Lucene search
K

99 matches found

Ubuntu
Ubuntu
added 2025/01/27 7:4 p.m.26 views

USN-7179-4: Linux kernel (Xilinx ZynqMP) vulnerabilities

Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-12351 Andy Nguyen discovered that the...

8.8CVSS8.1AI score0.07693EPSS
Exploits7
CVE
CVE
added 2025/01/07 12:0 a.m.85 views

CVE-2024-55410

CVE-2024-55410 has been withdrawn by its CNA. Connections show a vulnerability involving the Asus GPU Tweak II Program Driver (v1.0.0.0) in the 690b33e1-0462-4e84-9bea-c7552b45432a.sys component, where crafted IOCTL requests enable arbitrary read/write actions. Public technical details are limite...

7AI score
Exploits0
Ubuntu
Ubuntu
added 2025/01/06 9:5 p.m.35 views

USN-7186-1: Linux kernel (Intel IoTG) vulnerabilities

Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-12351 Andy Nguyen discovered that the...

9.1CVSS8.4AI score0.07693EPSS
Exploits7
NVD
NVD
added 2024/12/29 12:15 p.m.18 views

CVE-2024-56747

In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix a possible memory leak in qediallocandinitsb Hook "qediops-common-sbinit = qedsbinit" does not release the DMA memory sbvirt when it fails. Add dmafreecoherent to free it. This is the same way as qedrallocmemsb an...

5.5CVSS0.00225EPSS
Exploits0References11
OSV
OSV
added 2024/12/17 9:30 p.m.8 views

GHSA-JXW2-JVXF-5VRP Databricks JDBC Driver Command Injection vulnerability

Databricks JDBC Driver 2.x before 2.6.40 could potentially allow remote code execution RCE by triggering a JNDI injection via a JDBC URL parameter. The vulnerability is rooted in the improper handling of the krbJAASFile parameter. An attacker could potentially exploit this vulnerability to achiev...

7.3CVSS7.7AI score0.00711EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.11 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-47747)

"The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47747 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: seeq: Fix use after free...

7CVSS6.1AI score0.00224EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/12/10 8:0 a.m.22 views

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

...

7.8CVSS7.1AI score0.00647EPSS
Exploits0
OSV
OSV
added 2024/11/19 1:30 a.m.28 views

CVE-2024-50302 HID: core: zero-initialize the report buffer

In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers in various ways, let's zero-initialize it during allocation to make sure that it can't be ever used to leak kernel memory via...

5.5CVSS6.9AI score0.00809EPSS
Exploits0References16
CNNVD
CNNVD
added 2024/11/18 12:0 a.m.3 views

Imagination GPU Driver 安全漏洞

Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in Imagination GPU Driver DDK24.2 RTM1 and earlier versions, which originates from software installed and run as an unprivileged user, and may make improper GPU system calls to access the graphics buffer...

8.4CVSS6.6AI score0.00173EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/10/25 7:37 p.m.17 views

Rancher Remote Code Execution via Cluster/Node Drivers

Impact A vulnerability has been identified within Rancher where a cluster or node driver can be used to escape the chroot jail and gain root access to the Rancher container itself. In production environments, further privilege escalation is possible based on living off the land within the Rancher...

9.1CVSS9.7AI score0.0073EPSS
Exploits0References4Affected Software1
Redos
Redos
added 2024/08/07 12:0 a.m.18 views

ROS-20240725-12

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2024/05/14 12:0 a.m.39 views

Intel Thunderbolt Driver May 2024 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Thunderbolt driver software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP h...

7CVSS7.4AI score0.0017EPSS
Exploits0Affected Software173
Vulnrichment
Vulnrichment
added 2024/04/22 12:0 a.m.11 views

CVE-2022-46897

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. The CapsuleIFWUSmm driver does not check the return value from a method or function. This can prevent it from detecting unexpected states and conditions...

6.8AI score0.00148EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.6 views

Microsoft Windows Common Log File System Driver Security Vulnerability

The Microsoft Windows Common Log File System Driver is Microsoft's Common Log File System CLFS API that provides a high-performance, general-purpose log file subsystem that can be used by specialized client applications and shared by multiple clients to optimize logging and access. access. A...

7.8CVSS6.9AI score0.12184EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2023/09/05 12:0 a.m.7 views

PT-2023-8651 · Google · Chrome Os

Name of the Vulnerable Software and Affected Versions: ChromeOS affected versions not specified Description: The issue is related to a driver for the PowerVR graphics processor in ChromeOS, involving the use of memory after it has been freed. This could allow an attacker to execute arbitrary code...

6.8CVSS7.2AI score
Exploits0References3
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.4 views

Microsoft PostScript Printer Driver 安全漏洞

Microsoft PostScript Printer Driver is a Microsoft standard printer driver for PostScript printers from Microsoft Corporation USA. A security vulnerability exists in the Microsoft PostScript Printer Driver. The following products and versions are affected: Windows 11 Version 22H2 for ARM64-based...

5.5CVSS6.7AI score0.00513EPSS
Exploits0References3
NVD
NVD
added 2023/03/08 11:15 p.m.25 views

CVE-2021-33639

REMAP cmd of SVM driver can be used to remap read only memory as read-write, then cause read only memory/file modified...

7.5CVSS7.5AI score0.00486EPSS
Exploits0References1
OSV
OSV
added 2022/09/17 12:6 a.m.9 views

GSD-2022-1005559 video: fbdev: arkfb: Check the size of screen before memset_io()

video: fbdev: arkfb: Check the size of screen before memsetio This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

7.2AI score
Exploits0
CNNVD
CNNVD
added 2022/08/09 12:0 a.m.6 views

Dell BIOS 授权问题漏洞

Dell BIOS is embedded software on a small memory chip on the motherboard of a computer from Dell, USA. The Dell BIOS suffers from an authorization issue vulnerability, which arises from the possibility that an unauthenticated attacker with physical access to the system may be able to exploit the...

6.8CVSS6.5AI score0.00355EPSS
Exploits0References3
Prion
Prion
added 2021/09/27 12:15 p.m.16 views

Information disclosure

In memory management driver, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381235...

2.1CVSS5.1AI score0.00112EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder