Lucene search
K

2594 matches found

Fedora
Fedora
added 2023/07/21 1:26 a.m.41 views

[SECURITY] Fedora 37 Update: nodejs16-16.20.1-1.fc37

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed...

7.5CVSS7AI score0.03906EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.7 views

The vulnerability of the DCERPC protocol implementation in the software for managing virtual infrastructure VMware vCenter Server allows a attacker to cause service failures or execute arbitrary code.

The vulnerability of the DCERPC protocol implementation in the software for managing virtual infrastructure, VMware vCenter Server, is caused by a buffer overflow in memory. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...

8.1CVSS8.4AI score0.33945EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.4 views

The vulnerability of the distributed Git version control system, related to deficiencies in pathname restrictions for directories, allows attackers to compromise data integrity.

The vulnerability of the distributed Git version control system is related to deficiencies in pathname restrictions for directories. Exploiting this vulnerability allows a malicious actor to compromise data integrity using a specially created command...

7.8CVSS7.2AI score0.52164EPSS
Exploits0References17Affected Software8
CNVD
CNVD
added 2023/07/14 12:0 a.m.25 views

Apache Pulsar Authorization Issues Vulnerability

Apache Pulsar is the United States Apache Apache Foundation for cloud environments, set of messages, storage, lightweight functional computing as one of the distributed message flow platform. The software supports multi-tenant, persistent storage, multi-machine room cross-region data replication,...

8.2CVSS6.6AI score0.0058EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/07/10 12:0 a.m.6 views

The vulnerability of the DCERPC protocol implementation in the software for managing virtual infrastructure, VMware vCenter Server, arises from the use of memory after it is released. This allows a perpetrator to execute arbitrary code.

The vulnerability of the DCERPC protocol implementation in software for managing virtual infrastructure such as VMware vCenter Server relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

8.1CVSS8.1AI score0.01248EPSS
Exploits0References3
CNVD
CNVD
added 2023/07/07 12:0 a.m.15 views

Huawei HarmonyOS and EMUI Buffer Overflow Vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. A buffer overflow vulnerability exists in Huawei...

9.1CVSS7.2AI score0.00418EPSS
Exploits0References1
OSV
OSV
added 2023/07/06 1:15 p.m.5 views

CVE-2023-37239

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program...

7.5CVSS5.8AI score0.00388EPSS
Exploits0References2
OSV
OSV
added 2023/07/06 1:15 p.m.3 views

CVE-2023-37240

Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability may cause out-of-bounds read...

9.1CVSS7.3AI score0.00413EPSS
Exploits0References2
NVD
NVD
added 2023/07/06 1:15 p.m.26 views

CVE-2023-37239

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program...

7.5CVSS7.5AI score0.00388EPSS
Exploits0References2
Prion
Prion
added 2023/07/06 1:15 p.m.24 views

Out-of-bounds

Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability may cause out-of-bounds read...

6.4CVSS9AI score0.00413EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2023/07/06 1:15 p.m.22 views

Format string

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program...

5CVSS7.5AI score0.00388EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/07/06 12:29 p.m.24 views

CVE-2023-37240

Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability may cause out-of-bounds read...

9.4AI score0.00413EPSS
Exploits0References2
CVE
CVE
added 2023/07/06 12:29 p.m.40 views

CVE-2023-37240

CVE-2023-37240 involves Huawei HarmonyOS and its distributed file system, caused by missing input length verification. The vulnerability allows out-of-bounds reads (high impact per NVD CVSS 3.1: CRITICAL). Affected component: distributed file system in HarmonyOS; underlying issue is unverified in...

9.1CVSS9.1AI score0.00413EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2023/07/06 12:27 p.m.46 views

CVE-2023-37239

The CVE-2023-37239 entry describes a format-string vulnerability in the distributed file system of Huawei/HarmonyOS. Multiple connected sources (Red Hat, NVD, PRION, CVE lists, CNNVD, and others) corroborate a vulnerability where exploitation (by bypassing SELinux) can crash the target program, i...

7.5CVSS7.5AI score0.00388EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2023/07/06 12:27 p.m.16 views

CVE-2023-37239

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program...

6.8AI score0.00388EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/06 12:27 p.m.26 views

CVE-2023-37239

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program...

7.7AI score0.00388EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/06 12:0 a.m.4 views

PT-2023-25849 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: Distributed file system affected versions not specified Description: The issue is related to missing input length verification in the distributed file system. This could potentially lead to an out-of-bounds read if successfully exploited...

9.1CVSS8.8AI score0.00413EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/06 12:0 a.m.4 views

PT-2023-25847 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: distributed file system affected versions not specified Description: The issue is a format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program...

7.5CVSS7.3AI score0.00388EPSS
Exploits0References5
Akamai Blog
Akamai Blog
added 2023/07/05 1:0 p.m.15 views

Multicloud Strategies Must Evolve to Meet the Needs of Global IT Leaders

In a Forrester study commissioned by Akamai, global IT leaders explain why they are adopting cloud-native architecture and distributing apps and workloads...

7AI score
Exploits0
CNVD
CNVD
added 2023/07/05 12:0 a.m.23 views

Apache Hive Provider Code Execution Vulnerability

Apache Airflow is a suite of open source platforms for creating, managing, and monitoring workflows from the Apache Foundation.The Apache Airflow Hive Provider is a toolkit for reading, writing, and managing large datasets in distributed storage using SQL. A code execution vulnerability exists in...

9.8CVSS8AI score0.02125EPSS
Exploits0References1
Rows per page
Query Builder