Lucene search
+L

77 matches found

RedHat Linux
RedHat Linux
added 2020/11/04 12:53 a.m.6 views

kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service

A flaw was found in the way Linux kernel's Dynamic Logical Partitioning DLPAR functionality on PowerPC systems handled low memory conditions on device discovery. An attacker who can change the LPAR configuration and incur low memory conditions at the same time could use this flaw to crash the...

4.7CVSS6.8AI score0.00623EPSS
Exploits0References4
NVD
NVD
added 2020/10/01 7:15 p.m.25 views

CVE-2020-15666

When trying to load a non-video in an audio/video context the exact status code 200, 302, 404, 500, 412, 403, etc. was disclosed via the MediaError Message. This level of information leakage is inconsistent with the standardized onerror/onsuccess disclosure and can lead to inferring login status ...

6.5CVSS0.01234EPSS
Exploits1References3
Prion
Prion
added 2020/10/01 7:15 p.m.30 views

Code injection

When trying to load a non-video in an audio/video context the exact status code 200, 302, 404, 500, 412, 403, etc. was disclosed via the MediaError Message. This level of information leakage is inconsistent with the standardized onerror/onsuccess disclosure and can lead to inferring login status ...

4.3CVSS6.4AI score0.01234EPSS
Exploits1References3Affected Software1
RedHat Linux
RedHat Linux
added 2020/09/29 10:31 p.m.5 views

kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service

A flaw was found in the way Linux kernel's Dynamic Logical Partitioning DLPAR functionality on PowerPC systems handled low memory conditions on device discovery. An attacker who can change the LPAR configuration and incur low memory conditions at the same time could use this flaw to crash the...

4.7CVSS6.8AI score0.00623EPSS
Exploits0References4
OSV
OSV
added 2020/08/29 10:23 a.m.4 views

OPENSUSE-SU-2020:1282-1 Security update for grub2

This update for grub2 fixes the following issue: - CVE-2020-15705: Fail kernel validation without shim protocol bsc1174421. - Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery bsc1172745. This update was imported from the...

6.4CVSS7AI score0.01392EPSS
Exploits0References4
OSV
OSV
added 2020/08/29 10:23 a.m.3 views

OPENSUSE-SU-2020:1280-1 Security update for grub2

This update for grub2 fixes the following issues: - CVE-2020-15705: Fail kernel validation without shim protocol bsc1174421. - Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery bsc1172745. This update was imported from the...

6.4CVSS7AI score0.01392EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/08/26 12:0 a.m.28 views

CVE-2020-15666

When trying to load a non-video in an audio/video context the exact status code 200, 302, 404, 500, 412, 403, etc. was disclosed via the MediaError Message. This level of information leakage is inconsistent with the standardized onerror/onsuccess disclosure and can lead to inferring login status ...

6.5CVSS6.9AI score0.01234EPSS
Exploits1References3
OSV
OSV
added 2020/08/26 12:0 a.m.4 views

UBUNTU-CVE-2020-15666

When trying to load a non-video in an audio/video context the exact status code 200, 302, 404, 500, 412, 403, etc. was disclosed via the MediaError Message. This level of information leakage is inconsistent with the standardized onerror/onsuccess disclosure and can lead to inferring login status ...

6.5CVSS7.3AI score0.01234EPSS
Exploits1References4
OSV
OSV
added 2020/08/25 12:48 p.m.6 views

SUSE-SU-2020:2307-1 Security update for grub2

This update for grub2 fixes the following issues: - CVE-2020-15705: Fail kernel validation without shim protocol bsc1174421. - Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery bsc1172745...

6.4CVSS6.9AI score0.01392EPSS
Exploits0References4
OSV
OSV
added 2020/08/25 12:48 p.m.5 views

SUSE-SU-2020:2306-1 Security update for grub2

This update for grub2 fixes the following issue: - CVE-2020-15705: Fail kernel validation without shim protocol bsc1174421. - Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery bsc1172745...

