Lucene search
K

67 matches found

Vulnrichment
Vulnrichment
added 2024/09/27 12:35 p.m.16 views

CVE-2024-46804 drm/amd/display: Add array index check for hdcp ddc access

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access Why Coverity reports OVERRUN warning. Do not check if array index valid. How Check msgid valid and valid array index...

7AI score0.00245EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/09/27 12:35 p.m.13 views

CVE-2024-46804 drm/amd/display: Add array index check for hdcp ddc access

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access Why Coverity reports OVERRUN warning. Do not check if array index valid. How Check msgid valid and valid array index...

0.00245EPSS
Exploits0References6
CVE
CVE
added 2024/09/27 12:35 p.m.125 views

CVE-2024-46804

CVE-2024-46804 affects the Linux kernel’s DRM/AMD display path, specifically HDCP DDC access. The vulnerability stems from an array index overrun due to not validating the index, which could lead to overrun/W earlier reports. The fix adds proper checks: validate the message id (msg_id) and ensure...

7.8CVSS7.4AI score0.00245EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2024/09/04 6:56 p.m.19 views

CVE-2024-44967 drm/mgag200: Bind I2C lifetime to DRM device

In the Linux kernel, the following vulnerability has been resolved: drm/mgag200: Bind I2C lifetime to DRM device Managed cleanup with devmaddactionorreset will release the I2C adapter when the underlying Linux device goes away. But the connector still refers to it, so this cleanup leaves behind a...

7.8CVSS6AI score0.00218EPSS
Exploits0References8
Citrix
Citrix
added 2024/07/13 12:0 a.m.7 views

Error: XDDS:F26A2921 Studio Cannot Contact DDC

After a failed upgrade for StoreFront 2.5 and while repairing StoreFront, Studio lost communication to the DDC. Details Error Id: XDDS:F26A2921 Exception: Citrix.Console.Common.CitrixAggregateException One or more parallel operations failed at Citrix.Console.Common.CitrixParallel.InternalForEachT...

7.2AI score
Exploits0
SUSE CVE
SUSE CVE
added 2024/05/23 2:57 a.m.5 views

SUSE CVE-2023-52773

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a NULL pointer dereference in amdgpudmi2cxfer When ddcserviceconstruct is called, it explicitly checks both the link type and whether there is something on the link which will dictate whether the pin is marke...

4.1CVSS6.3AI score0.00236EPSS
Exploits0References13
NVD
NVD
added 2024/05/22 4:15 p.m.18 views

CVE-2024-33227

An issue in the component ddcdrv.sys of Nicomsoft WinI2C/DDC v3.7.4.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

8.8CVSS7.6AI score0.0047EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/22 3:19 p.m.10 views

CVE-2024-33227

An issue in the component ddcdrv.sys of Nicomsoft WinI2C/DDC v3.7.4.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

8AI score0.0047EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/22 3:19 p.m.21 views

CVE-2024-33227

An issue in the component ddcdrv.sys of Nicomsoft WinI2C/DDC v3.7.4.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

7.6AI score0.0047EPSS
Exploits0References1
CVE
CVE
added 2024/05/22 3:19 p.m.89 views

CVE-2024-33227

Summary: CVE-2024-33227 affects Nicomsoft WinI2C/DDC (v3.7.4.0) via the ddcdrv.sys component. The root cause is a vulnerability in ddcdrv.sys that allows escalation of privileges and arbitrary code execution when crafted IOCTL requests are sent. The CVSS data indicates a HIGH-severity issue with ...

8.8CVSS7.9AI score0.0047EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/22 12:0 a.m.5 views

PT-2024-25163 · Nicomsoft · Nicomsoft Wini2C/Ddc

Name of the Vulnerable Software and Affected Versions: Nicomsoft WinI2C/DDC version 3.7.4.0 Description: An issue in the component ddcdrv.sys allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests. Recommendations: For version 3.7.4.0, consider...

8.8CVSS8.3AI score0.0047EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/05/22 12:0 a.m.6 views

Nicomsoft WinI2C/DDC 安全漏洞

Nicomsoft WinI2C/DDC is a professional tool from Nicomsoft that allows you to control display devices via the DDC/CI protocol in a Windows environment. A security vulnerability exists in Nicomsoft WinI2C/DDC version v3.7.4.0, which originates from a security flaw in the component ddcdrv.sys. The...

8.8CVSS7.5AI score0.0047EPSS
Exploits0References2
OSV
OSV
added 2024/05/21 4:15 p.m.9 views

UBUNTU-CVE-2023-52773

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a NULL pointer dereference in amdgpudmi2cxfer When ddcserviceconstruct is called, it explicitly checks both the link type and whether there is something on the link which will dictate whether the pin is marke...

5.5CVSS5.7AI score0.00236EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/05/08 12:0 a.m.4 views

Lunar 安全漏洞

Lunar is a tool that uses the DDC protocol to change the hardware brightness of a monitor. A security vulnerability exists in Lunar versions 6.0.2 through 6.6.0 that originates from a vulnerability that allows an attacker to perform auxiliary process injection into the Lunar application and abuse...

7.7CVSS7AI score0.00259EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/07 12:0 a.m.7 views

Lunar 资源管理错误漏洞

Lunar is a tool that uses the DDC protocol to change the hardware brightness of a monitor. A resource management error vulnerability exists in Lunar versions 6.0.2 through 6.6.0 that originates from a vulnerability that allows an attacker to perform auxiliary process injection into the Lunar...

7.5CVSS7AI score0.00672EPSS
Exploits0References2
OSV
OSV
added 2024/01/29 2:15 p.m.2 views

CVE-2024-1014

Uncontrolled resource consumption vulnerability in SE-elektronic GmbH E-DDC3.3 affecting versions 03.07.03 and higher. An attacker could interrupt the availability of the administration panel by sending multiple ICMP packets...

7.5CVSS5.8AI score0.01446EPSS
Exploits1References2
Citrix
Citrix
added 2024/01/22 12:0 a.m.9 views

Studio will not open with error "A working 'Storefront' service could not be found"

Storefront is installed on the DDC. After successfully upgrading both Storefront servers to CVAD 2203 CU3, Studio fails to open with the following error. After clicking on "View Details" another error appears: "A working 'Storefront' service could not be found" Error Id: XDDS:E354580F Exception:...

6.9AI score
Exploits0
Citrix
Citrix
added 2024/01/10 12:0 a.m.27 views

DDC 2203 - How to manually remove the stale DDC from Database

Old removed DDC is listed under Zones alongside the two current DDCs. "Get-BrokerController" and database table 'chbConfig.Controllers' shows working DDCs...

7.2AI score
Exploits0
Citrix
Citrix
added 2023/12/08 12:0 a.m.6 views

Configuration logging display language not localized

The default language for the Web Studio configuration logging is English. To change the language, configure the Cloud-DDC locale instead of adjusting the language settings in the web browser...

7.2AI score
Exploits0
Citrix
Citrix
added 2023/12/05 12:0 a.m.10 views

Citrix Server Idle Timer Policy does not take effect for Server VDA

Citrix Server Idle Timer Policy does not take effect for All Server VDA ConfigureServer Idle Timer Policy Interval on 2203CU1 DDC for all the Server VDA , but after reach time limit , there is no expected Idle windows pop up...

7.1AI score
Exploits0
Rows per page
Query Builder