Lucene search
K

12 matches found

OSV
OSV
added 2026/05/31 12:0 a.m.39 views

RLSA-2026:21745 Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: Bluetooth: MGMT: Fix possible UAFs CVE-2025-39981 kernel: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr...

7.8CVSS6.6AI score0.00514EPSS
Exploits0References19
RedhatCVE
RedhatCVE
added 2025/02/04 11:44 p.m.6 views

CVE-2024-22415

jupyter-lsp is a coding assistance tool for JupyterLab code navigation + hover suggestions + linters + autocompletion + rename using Language Server Protocol. Installations of jupyter-lsp running in environments without configured file system access control on the operating system level, and with...

9.8CVSS9.4AI score0.00491EPSS
Exploits0References1
NVD
NVD
added 2024/07/29 11:15 p.m.21 views

CVE-2024-40811

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app may be able to modify protected parts of the file system...

8.4CVSS0.00219EPSS
Exploits0References4
Prion
Prion
added 2024/01/18 9:15 p.m.15 views

Design/Logic Flaw

jupyter-lsp is a coding assistance tool for JupyterLab code navigation + hover suggestions + linters + autocompletion + rename using Language Server Protocol. Installations of jupyter-lsp running in environments without configured file system access control on the operating system level, and with...

7.5CVSS7.1AI score0.00491EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/01/18 8:27 p.m.331 views

CVE-2024-22415

CVE-2024-22415 relates to the jupyter-lsp server extension for JupyterLab. The vulnerability stems from unsecured endpoints that, when the jupyter-server is exposed to untrusted networks, permit unauthorised access and modification of files outside the jupyter root. Fix: upgrade to version 2.2.2 ...

9.8CVSS9.3AI score0.00491EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/18 8:27 p.m.17 views

CVE-2024-22415 Unsecured endpoints in the jupyter-lsp server extension

jupyter-lsp is a coding assistance tool for JupyterLab code navigation + hover suggestions + linters + autocompletion + rename using Language Server Protocol. Installations of jupyter-lsp running in environments without configured file system access control on the operating system level, and with...

7.3CVSS7.1AI score0.00491EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2021/08/25 7:10 p.m.10 views

CVE-2021-1583 Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability

A vulnerability in the fabric infrastructure file system access control of Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ACI mode could allow an authenticated, local attacker to read arbitrary files on an affected system. This vulnerability is due to improper acces...

4.4CVSS6.7AI score0.00222EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/10/22 12:0 a.m.46 views

VMware Horizon View Client < 5.5.0 DoS (VMSA-2020-0022)

The version of VMware Horizon Client for Windows installed on the remote host is less than 5.5.0. It is, therefore, affected by a denial of service DoS vulnerability due to a file system access control issue during install time. An unauthenticated, local attacker can exploit this, via symbolic...

7.1CVSS7.1AI score0.00339EPSS
Exploits0References2
NVD
NVD
added 2020/10/16 2:15 p.m.18 views

CVE-2020-3991

VMware Horizon Client for Windows 5.x before 5.5.0 contains a denial-of-service vulnerability due to a file system access control issue during install time. Successful exploitation of this issue may allow an attacker to overwrite certain admin privileged files through a symbolic link attack at...

7.1CVSS0.00339EPSS
Exploits0References1
Prion
Prion
added 2020/10/16 2:15 p.m.16 views

Denial of service

VMware Horizon Client for Windows 5.x before 5.5.0 contains a denial-of-service vulnerability due to a file system access control issue during install time. Successful exploitation of this issue may allow an attacker to overwrite certain admin privileged files through a symbolic link attack at...

3.6CVSS6.8AI score0.00339EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/10/16 1:15 p.m.56 views

CVE-2020-3991

The CVE-2020-3991 entry affects VMware Horizon Client for Windows (5.x before 5.5.0). The vulnerability is a denial-of-service caused by a file system access control issue during install time, where an unauthenticated local attacker could use a symbolic link to overwrite certain admin-privileged ...

7.1CVSS6.7AI score0.00339EPSS
Exploits0References1Affected Software1
VMware
VMware
added 2020/10/15 12:0 a.m.33 views

VMware Horizon Client update addresses a denial-of-service vulnerability (CVE-2020-3991)

3. File system access control denial-of-service vulnerability CVE-2020-3991 VMware Horizon Client for Windows contains a denial-of-service vulnerability due to a file system access control issue during install time. VMware has evaluated the severity of this issue to be in the Moderate severity...

3.6CVSS7AI score0.00339EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder