Lucene search
K

134 matches found

Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.5 views

PT-2023-34016 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue is related to the s5p-mfc media component in the Linux Kernel, where a clear workbit is not handled properly in an error condition. The actual impact and potential for attack have...

7.2AI score
Exploits0References1
OSV
OSV
added 2022/03/16 3:15 p.m.5 views

UBUNTU-CVE-2022-26353

A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0...

7.5CVSS6.7AI score0.02701EPSS
Exploits0References4
CVE
CVE
added 2022/01/19 12:21 a.m.68 views

CVE-2022-22160

CVE-2022-22160 affects Juniper Junos OS MX Series where the subscriber management daemon (smgd) is vulnerable to an unchecked error condition. An unauthenticated adjacent attacker can trigger a crash of smgd (in environments with dual-stack session groups and a pp0 interface), causing the daemon ...

6.5CVSS6.5AI score0.00362EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/01/12 12:0 a.m.36 views

Juniper Junos OS Vulnerability (JSA11268)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11268 advisory. - An Unchecked Error Condition vulnerability in the subscriber management daemon smgd of Juniper Networks Junos OS allows an unauthenticated adjacent attacker to cause a cra...

6.5CVSS6.6AI score0.00362EPSS
Exploits0References2
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.20 views

Qualcomm Multiple Chipsets Detection of Error Condition Without Action Vulnerability

Multiple Qualcomm chipsets contain a detection of error condition without action vulnerability when improper handling of address deregistration on failure can lead to new GPU address allocation failure...

6.2CVSS6AI score0.0052EPSS
In wildExploits0
NVD
NVD
added 2021/08/03 12:15 a.m.15 views

CVE-2021-21565

Dell PowerScale OneFS versions 9.1.0.3 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing other SmartConnect DNS responses...

5.3CVSS0.00946EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/01/05 12:0 a.m.29 views

Xen xenstored watch DoS (XSA-324)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability due to an issue with max payload length in xenstored. A malicious guest can exploit this, by registering a 'watch' with using a very large tag, to cause ...

6CVSS7.4AI score0.00385EPSS
Exploits0References2
Talos
Talos
added 2020/12/08 12:0 a.m.111 views

Schneider Electric EcoStruxure Control Expert APX project file processing code execution vulnerability

Summary A local code execution vulnerability exists in the APX project file processing functionality of Schneider Electric EcoStruxure Control Expert 14.1. The opening of a STA project archive containing a specially crafted APX project file can lead to code execution. An attacker can provide a...

8.6CVSS8.8AI score0.01387EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2020/09/25 6:28 p.m.33 views

Undefined behavior in Tensorflow

Impact If a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked:...

5.3CVSS1.2AI score0.00749EPSS
Exploits1References9Affected Software3
RedhatCVE
RedhatCVE
added 2019/11/21 11:7 a.m.32 views

CVE-2019-19067

A flaw was found in the Linux kernel. The acphwinit function fails to cleanup resources properly. A local attacker can induce an error condition to crash the system. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for this issue is either not available ...

4.9CVSS0.8AI score0.00473EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/11/03 4:4 a.m.45 views

CVE-2018-18690

In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...

5.5CVSS3.8AI score0.00683EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2019/08/28 8:15 p.m.30 views

CVE-2019-10051

An issue was discovered in Suricata 4.1.3. If the function filetrackernewchunk encounters an unsafe "Somesfcm = ft.newchunk " item, then the program enters an smb/files.rs error condition and crashes...

7.5CVSS7.1AI score0.02129EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2019/08/28 7:47 p.m.15 views

CVE-2019-10051

An issue was discovered in Suricata 4.1.3. If the function filetrackernewchunk encounters an unsafe "Somesfcm = ft.newchunk " item, then the program enters an smb/files.rs error condition and crashes...

7.5CVSS7.5AI score0.02129EPSS
Exploits1
Prion
Prion
added 2019/08/05 8:15 p.m.16 views

Input validation

Firefly III 4.7.17.5 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the liability name field. The JavaScript code is executed upon an error condition during a visit to the account show page...

3.5CVSS5.2AI score0.00744EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.44 views

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1511)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference in dccpwritexmit function in net/dccp/output.c in the Linux kernel allows a local user to cause a deni...

8.3CVSS7.3AI score0.14806EPSS
Exploits10References11
OSV
OSV
added 2018/10/26 6:29 p.m.8 views

CVE-2018-18690

In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...

5.5CVSS6.7AI score
Exploits0References15
Cvelist
Cvelist
added 2018/10/26 6:0 p.m.22 views

CVE-2018-18690

In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...

5.9AI score0.00683EPSS
Exploits1References15
Debian CVE
Debian CVE
added 2018/10/26 6:0 p.m.27 views

CVE-2018-18690

In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...

5.5CVSS6.4AI score0.00683EPSS
Exploits1
Cvelist
Cvelist
added 2018/07/24 3:0 p.m.28 views

CVE-2017-3226 Das U-Boot's AES-CBC encryption feature improperly handles an error condition and may allow attacks against the underlying cryptographic implementation and allow an attacker to decrypt the data

Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file. Devices that make use of Das U-Boot's AES-CBC encryption feature using environment encryption i.e., setting the configuration parameter CONFIGENVAES=y read environment variables from disk as the encrypte...

6AI score0.00266EPSS
Exploits0References2
NVD
NVD
added 2018/04/18 2:29 p.m.18 views

CVE-2015-9120

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 600, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800,...

10CVSS8.6AI score0.01169EPSS
Exploits0References2
Rows per page
Query Builder