Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4358 matches found

OSV
OSVadded 2018/04/24 7:29 p.m.4 views

CVE-2016-9038

An exploitable double fetch vulnerability exists in the SboxDrv.sys driver functionality of Invincea-X 6.1.3-24058. A specially crafted input buffer and race condition can result in kernel memory corruption, which could result in privilege escalation. An attacker needs to execute a special...

7.8CVSS6.1AI score0.00313EPSS
Exploits2References2
CVE
CVEadded 2018/04/24 7:0 p.m.55 views

CVE-2016-9038

CVE-2016-9038 : A double-fetch race condition exists in the Invincea-X (Dell Protected Workspace) SboxDrv.sys driver (version 6.1.3-24058). The vulnerability stems from reading a user-supplied pointer to a driver-version buffer twice: first via ProbeForWrite and then again during memcpy, using in...

7.8CVSS7.6AI score0.00313EPSS
Exploits2References2Affected Software1
Cvelist
Cvelistadded 2018/04/24 7:0 p.m.32 views

CVE-2016-9038

An exploitable double fetch vulnerability exists in the SboxDrv.sys driver functionality of Invincea-X 6.1.3-24058. A specially crafted input buffer and race condition can result in kernel memory corruption, which could result in privilege escalation. An attacker needs to execute a special...

7.8CVSS7.7AI score0.00313EPSS
Exploits2References2
Positive Technologies
Positive Technologiesadded 2018/04/24 12:0 a.m.7 views

PT-2018-5057 · Invincea · Invincea-X

Name of the Vulnerable Software and Affected Versions: Invincea-X version 6.1.3-24058 Description: A double fetch vulnerability exists in the SboxDrv.sys driver functionality. This issue can be triggered by a specially crafted input buffer and a race condition, resulting in kernel memory...

7.8CVSS7.5AI score0.00313EPSS
Exploits2References3
CNVD
CNVDadded 2018/04/23 12:0 a.m.1 views

Multiple Apple products WebKit homology policy bypass vulnerability (CNVD-2018-09811)

Apple iOS, iCloud for Windows, iTunes for Windows, Safari, and tvOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Safari is a web browser that is the default browser included with the Mac OS X and iOS operating systems. WebKit is an open source web...

6.5CVSS8.4AI score0.03137EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2018/04/18 7:29 p.m.28 views

CVE-2018-1000161

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

5.7CVSS6.1AI score0.01045EPSS
Exploits0References1
NVD
NVDadded 2018/04/18 7:29 p.m.14 views

CVE-2018-1000161

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

5.7CVSS5.6AI score0.01045EPSS
Exploits0References1
Prion
Prionadded 2018/04/18 7:29 p.m.24 views

Directory traversal

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

3.5CVSS5.6AI score0.01045EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2018/04/18 7:29 p.m.1 views

UBUNTU-CVE-2018-1000161

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

5.7CVSS6.1AI score0.01045EPSS
Exploits0References2
OSV
OSVadded 2018/04/18 7:29 p.m.5 views

DEBIAN-CVE-2018-1000161

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

5.7CVSS6.9AI score0.01045EPSS
Exploits0References1
Cvelist
Cvelistadded 2018/04/18 7:0 p.m.39 views

CVE-2018-1000161

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

5.6AI score0.01045EPSS
Exploits0References1
CVE
CVEadded 2018/04/18 7:0 p.m.54 views

CVE-2018-1000161

CVE-2018-1000161 affects nmap versions 6.49BETA6 through 7.60 (including SVN r37147). The vulnerability is a Directory Traversal in the NSE script http-fetch that can cause file overwrite when the script is executed by a user, exploitable when a victim runs the NSE http-fetch against a malicious ...

5.7CVSS5.6AI score0.01045EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVEadded 2018/04/18 7:0 p.m.15 views

CVE-2018-1000161

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

5.7CVSS5.6AI score0.01045EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2018/04/18 9:24 a.m.30 views

CVE-2018-6091

Service Workers can intercept any request made by an or tag in Fetch API in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

8.8CVSS4.8AI score0.02139EPSS
Exploits0References2
OSV
OSVadded 2018/04/15 1:33 p.m.14 views

MGASA-2018-0202 Updated firefox packages fix security vulnerability

Memory safety bugs fixed in Firefox ESR 52.7 CVE-2018-5125. Buffer overflow manipulating SVG animatedPathSegList CVE-2018-5127. Out-of-bounds write with malformed IPC messages CVE-2018-5129. Mismatched RTP payload type can trigger memory corruption CVE-2018-5130. Fetch API improperly returns cach...

9.8CVSS8.7AI score0.08024EPSS
Exploits3References6
Mageia
Mageiaadded 2018/04/15 1:33 p.m.52 views

Updated firefox packages fix security vulnerability

Memory safety bugs fixed in Firefox ESR 52.7 CVE-2018-5125. Buffer overflow manipulating SVG animatedPathSegList CVE-2018-5127. Out-of-bounds write with malformed IPC messages CVE-2018-5129. Mismatched RTP payload type can trigger memory corruption CVE-2018-5130. Fetch API improperly returns cach...

9.8CVSS1.4AI score0.08024EPSS
Exploits3References5
OSV
OSVadded 2018/04/10 8:27 a.m.7 views

SUSE-SU-2018:0907-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Security issues fixed in Firefox ESR 52.7.3 bsc1085130: - CVE-2018-5125: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7 - CVE-2018-5127: Buffer overflow manipulating SVG animatedPathSegList - CVE-2018-5129: Out-of-bounds writ...

9.8CVSS8.8AI score0.12054EPSS
Exploits3References14
RedhatCVE
RedhatCVEadded 2018/04/09 12:49 a.m.32 views

CVE-2018-1000161

nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against...

5.7CVSS3.6AI score0.01045EPSS
Exploits0References1
OSV
OSVadded 2018/04/06 10:54 p.m.2 views

MGASA-2018-0196 Updated nmap packages fix security vulnerability

Nmap developer nnposter found a security flaw directory traversal vulnerability in the way the non-default http-fetch script sanitized URLs. If a user manualy ran this NSE script against a malicious web server, the server could potentially depending on NSE arguments used cause files to be saved...

7AI score
Exploits0References3
Mageia
Mageiaadded 2018/04/06 10:54 p.m.14 views

Updated nmap packages fix security vulnerability

Nmap developer nnposter found a security flaw directory traversal vulnerability in the way the non-default http-fetch script sanitized URLs. If a user manualy ran this NSE script against a malicious web server, the server could potentially depending on NSE arguments used cause files to be saved...

7.2AI score
Exploits0References2
Rows per page
Query Builder