Lucene search
K

16 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: vdpa: Added the featuresattr attribute to vdpanlpolicy for checking the nlattr length. The vdpanlpolicy structure is used to validate the nlattr when parsing incoming nlmsg. It ensures that the described attribute produces a vali...

7.8CVSS6.2AI score0.00197EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2023-3773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux kernel's IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges t...

5.5CVSS6.5AI score0.00237EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.25 views

Photon OS 5.0: Linux PHSA-2023-5.0-0101

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0101. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS7.6AI score0.54577EPSS
Exploits3References21
CBLMariner
CBLMariner
added 2024/06/12 10:23 p.m.21 views

CVE-2023-3773 affecting package hyperv-daemons for versions less than 5.15.158.1-1

CVE-2023-3773 affecting package hyperv-daemons for versions less than 5.15.158.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.6AI score0.00237EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/01/08 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-6549-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.6AI score0.09141EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2023/12/14 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-6534-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.6AI score0.09141EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2023/12/12 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-6549-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.6AI score0.09141EPSS
Exploits4References2
Ubuntu
Ubuntu
added 2023/12/05 11:21 p.m.97 views

USN-6534-1: Linux kernel vulnerabilities

It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2023-37453 Lin Ma...

8.8CVSS7AI score0.09141EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.104 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.1CVSS7.2AI score0.16642EPSS
Exploits5References72
Debian
Debian
added 2023/09/09 9:40 p.m.103 views

[SECURITY] [DSA 5492-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5492-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 09, 2023 https://www.debian.org/security/faq -...

7.8CVSS8.3AI score0.12405EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/09/08 12:0 a.m.44 views

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-330)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-330 advisory. A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. CVE-2023-20588 The fix for XSA-423 added logic to Linux'es netback...

7.8CVSS6.2AI score0.12405EPSS
Exploits3References167
NVD
NVD
added 2023/07/25 4:15 p.m.16 views

CVE-2023-3773

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.9AI score0.00237EPSS
Exploits0References5
OSV
OSV
added 2023/07/25 4:15 p.m.18 views

AZL-33496 CVE-2023-3773 affecting package hyperv-daemons for versions less than 5.15.158.1-1

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

4.4CVSS6.4AI score0.00237EPSS
Exploits0References1
OSV
OSV
added 2023/07/25 4:15 p.m.1 views

BELL-CVE-2023-3773 CVE-2023-3773 does not affect BellSoft software

Bulletin has no description...

4.4CVSS6.8AI score0.00237EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/25 3:47 p.m.10 views

CVE-2023-3773 Kernel: xfrm: out-of-bounds read of xfrma_mtimer_thresh nlattr

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.8AI score0.00237EPSS
Exploits0References3
CVE
CVE
added 2023/07/25 3:47 p.m.243 views

CVE-2023-3773

The CVE-2023-3773 entry describes a flaw in the Linux kernel’s XFRM (IP framework) where parsing netlink attributes can trigger a 4-byte out-of-bounds read of XFRMA_MTIMER_THRESH. This could allow a malicious user with CAP_NET_ADMIN to leak sensitive heap data to userspace. The provided descripti...

5.5CVSS6AI score0.00237EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder