CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

166 matches found

Packet Storm•added 2013/03/13 12:0 a.m.•32 views

Linux Kernel SCTP_GET_ASSOC_STATS() Buffer Overflow

include include include include define SCTPGETASSOCSTATS 112 define SOLSCTP 132 int mainvoid char buf =...

6.9CVSS1.8AI score0.00245EPSS

Exploits2

OSV•added 2013/03/07 12:0 a.m.•0 views

UBUNTU-CVE-2013-1827

net/dccp/ccid.h in the Linux kernel before 3.5.4 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash by leveraging the CAPNETADMIN capability for a certain 1 sender or 2 receiver getsockopt call...

6.2CVSS7AI score0.00068EPSS

Exploits1References10

Positive Technologies•added 2013/03/07 12:0 a.m.•2 views

PT-2013-3412 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.5.4 Description: The issue allows local users to gain privileges or cause a denial of service, resulting in a NULL pointer dereference and system crash. This can be achieved by leveraging the CAP NET ADMIN...

7.2CVSS7.3AI score0.49911EPSS

Exploits22References120

UbuntuCve•added 2013/03/07 12:0 a.m.•20 views

CVE-2013-1827

6.2CVSS7.1AI score0.00068EPSS

Exploits1References9

OpenVAS•added 2012/12/04 12:0 a.m.•28 views

Ubuntu: Security Advisory (USN-1648-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.2CVSS7.1AI score0.00504EPSS

Exploits3References2

Ubuntu•added 2012/10/09 8:19 a.m.•76 views

USN-1599-1: Linux kernel (OMAP4) vulnerability

Pablo Neira Ayuso discovered a flaw in the credentials of netlink messages. An unprivileged local attacker could exploit this by getting a netlink based service, that relies on netlink credentials, to perform privileged actions. CVE-2012-3520 Mathias Krause discovered information leak in the Linu...

7.8CVSS6.6AI score0.0012EPSS

Exploits3

RedHat Linux•added 2011/09/12 7:40 p.m.•2 views

kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace

The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to 1 the l2capsockgetsockoptold function in...

1.9CVSS7.1AI score0.00055EPSS

Exploits1References4

RedHat Linux•added 2011/08/23 2:30 p.m.•3 views

kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace

1.9CVSS7.1AI score0.00055EPSS

Exploits1References4

NVD•added 2011/07/28 10:55 p.m.•16 views

CVE-2011-2492

1.9CVSS6AI score0.00055EPSS

Exploits1References9

Prion•added 2011/07/28 10:55 p.m.•17 views

Design/Logic Flaw

1.9CVSS5.9AI score0.00055EPSS

Exploits1References9Affected Software6

Cvelist•added 2011/07/28 10:0 p.m.•25 views

CVE-2011-2492

6.1AI score0.00055EPSS

Exploits1References9

CVE•added 2011/07/28 10:0 p.m.•111 views

CVE-2011-2492

CVE-2011-2492 affects the Linux kernel Bluetooth subsystem prior to 3.0-rc4, where certain data structures are not properly initialized. The flaw is exploited via a crafted getsockopt system call in the l2cap_sock_getsockopt_old and rfcomm_sock_getsockopt_old paths, enabling local users to obtain...

1.9CVSS5.9AI score0.00055EPSS

Exploits1References9Affected Software1

UbuntuCve•added 2011/07/28 12:0 a.m.•29 views

CVE-2011-2492

1.9CVSS7AI score0.00055EPSS

Exploits1References13

OSV•added 2011/07/28 12:0 a.m.•0 views

UBUNTU-CVE-2011-2492

1.9CVSS7AI score0.00055EPSS

Exploits1References14

RedHat Linux•added 2011/07/15 5:14 a.m.•1 views

kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace

1.9CVSS7.1AI score0.00055EPSS

Exploits1References4

Positive Technologies•added 2011/07/15 12:0 a.m.•2 views

PT-2011-1008 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.0-rc4 Description: The bluetooth subsystem in the Linux kernel does not properly initialize certain data structures, allowing local users to obtain potentially sensitive information from kernel memory via a...

8.3CVSS6.5AI score0.03209EPSS

Exploits25References245

RedHat Linux•added 2011/05/31 2:3 p.m.•4 views

kernel: bt sco_conninfo infoleak

The scosockgetsockoptold function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCOCONNINFO option...

1.9CVSS7.1AI score0.00028EPSS

Exploits1References4

Positive Technologies•added 2011/05/31 12:0 a.m.•1 views

PT-2012-1505 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to the sco sock getsockopt old function in the Linux kernel, which does not properly initialize a certain structure. This allows local users to potentially obtain sensiti...

7.8CVSS5.4AI score0.01222EPSS

Exploits5References36

RedHat Linux•added 2010/11/12 9:36 a.m.•3 views

kernel: 64-bit Compatibility Mode Stack Pointer Underflow

The compatallocuserspace functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bit compatibility layer, which allows local users to gain privileges by leveraging the ability of the...

7.8CVSS7.1AI score0.07253EPSS

Exploits3References4

RedHat Linux•added 2010/11/10 7:0 p.m.•2 views

kernel: 64-bit Compatibility Mode Stack Pointer Underflow

7.8CVSS7.1AI score0.07253EPSS

Exploits3References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by