Lucene search
+L

236 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:22 p.m.4 views

Malicious code in ems_landing_page (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd110ac60dc90fef99fece4fcf60402a3732baa7063384187bd4c3520c6fd976 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/08 4:29 a.m.8 views

USN-5468-1 linux, linux-aws, linux-aws-5.13, linux-azure, linux-azure-5.13, linux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-intel-5.13, linux-kvm, linux-oracle, linux-oracle-5.13, linux-raspi vulnerabilities

It was discovered that the Linux kernel did not properly restrict access to the kernel debugger when booted in secure boot environments. A privileged attacker could use this to bypass UEFI Secure Boot restrictions. CVE-2022-21499 Aaron Adams discovered that the netfilter subsystem in the Linux...

7.8CVSS6.9AI score0.00612EPSS
Exploits7References7
Ubuntu
Ubuntu
added 2022/06/08 4:29 a.m.96 views

USN-5468-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel did not properly restrict access to the kernel debugger when booted in secure boot environments. A privileged attacker could use this to bypass UEFI Secure Boot restrictions. CVE-2022-21499 Aaron Adams discovered that the netfilter subsystem in the Linux...

7.8CVSS7.1AI score0.00612EPSS
Exploits7
CNVD
CNVD
added 2022/06/05 12:0 a.m.33 views

Dominion Voting Systems ImageCast X Path Traversal Vulnerability

Dominion Voting Systems ImageCast X is an intuitive and configurable face-to-face voting solution from Dominion Voting Systems.A path traversal vulnerability exists in Dominion Voting Systems ImageCast X, which could be exploited by an attacker to propagate malicious code from EMS to propagate to...

7.2CVSS3.7AI score0.00381EPSS
Exploits0References1
OSV
OSV
added 2022/05/12 1:12 a.m.8 views

USN-5416-1 linux-oem-5.14 vulnerabilities

Qiuhao Li, Gaoning Pan and Yongkang Jia discovered that the KVM implementation in the Linux kernel did not properly perform guest page table updates in some situations. An attacker in a guest vm could possibly use this to crash the host OS. CVE-2022-1158 It was discovered that the implementation ...

7.8CVSS6.7AI score0.00395EPSS
Exploits1References6
Ubuntu
Ubuntu
added 2022/05/12 1:12 a.m.109 views

USN-5416-1: Linux kernel (OEM) vulnerabilities

Qiuhao Li, Gaoning Pan and Yongkang Jia discovered that the KVM implementation in the Linux kernel did not properly perform guest page table updates in some situations. An attacker in a guest vm could possibly use this to crash the host OS. CVE-2022-1158 It was discovered that the implementation ...

7.8CVSS6.7AI score0.00395EPSS
Exploits1
Ubuntu
Ubuntu
added 2022/05/12 12:3 a.m.108 views

USN-5413-1: Linux kernel vulnerabilities

Jeremy Cline discovered a use-after-free in the nouveau graphics driver of the Linux kernel during device removal. A privileged or physically proximate attacker could use this to cause a denial of service system crash. CVE-2020-27820 It was discovered that a race condition existed in the network...

8.8CVSS6.8AI score0.02151EPSS
Exploits1
OSV
OSV
added 2022/05/12 12:3 a.m.11 views

USN-5413-1 linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities

Jeremy Cline discovered a use-after-free in the nouveau graphics driver of the Linux kernel during device removal. A privileged or physically proximate attacker could use this to cause a denial of service system crash. CVE-2020-27820 It was discovered that a race condition existed in the network...

8.8CVSS6.8AI score0.02151EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2022/04/27 12:0 a.m.6 views

The vulnerability of the ems_usb_start_xmit function in Linux kernel allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the emsusbstartxmit function in the Linux kernel’s drivers/net/can/usb/emsusb.c file is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information from a...

7.8CVSS6.6AI score0.0035EPSS
Exploits0References35Affected Software6
OSV
OSV
added 2022/04/19 2:4 p.m.7 views

CLSA-2022-1650377052 Fix of CVE: CVE-2022-28390, CVE-2021-3609

can: emsusb: emsusbstartxmit: fix double devkfreeskb in error path ELSCVE-3847 CVE-2022-28390 - can: bcm: delay release of struct bcmop after synchronizercu ELSCVE-1694 CVE-2021-3609...

7.8CVSS6.8AI score0.00431EPSS
Exploits1References1
OSV
OSV
added 2022/04/19 2:3 p.m.20 views

CLSA-2022-1650377026 Fix of CVE: CVE-2021-3609, CVE-2022-28390

can: emsusb: emsusbstartxmit: fix double devkfreeskb in error path ELSCVE-3847 CVE-2022-28390 - can: bcm: delay release of struct bcmop after synchronizercu ELSCVE-1694 CVE-2021-3609...

7.8CVSS6.8AI score0.00431EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2022/04/10 7:0 a.m.12 views

ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.

...

7.8CVSS6.6AI score0.0035EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/04/03 9:15 p.m.2 views

CVE-2022-28390

emsusbstartxmit in drivers/net/can/usb/emsusb.c in the Linux kernel through 5.17.1 has a double free...

7.8CVSS5.9AI score0.0035EPSS
Exploits0References12
OSV
OSV
added 2022/04/03 9:15 p.m.13 views

AZL-9295 CVE-2022-28390 affecting package kernel for versions less than 5.15.37.1-2

emsusbstartxmit in drivers/net/can/usb/emsusb.c in the Linux kernel through 5.17.1 has a double free...

7.8CVSS6.7AI score0.0035EPSS
Exploits0References1
OSV
OSV
added 2022/04/03 9:15 p.m.1 views

DEBIAN-CVE-2022-28390

emsusbstartxmit in drivers/net/can/usb/emsusb.c in the Linux kernel through 5.17.1 has a double free...

7.8CVSS6.3AI score0.0035EPSS
Exploits0References1
OSV
OSV
added 2022/04/03 9:15 p.m.3 views

UBUNTU-CVE-2022-28390

emsusbstartxmit in drivers/net/can/usb/emsusb.c in the Linux kernel through 5.17.1 has a double free...

7.8CVSS6.7AI score0.0035EPSS
Exploits0References10
CNNVD
CNNVD
added 2022/04/03 12:0 a.m.4 views

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in emsusbstartxmit in drivers/net/can/usb/emsusb.c in Linux kernel 5.17.1 and earlier, which stems from a double release...

7.8CVSS6.6AI score0.0035EPSS
Exploits0References35
ICS
ICS
added 2022/03/31 12:0 a.m.81 views

Hitachi Energy e-mesh EMS

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: e-mesh EMS Vulnerabilities: Improper Restriction of Operations Within the Bounds of a Memory Buffer, Use After Free, Uncontrolled Resource Consumption 2. RISK EVALUATION...

9.3CVSS8AI score0.77385EPSS
Exploits2References5
0day.today
0day.today
added 2022/03/09 12:0 a.m.276 views

DEOS AG OPEN 710/810 Cross Site Scripting Vulnerability

Title: DEOS control systems GmbH - OPEN 710/810 EMS Cross Site Scripting Vulnerability Vendor page: https://www.deos-ag.com/en/ Exploit Author: n4pst3r Tested on: Debian POST /cgi-bin/option.cgi?function=2 HTTP/1.1 Content-Length: 83 Content-Type: application/x-www-form-urlencoded Referer:...

7.4AI score
Exploits0
OSV
OSV
added 2021/12/16 7:15 p.m.6 views

CVE-2021-41028

A combination of a use of hard-coded cryptographic key vulnerability CWE-321 in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an improper certificate validation vulnerability CWE-297 in FortiClientWindows, FortiClientLinux and FortiClientMac 7.0.1 and below, 6.4.6 and below may allow an...

7.5CVSS5.8AI score0.00213EPSS
Exploits0References1
Rows per page
Query Builder