Lucene search
K

167 matches found

Prion
Prion
added 2018/11/27 4:29 p.m.18 views

Double free

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, freeing device memory in driver probe failure will result in double free issue in power module...

4.6CVSS8.1AI score0.00169EPSS
Exploits0References2
Prion
Prion
added 2018/06/26 4:29 p.m.16 views

Input validation

U-Boot contains a CWE-20: Improper Input Validation vulnerability in Verified boot signature validation that can result in Bypass verified boot. This attack appear to be exploitable via Specially crafted FIT image and special device memory functionality...

4.3CVSS5.4AI score0.00713EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/06/26 4:29 p.m.2 views

DEBIAN-CVE-2018-1000205

U-Boot contains a CWE-20: Improper Input Validation vulnerability in Verified boot signature validation that can result in Bypass verified boot. This attack appear to be exploitable via Specially crafted FIT image and special device memory functionality...

5.5CVSS6.8AI score0.00713EPSS
Exploits0References1
NVD
NVD
added 2018/02/15 4:29 p.m.32 views

CVE-2017-17186

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a DoS vulnerability. Due to insufficient input validation, an authenticated, remote...

5.5CVSS5.4AI score0.0061EPSS
Exploits0References1
NVD
NVD
added 2018/01/18 6:29 a.m.20 views

CVE-2018-0088

A vulnerability in one of the diagnostic test CLI commands on Cisco Industrial Ethernet 4010 Series Switches running Cisco IOS Software could allow an authenticated, local attacker to impact the stability of the device. This could result in arbitrary code execution or a denial of service DoS...

7.2CVSS7.2AI score0.0039EPSS
Exploits0References2
0day.today
0day.today
added 2017/12/22 12:0 a.m.100 views

Cisco IOS 12.2 < 12.4 / 15.0 < 15.6 - Security Association Negotiation Request Device Memory E

Exploit for hardware platform in category remote exploits !/usr/bin/python -- coding: utf8 -- import socket from scapy.all import --------------------------- Requirements: $ sudo pip install scapy --------------------------- conf.verb = 0 RCVSIZE = 2548 TIMEOUT = 6 payload =...

5CVSS7.8AI score0.87687EPSS
Exploits7
Prion
Prion
added 2017/11/22 7:29 p.m.20 views

Design/Logic Flaw

AC6005 with software V200R006C10, AC6605 with software V200R006C10 have a DoS Vulnerability. An attacker can send malformed packets to the device, which causes the device memory leaks, leading to DoS attacks...

5CVSS7.5AI score0.00935EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.9 views

The vulnerability of the Linux operating system, which allows a hacker to read from or write to memory cells in the kernel.

The vulnerability of the Linux kernel’s memory subsystem is related to access control deficiencies. Exploiting this vulnerability allows an attacker, operating locally, to read from or write to memory cells in the first megabyte of the kernel’s memory, thereby circumventing access restrictions...

7.8CVSS6.4AI score0.00308EPSS
Exploits0References38Affected Software5
BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.9 views

The vulnerability of the Windows operating system’s kernel allows a hacker to execute code within the context of a privileged process.

The vulnerability of the Windows operating system’s kernel is related to improper data handling in the device’s memory. Exploiting this vulnerability allows a local attacker to execute code within the context of a privileged process...

7.2CVSS7.5AI score0.02341EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2017/05/03 7:59 p.m.23 views

CVE-2017-7995

Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after accessing them, allowing host PCI device space memory reads, leading to information disclosure. This is an error in the getuser function. NOTE: the upstream Xen Project considers versions before 4.5.x to be EOL...

3.8CVSS6.2AI score0.00368EPSS
Exploits0References3
OSV
OSV
added 2017/04/17 12:59 a.m.2 views

DEBIAN-CVE-2017-7889

The mm subsystem in the Linux kernel through 3.2 does not properly enforce the CONFIGSTRICTDEVMEM protection mechanism, which allows local users to read or write to kernel memory locations in the first megabyte and bypass slab-allocation access restrictions via an application that opens the...

7.8CVSS7.6AI score0.00308EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2017/03/17 12:0 a.m.81 views

Cisco IOS 12.2 &lt; 12.4 / 15.0 &lt; 15.6 - Security Association Negotiation Request Device Memory

!/usr/bin/python -- coding: utf8 -- import socket from scapy.all import --------------------------- Requirements: $ sudo pip install scapy --------------------------- conf.verb = 0 RCVSIZE = 2548 TIMEOUT = 6 payload = '5\xc7\x07\xdf\xed\xef\x00\x00\x00\x00\x00\x00\x00\x00\x01\x10\x02' payload +=...

7.5CVSS7.8AI score0.87687EPSS
Exploits7
NVD
NVD
added 2016/09/19 1:59 a.m.18 views

CVE-2016-6415

The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association SA negotiation request, aka Bu...

7.5CVSS7.4AI score0.87687EPSS
Exploits7References4
Cvelist
Cvelist
added 2016/09/19 1:0 a.m.25 views

CVE-2016-6415

The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association SA negotiation request, aka Bu...

7.3AI score0.87687EPSS
Exploits7References3
ATTACKERKB
ATTACKERKB
added 2016/09/19 12:0 a.m.19 views

CVE-2016-6415

The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association SA negotiation request, aka Bu...

7.5CVSS6.4AI score0.87687EPSS
In wildExploits7References4
NVD
NVD
added 2016/05/31 1:59 a.m.12 views

CVE-2016-4785

A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions V1.03; Firmware variant IEC 104...

5.3CVSS7AI score0.02676EPSS
Exploits0References6
Prion
Prion
added 2016/03/12 2:59 a.m.11 views

Information disclosure

Schneider Electric Telvent Sage 2300 RTUs with firmware before C3413-500-S01, and LANDAC II-2, Sage 1410, Sage 1430, Sage 1450, Sage 2400, and Sage 3030M RTUs with firmware before C3414-500-S02J2, allow remote attackers to obtain sensitive information from device memory by reading a padding field...

5CVSS6.8AI score0.01176EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2016/03/12 2:0 a.m.22 views

CVE-2015-6485

Schneider Electric Telvent Sage 2300 RTUs with firmware before C3413-500-S01, and LANDAC II-2, Sage 1410, Sage 1430, Sage 1450, Sage 2400, and Sage 3030M RTUs with firmware before C3414-500-S02J2, allow remote attackers to obtain sensitive information from device memory by reading a padding field...

5.1AI score0.01176EPSS
Exploits0References1
OSV
OSV
added 2015/11/24 8:59 p.m.4 views

DEBIAN-CVE-2015-5053

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

10CVSS7.4AI score0.01746EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/05/29 12:0 a.m.22 views

Cisco ASA DNS Memory Exhaustion Vulnerability (cisco-sa-20150408-asa)

Cisco ASA is prone to a DNS memory exhaustion vulnerability. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.1CVSS6.6AI score0.01124EPSS
Exploits0References1
Rows per page
Query Builder