6.4CVSS6.9AI score0.01392EPSS
Exploits0References4
OSV
OSV
added 2020/08/25 12:46 p.m.5 views

SUSE-SU-2020:2303-1 Security update for grub2

This update for grub2 fixes the following issues: - CVE-2020-15705: Fail kernel validation without shim protocol bsc1174421. - Add fibre channel device's ofpath support to grub-ofpathname and search hint to speed up root device discovery bsc1172745...

6.4CVSS6.9AI score0.01392EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/05/12 3:16 p.m.3 views

kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service

A flaw was found in the way Linux kernel's Dynamic Logical Partitioning DLPAR functionality on PowerPC systems handled low memory conditions on device discovery. An attacker who can change the LPAR configuration and incur low memory conditions at the same time could use this flaw to crash the...

4.7CVSS6.8AI score0.00623EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/04/03 1:58 p.m.46 views

CVE-2019-12614

A flaw was found in the way Linux kernel's Dynamic Logical Partitioning DLPAR functionality on PowerPC systems handled low memory conditions on device discovery. An attacker who can change the LPAR configuration and incur low memory conditions at the same time could use this flaw to crash the...

4.7CVSS0.8AI score0.00623EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/05/28 12:0 a.m.22 views

Debian DLA-1805-1 : minissdpd security update

It was discovered that there was a use after free vulnerability in minissdpd, a network device discovery daemon. A remote attacker could abuse this to crash the process. For Debian 8 'Jessie', this issue has been fixed in minissdpd version 1.2.20130907-3+deb8u2. We recommend that you upgrade your...

7.5CVSS7.2AI score0.02829EPSS
Exploits1References3
Debian
Debian
added 2019/05/26 9:52 p.m.210 views

[SECURITY] [DLA 1805-1] minissdpd security update

Package : minissdpd Version : 1.2.20130907-3+deb8u2 CVE ID : CVE-2019-12106 Debian Bug : 929297 It was discovered that there was a use after free vulnerability in minissdpd, a network device discovery daemon. A remote attacker could abuse this to crash the process. For Debian 8 "Jessie", this iss...

7.5CVSS7.5AI score0.02829EPSS
Exploits1
0day.today
0day.today
added 2017/11/27 12:0 a.m.106 views

Cambium Multiple Vulnerabilities

Exploit for hardware platform in category remote exploits Cambium Multiple Vulnerabilities Vulnerabilities Summary The following advisory describes three 3 vulnerabilities found in Cambium Network Updater Tool and Networks Services Server. The Network Updater Tool is “a free-of-charge tool that...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2017/03/22 2:49 p.m.164 views

Moxa UDP Device Discovery

The Moxa protocol listens on 4800/UDP and will respond to broadcast or direct traffic. The service is known to be used on Moxa devices in the NPort, OnCell, and MGate product lines. A discovery packet compels a Moxa device to respond to the sender with some basic device information that is needed...

9.8CVSS0.19856EPSS
Exploits4
n0where
n0where
added 2016/06/15 3:14 a.m.29 views

ICS SCADA NSA Situational Awareness: Grassmarlin

ICS SCADA NSA Situational Awareness: Grassmarlin Provide IP network situational awareness of industrial control systems ICS and Supervisory Control and Data Acquisition SCADA networks to support network security. Passively map, and visually display, an ICS/SCADA network topology while safely...

0.4AI score
Exploits0References1
Kitploit
Kitploit
added 2015/05/15 9:30 p.m.15 views

Fing - Find out Which Devices are Connected to your Wi-Fi Network

Find out which devices are connected to your Wi-Fi network, in just a few seconds. Fast and accurate, Fing is a professional App for network analysis. A simple and intuitive interface helps you evaluate security levels, detect intruders and resolve network issues. Discovers all devices connected ...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2015/03/21 12:0 a.m.68 views

Path traversal vulnerability in EMC M&R (Watch4net) Device Discovery

------------------------------------------------------------------------ Path traversal vulnerability in EMC M&R Watch4net Device Discovery ------------------------------------------------------------------------ Han Sahin, November 2014...

6.4CVSS0.6AI score0.01748EPSS
Exploits1
Rows per page
Query Builder