck KEV
added 2025/02/26 12:0 a.m.20 views

VulnCheck KEV: CVE-2022-34918

An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nftseteleminit leading to a buffer overflow could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. The attacker can obtain root access, but must start with...

7.8CVSS6.9AI score0.05496EPSS
Exploits16References1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.32 views

openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2022:2424-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.1AI score0.05496EPSS
Exploits13References2
Oracle linux
Oracle linux
added 2023/10/03 12:0 a.m.59 views

Unbreakable Enterprise kernel security update

4.1.12-124.79.2 - net/sched: clsroute: No longer copy tcfresult on update to avoid use-after-free valis Orabug: 35814273 CVE-2023-4206 - net/sched: schqfq: account for stab overhead in qfqenqueue Pedro Tammela Orabug: 35636291 CVE-2023-3611 - rds: Fix lack of reentrancy for connection reset with...

7.8CVSS7.1AI score0.05496EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2023/07/13 12:0 a.m.45 views

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2023-12590)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12590 advisory. 5.4.17-2136.321.4.el7 - tick/common: Align tick period during schedtimer setup Thomas Gleixner Orabug: 35520079 - net/rds: Fix endless rdssendxmit loo...

7.8CVSS7.3AI score0.05496EPSS
Exploits10References3
Amazon
Amazon
added 2023/06/27 12:0 a.m.76 views

Important: kernel

Issue Overview: It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted. CVE-2022-2586 A heap buffer overflow flaw was found in the Linux kernel's Netfilter subsystem in the way a user provides...

7.8CVSS6.9AI score0.12746EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.36 views

CBL Mariner 2.0 Security Update: kernel (CVE-2022-34918)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-34918 advisory. - An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nftseteleminit leading t...

7.8CVSS7AI score0.05496EPSS
Exploits16References2
Tenable Nessus
Tenable Nessus
added 2022/11/16 12:0 a.m.62 views

AlmaLinux 9 : kernel-rt (ALSA-2022:6582)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:6582 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

7.8CVSS6.8AI score0.05496EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2022/11/16 12:0 a.m.46 views

AlmaLinux 9 : kernel (ALSA-2022:6610)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:6610 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

7.8CVSS6.8AI score0.05496EPSS
Exploits10References3
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2415)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.05496EPSS
Exploits16References2
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2466)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.05871EPSS
Exploits25References2
Rapid7 Blog
Rapid7 Blog
added 2022/09/30 6:47 p.m.182 views

Metasploit Weekly Wrap-Up

Veritas Backup Exec Agent RCE This module kindly provided by c0rs targets the Veritas Backup Exec Agent in order to gain RCE as the system/root user. The exploit itself is actually a chain of 3 separate CVEs CVE-2021-27876, CVE-2021-27877 and CVE-2021-27878 which only makes it more impressive...

9CVSS0.99998EPSS
Exploits50
Metasploit
Metasploit
added 2022/09/28 7:51 p.m.162 views

Netfilter nft_set_elem_init Heap Overflow Privilege Escalation

An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nftseteleminit leading to a buffer overflow could be used by a local attacker to escalate privileges. The attacker can obtain root access, but must start with an unprivileged user namespace to obtain CAPNETADMIN...

7.8CVSS6.7AI score0.05496EPSS
Exploits10
0day.today
0day.today
added 2022/09/28 12:0 a.m.364 views

Netfilter nft_set_elem_init Heap Overflow Privilege Escalation Exploit

An issue was discovered in the Linux kernel through version 5.18.9. A type confusion bug in nftseteleminit leading to a buffer overflow could be used by a local attacker to escalate privileges. The attacker can obtain root access, but must start with an unprivileged user namespace to obtain...

7.8CVSS7.8AI score0.05496EPSS
Exploits10
Packet Storm
Packet Storm
added 2022/09/28 12:0 a.m.372 views

Netfilter nft_set_elem_init Heap Overflow Privilege Escalation

frozenstringliteral: true This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Netfilter nftseteleminit Heap Overflow Privilege Escalation', 'Description' = %q An issue was discovered in the Linux...

7.8CVSS1.2AI score0.05496EPSS
Exploits10
OpenVAS
OpenVAS
added 2022/09/26 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2348)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.05496EPSS
Exploits31References2
Tenable Nessus
Tenable Nessus
added 2022/09/22 12:0 a.m.50 views

Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9830)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9830 advisory. - posix-cpu-timers: Cleanup CPU timers before freeing them during exec Thadeu Lima de Souza Cascardo Orabug: 34495548 CVE-2022-2585 - netfilter:...

7.8CVSS7.4AI score0.12746EPSS
Exploits23References7
Tenable Nessus
Tenable Nessus
added 2022/09/22 12:0 a.m.33 views

Oracle Linux 9 : kernel (ELSA-2022-6610)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-6610 advisory. - lockdown: also lock down previous kgdb use Daniel Thompson Orabug: 34290418 CVE-2022-21499 - netfilter: nftables: sanitize nftsetdescconcatparse...

7.8CVSS6.8AI score0.05496EPSS
Exploits11References3
Tenable Nessus
Tenable Nessus
added 2022/09/21 12:0 a.m.68 views

RHEL 9 : kpatch-patch (RHSA-2022:6592)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6592 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fixe...

7.8CVSS7AI score0.05496EPSS
Exploits10References4
RedHat Linux
RedHat Linux
added 2022/09/20 1:37 p.m.53 views

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS6.9AI score0.05496EPSS
Exploits10References3
Rows per page
Query Builder