Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2334 matches found

UbuntuCve
UbuntuCveadded 2019/08/29 1:15 a.m.100 views

CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS6.8AI score0.91212EPSS
Exploits0References3
CVE
CVEadded 2019/08/29 12:26 a.m.330 views

CVE-2019-11248

CVE-2019-11248 describes exposure of the Go pprof debugging endpoint at /debug/pprof on the unauthenticated Kubelet healthz port. The connected nuclei template confirms the issue: the pprof endpoint is exposed via the Kubelet healthz port, potentially leaking internal Kubelet memory addresses and...

8.2CVSS6.9AI score0.91212EPSS
In wildExploits0References3Affected Software1
Cvelist
Cvelistadded 2019/08/29 12:26 a.m.31 views

CVE-2019-11248 Kubernetes kubelet exposes /debug/pprof info on healthz port

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

6.5CVSS7.9AI score0.91212EPSS
Exploits0References3
FireEye
FireEyeadded 2019/08/29 12:0 a.m.106 views

Definitive Dossier of Devilish Debug Details – Part One: PDB Paths and Malware

Have you ever wondered what goes through the mind of a malware author? How they build their tools? How they organize their development projects? What kind of computers and software they use? We took a stab and answering some of those questions by exploring malware debug information. We find that...

6.2AI score
Exploits0References43
IBM Security Bulletins
IBM Security Bulletinsadded 2019/08/19 3:22 p.m.33 views

Security Bulletin: IBM Cloud Kubernetes Service is affected by Kubernetes security vulnerability (CVE-2019-11248)

Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in the Kubelet healthz port that exposes the debugging endpoint on localhost CVE-2019-11248 Vulnerability Details CVE-ID: CVE-2019-11248 Description: Kubernetes could allow a remote attacker to obtain sensitive...

8.2CVSS7.7AI score0.91212EPSS
Exploits0Affected Software1
OPENSUSE Linux
OPENSUSE Linuxadded 2019/08/16 12:0 a.m.394 views

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2019:1923-1 Rating: important References: 1051510 1055117 1071995 1083647 1083710 1085030 1086103 1102247 1103991 1103992 1104745 1106061 1109837 1111666 1112374 1114279 1119222 1123959 1127034 1127315...

7.8CVSS7.3AI score0.19224EPSS
Exploits5References105
Positive Technologies
Positive Technologiesadded 2019/08/13 12:0 a.m.3 views

PT-2019-12214

Name of the Vulnerable Software and Affected Versions Kubernetes versions prior to 1.15.0 Kubernetes versions prior to 1.14.4 Kubernetes versions prior to 1.13.8 Kubernetes versions prior to 1.12.10 Description The issue concerns the exposure of the debugging endpoint "/debug/pprof" over the...

8.2CVSS7.1AI score0.91212EPSS
Exploits3References31
Tenable Nessus
Tenable Nessusadded 2019/08/12 12:0 a.m.49 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2019-4739)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-4739 advisory. - Input: gtco - bounds check collection indent level Grant Hernandez Orabug: 30074413 CVE-2019-13631 Tenable has extracted the preceding description block...

6.8CVSS7AI score0.0002EPSS
Exploits0References2
Veracode
Veracodeadded 2019/08/08 12:52 a.m.37 views

Information Disclosure

github.com/kubernetes/kubernetes is vulnerable to information disclosure. The vulnerability exists as the debugging endpoint debug/pprof is exposed over the unauthenticated healthz port...

8.2CVSS0.9AI score0.91212EPSS
Exploits0References6Affected Software1
exploitpack
exploitpackadded 2019/08/01 12:0 a.m.33 views

SilverSHielD 6.x - Local Privilege Escalation

SilverSHielD 6.x - Local Privilege Escalation This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Exploit Title: extenua SilverSHielD 6.x local priviledge escalation Google Dork: na Date: 31 Jul 2019 Exploit Author: Ian...

7.2CVSS1AI score0.00082EPSS
Exploits3
OSV
OSVadded 2019/07/24 1:15 p.m.2 views

CVE-2019-1010180

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...

7.8CVSS7.8AI score
Exploits0References7
UbuntuCve
UbuntuCveadded 2019/07/24 1:15 p.m.28 views

CVE-2019-1010180

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...

7.8CVSS6.8AI score0.00288EPSS
Exploits1References1
OSV
OSVadded 2019/07/24 1:15 p.m.0 views

UBUNTU-CVE-2019-1010180

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...

7.8CVSS6.8AI score0.00288EPSS
Exploits1References2
AlpineLinux
AlpineLinuxadded 2019/07/24 1:15 p.m.27 views

CVE-2019-1010180

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...

7.8CVSS5.8AI score0.00288EPSS
Exploits1
Prion
Prionadded 2019/07/24 1:15 p.m.24 views

Buffer overflow

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...

6.8CVSS7.7AI score0.00288EPSS
Exploits1References7Affected Software2
Debian CVE
Debian CVEadded 2019/07/24 12:1 p.m.28 views

CVE-2019-1010180

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...

7.8CVSS6.7AI score0.00288EPSS
Exploits1
CVE
CVEadded 2019/07/24 12:1 p.m.249 views

CVE-2019-1010180

Technical details about CVE-2019-1010180 (GNU gdb) are not publicly provided in the supplied documents; no explicit affected versions, root cause, or fixes are stated beyond 'fixed version: Not fixed yet.' Monitor for updates.

7.8CVSS7.7AI score0.00288EPSS
Exploits1References7Affected Software1
NVD
NVDadded 2019/07/17 7:15 p.m.13 views

CVE-2019-13631

In parsehidreportdescriptor in drivers/input/tablet/gtco.c in the Linux kernel through 5.2.1, a malicious USB device can send an HID report that triggers an out-of-bounds write during generation of debugging messages...

6.8CVSS6.9AI score0.0002EPSS
Exploits0References19
Github Security Blog
Github Security Blogadded 2019/07/17 7:14 p.m.46 views

System.Management.Automation subject to bypass via script debugging

Microsoft Security Advisory CVE-2019-1167: Windows Defender Application Control Security Feature Bypass Vulnerability Microsoft Security Advisory CVE-2019-1167: Windows Defender Application Control Security Feature Bypass Vulnerability Executive Summary A security feature bypass vulnerability...

4.1CVSS0.2AI score0.00416EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVEadded 2019/07/17 6:11 p.m.33 views

CVE-2019-13631

In parsehidreportdescriptor in drivers/input/tablet/gtco.c in the Linux kernel through 5.2.1, a malicious USB device can send an HID report that triggers an out-of-bounds write during generation of debugging messages...

6.8CVSS7.5AI score0.0002EPSS
Exploits0
Rows per page
Query Builder