Lucene search
K

33 matches found

OSV
OSV
added 2020/09/14 4:12 p.m.7 views

SUSE-SU-2020:2629-1 Security update for shim

This update for shim fixes the following issues: This update addresses the 'BootHole' security issue master CVE CVE-2020-10713, by disallowing binaries signed by the previous SUSE UEFI signing key from booting. This update should only be installed after updates of grub2, the Linux kernel and if...

8.2CVSS8AI score0.01068EPSS
Exploits0References11
NVD
NVD
added 2020/07/30 6:15 p.m.17 views

CVE-2020-7205

A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arbitrary code execution during the boot process. Note: This vulnerability is related to using insmod...

7.2CVSS6.6AI score0.00404EPSS
Exploits0References1
OSV
OSV
added 2020/07/30 6:15 p.m.3 views

CVE-2020-7205

A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arbitrary code execution during the boot process. Note: This vulnerability is related to using insmod...

6.7CVSS7AI score0.00404EPSS
Exploits0References1
Prion
Prion
added 2020/07/30 6:15 p.m.26 views

Information disclosure

A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arbitrary code execution during the boot process. Note: This vulnerability is related to using insmod...

7.2CVSS6.6AI score0.00404EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2020/07/30 5:27 p.m.91 views

CVE-2020-7205

CVE-2020-7205 affects HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting Toolkit. The root cause is insmod usage in GRUB2, enabling local code execution during the boot process. The issue is mitigated by HPE GRUB2 patches included in updated boot images (Intelligent Provis...

7.2CVSS6.6AI score0.00404EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/07/30 5:27 p.m.25 views

CVE-2020-7205

A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arbitrary code execution during the boot process. Note: This vulnerability is related to using insmod...

6.6AI score0.00404EPSS
Exploits0References1
CERT
CERT
added 2020/07/29 12:0 a.m.92 views

GRUB2 bootloader is vulnerable to buffer overflow

Overview The GRUB2 boot loader is vulnerable to buffer overflow, which results in arbitrary code execution during the boot process, even when Secure Boot is enabled. Description GRUB2 is a multiboot boot loader that replaced GRUB Legacy in 2012. A boot loader is the first program that runs upon...

8.2CVSS8.6AI score0.01068EPSS
Exploits0References6
Microsoft KB
Microsoft KB
added 2020/02/11 8:0 a.m.241 views

KB4535680: Security update for Secure Boot DBX: January 12, 2021

KB4535680: Security update for Secure Boot DBX: January 12, 2021 IMPORTANT This article is superseded by KB5012170: Security update for Secure Boot DBX. Applies to This security update applies only to the following Windows versions: Windows Server 2012 x64-bit Windows Server 2012 R2 x64-bit Windo...

6.7CVSS6.6AI score0.01039EPSS
Exploits0
Fedora
Fedora
added 2016/08/19 2:26 a.m.30 views

[SECURITY] Fedora 25 Update: dbxtool-7-2.fc25

This package contains DBX updates for UEFI Secure Boot...

4.9CVSS6.1AI score0.05008EPSS
Exploits0
CVE
CVE
added 2005/06/21 4:0 a.m.50 views

CVE-2002-1776

Symantec Norton AntiVirus 2002 is affected by CVE-2002-1776. The issue allows remote attackers to bypass virus protection via a Word Macro virus with a .nch or .dbx extension, which is automatically recognized and executed as a Microsoft Office document. The vendor disputes the claim, noting that...

7.5CVSS7AI score0.02574EPSS
Exploits0References4Affected Software1
exploitpack
exploitpack
added 2004/12/20 12:0 a.m.10 views

AIX 5.1 5.3 - paginit Local Stack Overflow

AIX 5.1 5.3 - paginit Local Stack Overflow / exploit for /usr/bin/paginit tested on: AIX 5.2 if the exploit fails it's because the shellcode ends up at a different address. use dbx to check, and change RETADDR accordingly. cees-bart / define RETADDR 0x2ff22c90 char shellcode = "\x7c\xa5\x2a\x79"...

0.6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2002/12/31 12:0 a.m.4 views

PT-2002-2498 · Symantec +1 · Symantec Norton Antivirus +1

Name of the Vulnerable Software and Affected Versions: Symantec Norton AntiVirus version 2002 Description: The issue allows remote attackers to bypass virus protection via a Word Macro virus with a .nch or .dbx extension, which is automatically recognized and executed as a Microsoft Office...

7.5CVSS7.2AI score0.02574EPSS
Exploits0References8
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.11 views

UEFI_DBX_Block_06112020

This detectiod is for the Kaspersky release for 08B of 2020...

2.5AI score
Exploits0
Rows per page
Query Builder