SUSE-SU-2021:1933-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20210608 release. - CVE-2020-24513: A domain bypass transient execution vulnerability was discovered on some Intel Atom processors that use a micro-architectural incident channel. INTEL-SA-00465 bsc1179833 See...

SUSE-SU-2021:1932-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: - Updated to Intel CPU Microcode 20210525 release. - CVE-2020-24513: A domain bypass transient execution vulnerability was discovered on some Intel Atom processors that use a micro-architectural incident channel. INTEL-SA-00465 bsc1179833 Se...

SUSE-SU-2021:1929-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20210608 release. - CVE-2020-24513: A domain bypass transient execution vulnerability was discovered on some Intel Atom processors that use a micro-architectural incident channel. INTEL-SA-00465 bsc1179833 See...

Command Execution Vulnerability in NETSYS of Shenzhen Network Domain Technology Co. Ltd (CNVD-2021-43912)

Ltd. was founded in 2004, is a high-tech enterprise specializing in the development of computer network security equipment. Shenzhen NETSYS Technology Co., Ltd NETSYS has a command execution vulnerability that can be exploited by attackers to execute arbitrary commands...

Command Execution Vulnerability in NETSYS of Shenzhen Netland Technology Co.

Ltd. was founded in 2004, is a high-tech enterprise specializing in the development of computer network security equipment. Shenzhen NETSYS Technology Co., Ltd NETSYS has a command execution vulnerability that can be exploited by attackers to execute arbitrary commands...

Command execution vulnerability in dubbo 2.7.12 (CNVD-2021-44686)

dubbo is a high-performance service framework. A command execution vulnerability exists in dubbo 2.7.12, which can be exploited by an attacker to gain control of the server...

CVE-2020-24513

Domain-bypass transient execution vulnerability in some Intel AtomR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2020-24513

The CVE-2020-24513 entry concerns Intel microcode affecting some Intel Atom processors, described as a domain-bypass transient execution vulnerability that could enable information disclosure via local access for an authenticated user. Connected advisories show the vulnerability is mitigated by u...

hw: information disclosure on some Intel Atom processors

A potential domain bypass transient execution vulnerability was discovered on some Intel Atom® processors that uses a microarchitectural incidental channel. Currently this channel can reveal supervisor data in the L1 cache and the contents of recent stores. As a consequence, this issue may allow ...

hw: information disclosure on some Intel Atom processors

A potential domain bypass transient execution vulnerability was discovered on some Intel Atom® processors that uses a microarchitectural incidental channel. Currently this channel can reveal supervisor data in the L1 cache and the contents of recent stores. As a consequence, this issue may allow ...

Command Execution Vulnerability in Internet Behavior Management System of Tianrongxin Technology Group

Founded on August 30, 1985, Skyrise Technology Group, or "Skyrise" for short, is a leading provider of network security, big data and security cloud services in China. A command execution vulnerability exists in the Internet behavior management system of Tianrongxin Technology Group. An attacker...

Command Execution Vulnerability in NETSYS of Shenzhen Network Domain Technology Co. Ltd (CNVD-2021-43932)

Founded in 2004, Shenzhen Domain Technology Co., Ltd. is a national high-tech enterprise specializing in the research and development, production, sales and service of products in the field of network information security. A command execution vulnerability exists in Shenzhen NETSYS Technology Co...

Siemens JT2Go and Teamcenter Visualization out-of-bounds write vulnerability (CNVD-2021-40498)

Siemens Jt2go is a JT file viewer from Siemens Germany.Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios. An out-of-bounds write vulnerability exists in Siemens JT2Go and Teamcenter Visualization. The vulnerability is caused due t...

Siemens Solid Edge Out-of-Bounds Write Vulnerability (CNVD-2021-40501)

Siemens Solid Edge is a 3D CAD software from Siemens, Germany. The software can be used for part design, assembly design, sheet metal design, welding design and other industries. An out-of-bounds write vulnerability exists in Siemens Solid Edge. The vulnerability is due to a lack of proper...

SUSE: Security Advisory (SUSE-SU-2019:2707-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Speculative Code Store Bypass (SCSB) and Floating-Point Value Injection (FPVI) Advisory - Lenovo Support US

No description provided...

Description of the security update for SharePoint Enterprise Server 2016: June 8, 2021 (KB5001922)

Description of the security update for SharePoint Enterprise Server 2016: June 8, 2021 KB5001922 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures...

Command Execution Vulnerability in Digital OA (EKP) at Shenzhen Lanling Software Co.

Ltd. was founded in Shenzhen Science and Technology Park in 2001. BlueLine is a well-known large platform OA service provider and a leading knowledge management solution provider in China, and is a national high-tech enterprise specializing in knowledge-based consulting, software development,...

Command Execution Vulnerability in Gansu Mobile Butler App of Beijing Yunzhong Rongxin Network Technology Co.

Beijing Yunzhong Rongxin Network Technology Co., Ltd Rongyun, is a secure and reliable global Internet communication cloud service provider, offering instant messaging and real-time audio and video communication cloud services to developers and enterprises. A command execution vulnerability exist...

Command Execution Vulnerability in Yisou Novel App

Yisou Novel APP is a professional mobile novel search and reading client. A command execution vulnerability exists in Yisou Novel APP. An attacker can exploit the vulnerability to execute commands on the server...