Lucene search
+L

32 matches found

nessus
nessus
added 2025/02/25 12:0 a.m.7 views

Siemens SIMATIC Devices Linux Kernel Exposure of Resource to Wrong Sphere (CVE-2022-40768)

drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stexqueuecommandlck lacks a memset for the PASSTHRUCMD case. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for mo...

5.5CVSS6.5AI score0.0028EPSS
Exploits0References4
nessus
nessus
added 2023/12/27 12:0 a.m.23 views

NewStart CGSL MAIN 6.02 : kernel Multiple Vulnerabilities (NS-SA-2023-0059)

The remote NewStart CGSL host, running version MAIN 6.02, has kernel packages installed that are affected by multiple vulnerabilities: - A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of...

9CVSS6.9AI score0.67994EPSS
Exploits8References21
nessus
nessus
added 2023/03/28 12:0 a.m.39 views

CBL Mariner 2.0 Security Update: kernel (CVE-2022-40768)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-40768 advisory. - drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information fr...

5.5CVSS6.6AI score0.0028EPSS
Exploits0References2
cbl_mariner
cbl_mariner
added 2022/12/19 8:13 p.m.17 views

CVE-2022-40768 affecting package kernel for versions less than 5.15.82.1-1

CVE-2022-40768 affecting package kernel for versions less than 5.15.82.1-1. A patched version of the package is available...

5.5CVSS7.4AI score0.0028EPSS
Exploits0
nessus
nessus
added 2022/12/08 12:0 a.m.41 views

OracleVM 3.4 : kernel-uek (OVMSA-2022-0031)

The remote OracleVM system is missing necessary patches to address security updates: - In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and unmounting can lead to a use-after-free in btrfsqueuework in fs/btrfs/async-thread.c. CVE-2019-19377 - Ther...

7.8CVSS5.4AI score0.034EPSS
Exploits7References17
oraclelinux
oraclelinux
added 2022/12/06 12:0 a.m.54 views

Unbreakable Enterprise kernel security update

4.1.12-124.69.5 - x86/smpboot: check cpuinitializedmask first after returning from schedule Dongli Zhang Orabug: 34798594 4.1.12-124.69.4 - btrfs: Remove BUGON as it is causing kernel to panic Rhythm Mahajan Orabug: 34840579 4.1.12-124.69.3 - btrfs: fix missing return for a non-void function...

7.8CVSS7AI score0.034EPSS
Exploits7
nessus
nessus
added 2022/12/02 12:0 a.m.107 views

Amazon Linux 2 : kernel, --advisory ALAS2-2022-1876 (ALAS-2022-1876)

The version of kernel installed on the remote host is prior to 4.14.296-222.539. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1876 advisory. In the Linux kernel, the following vulnerability has been resolved: inet: fully convert sk-skrxdst to RCU rules...

8CVSS4.6AI score0.02211EPSS
Exploits1References69
openvas
openvas
added 2022/12/02 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-5758-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.02211EPSS
Exploits4References2
openvas
openvas
added 2022/11/30 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-5728-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.04831EPSS
Exploits7References2
openvas
openvas
added 2022/11/30 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2022:4273-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.02211EPSS
Exploits4References35
nessus
nessus
added 2022/11/29 12:0 a.m.37 views

Ubuntu 18.04 LTS : Linux kernel (GCP) vulnerabilities (USN-5728-3)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5728-3 advisory. Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential...

8.8CVSS7.5AI score0.04831EPSS
Exploits7References12
openvas
openvas
added 2022/11/21 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-5728-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.04831EPSS
Exploits7References2
nessus
nessus
added 2022/11/19 12:0 a.m.34 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-5728-2)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5728-2 advisory. Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading t...

8.8CVSS7.5AI score0.04831EPSS
Exploits7References12
ubuntu
ubuntu
added 2022/11/17 12:57 a.m.290 views

USN-5728-1: Linux kernel vulnerabilities

Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-427...

8.8CVSS7.1AI score0.04831EPSS
Exploits7
openvas
openvas
added 2022/11/17 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-5727-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.00443EPSS
Exploits2References2
openvas
openvas
added 2022/11/17 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-5729-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.00405EPSS
Exploits2References2
amazon
amazon
added 2022/11/09 12:0 a.m.7 views

Important: kernel

Issue Overview: A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function securityinodealloc to fail with following call to function nilfsmdtdestroy. A local user could use this flaw to crash the system or potentially escalate their privileges on the...

7.8CVSS5.3AI score0.01218EPSS
Exploits0
amazon
amazon
added 2022/11/09 12:0 a.m.3 views

Medium: kernel

Issue Overview: drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stexqueuecommandlck lacks a memset for the PASSTHRUCMD case. CVE-2022-40768 Affected Packages: kernel Note: This advisory is applicable to Amazon...

7.5CVSS6.1AI score0.21314EPSS
Exploits0
nessus
nessus
added 2022/11/09 12:0 a.m.129 views

Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-010)

The version of kernel installed on the remote host is prior to 5.15.75-48.135. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2022-010 advisory. drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information...

7.5CVSS6.6AI score0.21314EPSS
Exploits0References8
openvas
openvas
added 2022/10/27 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:3775-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.12746EPSS
Exploits17References4
Rows per page
Query Builder