Lucene search
K

98 matches found

Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.3 views

PT-2025-37691

Name of the Vulnerable Software and Affected Versions: linux affected versions not specified Description: The Linux kernel contains a flaw in the dmi-sysfs module related to a null-pointer dereference. A previous patch introduced kobject put to release memory, which calls dmi sysfs entry release...

6AI score0.00135EPSS
Exploits0References10
Rockylinux
Rockylinux
added 2022/08/09 9:33 a.m.8 views

subscription-manager bug fix and enhancement update

An update is available for subscription-manager. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The subscription-manager packages provide programs and libraries...

1AI score
Exploits0
OSV
OSV
added 2022/06/28 8:16 p.m.13 views

GSD-2022-1004051 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle

firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.318 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 8:7 p.m.11 views

GSD-2022-1003972 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle

firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.283 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 7:56 p.m.6 views

GSD-2022-1003865 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle

firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 7:24 p.m.7 views

GSD-2022-1003542 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle

firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.122 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 7:0 p.m.13 views

GSD-2022-1003283 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle

firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.47 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 6:34 p.m.7 views

GSD-2022-1002987 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle

firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 6:2 p.m.15 views

GSD-2022-1002623 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle

firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.4 by commit...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/09/11 12:0 a.m.80 views

Apache Struts 2.x < 2.3.15.2 Dynamic Method Invocation Multiple Vulnerabilities (S2-019)

The version of Apache Struts running on the remote host is 2.x prior to 2.3.15.2. It, therefore, is affected by multiple Dynamic Method Invocation DMI vulnerabilities as DMI is enabled by default. Note that Nessus has not tested for these issues but has instead relied only on the application's...

10CVSS5.8AI score0.08333EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2018/05/01 12:0 a.m.326 views

Linux RNG Flaws

Linux RNG flaws CVE-2018-1108 There are several issues in drivers/char/random.c, in particular related to the behavior of the /dev/urandom RNG during and shortly after boot. I'm sending this to [email protected] and Theodore Ts'o for now; it might make sense to also add Jason Donenfeld, since...

0.1AI score0.01825EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2017/08/16 12:0 a.m.54 views

openSUSE Security Update : the Linux Kernel (openSUSE-2017-929)

The openSUSE Leap 42.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-1000111: Fixed a race condition in net-packet code that could be exploited to cause out-of-bounds memory access bsc1052365. - CVE-2017-1000112: Fixed a race...

7.8CVSS6.9AI score0.20797EPSS
Exploits19References21
OPENSUSE Linux
OPENSUSE Linux
added 2017/08/15 9:6 p.m.125 views

Security update for the Linux Kernel (important)

The openSUSE Leap 42.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000111: Fixed a race condition in net-packet code that could be exploited to cause out-of-bounds memory access bsc1052365. - CVE-2017-1000112: Fixed a race...

7.2CVSS3.1AI score0.20797EPSS
Exploits19References18
Tenable Nessus
Tenable Nessus
added 2017/07/13 12:0 a.m.49 views

Virtuozzo 6 : kernel / kernel-abi-whitelists / kernel-debug / etc (VZLSA-2017-0036)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

10CVSS6.8AI score0.24299EPSS
Exploits6References5
VulnCheck KEV
VulnCheck KEV
added 2017/06/20 12:0 a.m.4 views

VulnCheck KEV: CVE-2001-0236

Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event...

10CVSS6.2AI score0.72036EPSS
Exploits6References1
Tenable Nessus
Tenable Nessus
added 2017/01/13 12:0 a.m.350 views

CentOS 6 : kernel (CESA-2017:0036)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

10CVSS6.9AI score0.24299EPSS
Exploits6References4
Check Point Advisories
Check Point Advisories
added 2016/06/23 12:0 a.m.56 views

Apache Struts REST Plugin DMI Code Execution (CVE-2016-3087)

A code execution vulnerability exists in Apache Struts. The vulnerability is due the way the OGNL expressions are processed when DMI is enabled and the REST plugin is used. A remote attacker could exploit this vulnerability by sending a crafted request to the target server. Successful exploitatio...

7.5CVSS4AI score0.81087EPSS
Exploits4
canvas
canvas
added 2016/04/26 2:59 p.m.612 views

Immunity Canvas: STRUTS2_DMI_RCE

Name| struts2dmirce ---|--- CVE| CVE-2016-3081 Exploit Pack| CANVAS Description| struts2dmirce Notes| CVE Name: CVE-2016-3081 VENDOR: Apache NOTES: The JAR Server will listen on the port provided in the UI. However, if that port is unavailable, a random one will be chosen. Example vulnerable...

9.3CVSS8AI score0.9373EPSS
Exploits12
hackapp
hackapp
added 2016/04/01 9:36 a.m.12 views

ByVejr - DMI - Yr - Vejret - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application ByVejr - DMI - Yr - Vejret published at the 'play' market has multiple vulnerabilities...

0.9AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:35 a.m.15 views

DMI Weather - Exported components, External URLs, WebView JavaScript enabled vulnerabilities

HackApp vulnerability scanner discovered that application DMI Weather published at the 'play' market has multiple vulnerabilities...

0.2AI score
Exploits0References1Affected Software1
Rows per page
Query Builder