Lucene search
K

35 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:53 p.m.7 views

CVE-2020-9110

Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have an information disclosure vulnerability. The device does not sufficiently validate the output of device in certain specific scenario, the attacker can gain information in the victim's smartphone to launch the attack, successful exploit...

4.6CVSS6.6AI score0.00235EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 2:13 p.m.9 views

CVE-2025-23136 thermal: int340x: Add NULL check for adev

In the Linux kernel, the following vulnerability has been resolved: thermal: int340x: Add NULL check for adev Not all devices have an ACPI companion fwnode, so adev might be NULL. This is similar to the commit cd2fd6eab480 "platform/x86: int3472: Check for adev == NULL". Add a check for adev not...

5.5CVSS6AI score0.00175EPSS
Exploits0References14
RedhatCVE
RedhatCVE
added 2025/02/07 9:44 a.m.16 views

CVE-2024-45582

Memory corruption while validating number of devices in Camera kernel...

7.8CVSS7AI score0.00101EPSS
Exploits0References1
NVD
NVD
added 2025/02/03 5:15 p.m.33 views

CVE-2024-45582

Memory corruption while validating number of devices in Camera kernel...

7.8CVSS0.00101EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/06/22 4:9 a.m.3 views

SUSE CVE-2022-48746

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix handling of wrong devices during bond netevent Current implementation of bond netevent handler only check if the handled netdev is VF representor and it missing a check if the VF representor is on the same phys...

5.5CVSS7.5AI score0.00235EPSS
Exploits0References10
OSV
OSV
added 2024/04/04 8:20 a.m.3 views

CVE-2024-26791 btrfs: dev-replace: properly validate device names

In the Linux kernel, the following vulnerability has been resolved: btrfs: dev-replace: properly validate device names There's a syzbot report that device name buffers passed to device replace are not properly checked for string termination which could lead to a read out of bounds in getnamekerne...

7.1CVSS6AI score0.00247EPSS
Exploits0References13
The Hacker News
The Hacker News
added 2021/09/22 4:18 a.m.42 views

The Gap in Your Zero Trust Implementation

Over the last several years, there have been numerous high-profile security breaches. These breaches have underscored the fact that traditional cyber defenses have become woefully inadequate and that stronger defenses are needed. As such, many organizations have transitioned toward a zero trust...

7.5AI score
Exploits0
OSV
OSV
added 2020/10/12 2:15 p.m.4 views

CVE-2020-9109

There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful...

4.6CVSS5.8AI score0.0022EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/07/29 6:28 p.m.14 views

kernel: use-after-free caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver

A vulnerability was found in hiddevopen in drivers/hid/usbhid/hiddev.c in the USB Human Interface Device class subsystem, where an existing device must be validated prior to its access. The device should also ensure the hiddevlist cleanup occurs at failure, as this may lead to a use-after-free...

7.2CVSS7.1AI score0.00448EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2020/04/21 1:24 p.m.27 views

Deepfakes and AI: Fighting Cybersecurity Fire with Fire

Today, the most successful and damaging cyberattacks are executed by highly professional criminal networks rather than “lone-wolf” hackers. These criminal organizations have also become highly adept at leveraging artificial intelligence AI and machine learning ML tools, making it extremely hard f...

Exploits0References8
Microsoft Secure
Microsoft Secure
added 2018/12/17 5:0 p.m.65 views

Zero Trust part 1: Identity and access management

Once in a while, a simple phrase captures our imagination, expressing a great way to think about a problem. Zero Trust is such a phrase. Today, Ill define Zero Trust and then discuss the first step to enabling a Zero Trust modelstrong identity and access management. In subsequent blogs, well cove...

7.5AI score
Exploits0
CNVD
CNVD
added 2018/03/20 12:0 a.m.2 views

Google Android Qualcomm WLAN Information Disclosure Vulnerability (CNVD-2018-05990)

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handset Alliance OHA, with Qualcomm WLAN being one of the components used. Qualcomm WLAN is a wireless LAN component developed by Qualco...

7.5CVSS6.2AI score0.00542EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/11/20 4:47 p.m.53 views

Low: Red Hat Security Advisory: sudo security, bug fix and enhancement update

An updated sudo package that fixes two security issues, several bugs, and adds two enhancements is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give...

6.9CVSS7.6AI score0.03202EPSS
Exploits8References8
Debian CVE
Debian CVE
added 2013/04/08 5:0 p.m.34 views

CVE-2013-1776

sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard...

4.4CVSS2.8AI score0.00378EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/08/18 12:0 a.m.22 views

GLSA-200508-09 : bluez-utils: Bluetooth device name validation vulnerability

The remote host is affected by the vulnerability described in GLSA-200508-09 bluez-utils: Bluetooth device name validation vulnerability The name of a Bluetooth device is improperly validated by the hcid utility when a remote device attempts to pair itself with a computer. Impact : An attacker...

7.5CVSS5.8AI score0.024EPSS
Exploits0References3
Rows per page
Query Builder