Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2024/11/07 12:0 a.m.6 views

The vulnerability of the implementation of the virtual host shell LSI53C895A SCSI emulator for hardware emulation software QEMU allows a perpetrator to escalate their privileges and execute arbitrary code.

The vulnerability of the implementation of the virtual host shell LSI53C895A SCSI emulation software for hardware support by QEMU is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code...

8.2CVSS7.8AI score0.0025EPSS
Exploits0References9Affected Software7
BDU FSTEC
BDU FSTEC
added 2022/09/14 12:0 a.m.9 views

The vulnerability of the host shell adapter am53c974 in the SCSI emulator hardware support of QEMU allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the am53c974 host shell adapter in the SCSI emulator and hardware support provided by QEMU relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...

6.8CVSS6.8AI score0.00366EPSS
Exploits0References9Affected Software4
OSV
OSV
added 2022/08/24 4:15 p.m.3 views

UBUNTU-CVE-2021-4041

A flaw was found in ansible-runner. An improper escaping of the shell command, while calling the ansiblerunner.interface.runcommand, can lead to parameters getting executed as host's shell command. A developer could unintentionally write code that gets executed in the host rather than the virtual...

7.8CVSS7.3AI score0.0031EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/01/11 8:57 p.m.4 views

Ansible: Improper shell escaping in ansible-runner

A flaw was found in ansible-runner. An improper escaping of the shell command, while calling the ansiblerunner.interface.runcommand, can lead to parameters getting executed as host's shell command. A developer could unintentionally write code that gets executed in the host rather than the virtual...

7.8CVSS7.4AI score0.0031EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2017:2390-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.50826EPSS
Exploits9References4
Rows per page
Query Builder