Lucene search
K

701 matches found

NVD
NVD
added 2022/03/02 11:15 p.m.28 views

CVE-2021-3667

An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write socket with limited...

6.5CVSS0.01366EPSS
Exploits0References6
OSV
OSV
added 2022/03/02 11:15 p.m.33 views

CVE-2021-3667

An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write socket with limited...

6.5CVSS9.2AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2022/03/02 11:15 p.m.32 views

CVE-2021-3667

An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write socket with limited...

6.5CVSS6.8AI score0.01366EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/03/02 12:0 a.m.31 views

CVE-2021-3667

An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write socket with limited...

6.6AI score0.01366EPSS
Exploits0References6
CVE
CVE
added 2022/03/02 12:0 a.m.182 views

CVE-2021-3667

CVE-2021-3667 affects libvirt, in particular the virStoragePoolLookupByTargetPath API where a locked virStoragePoolObj is not released on ACL permission failure. This can let clients with limited ACLs on the read-write socket acquire the lock and cause denial of service to storage pool/volume API...

6.5CVSS6.2AI score0.01366EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2022/03/02 12:0 a.m.40 views

CVE-2021-3667

An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write socket with limited...

6.5CVSS6.6AI score0.01366EPSS
Exploits0
OSV
OSV
added 2022/02/26 12:0 a.m.32 views

GHSA-2QP4-G3Q3-F92W Improper Locking in JetBrains Kotlin

In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects...

5.3CVSS6.2AI score0.02178EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2022/02/26 12:0 a.m.34 views

Improper Locking in JetBrains Kotlin

In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects...

5.3CVSS2.2AI score0.02178EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/09 10:4 p.m.3 views

CVE-2021-0147

Improper locking in the Power Management Controller PMC for some Intel Chipset firmware before versions pmcfwlbgc1-21ww02a and pmcfwlbgb0-21ww02a may allow a privileged user to potentially enable denial of service via local access...

4.5AI score0.00166EPSS
Exploits0References1
NVD
NVD
added 2022/01/19 1:15 a.m.12 views

CVE-2022-22175

An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticated networked attacker to cause a flowprocessing daemon flowd crash and thereby a Denial of Service DoS. Continued receipt of these specific packets will cause a sustain...

7.5CVSS0.00688EPSS
Exploits0References1
Prion
Prion
added 2022/01/19 1:15 a.m.17 views

Design/Logic Flaw

An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticated networked attacker to cause a flowprocessing daemon flowd crash and thereby a Denial of Service DoS. Continued receipt of these specific packets will cause a sustain...

4.3CVSS7.5AI score0.00688EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/01/19 12:21 a.m.68 views

CVE-2022-22175

The CVE covers an Improper Locking vulnerability in the SIP ALG of Juniper Junos OS on MX Series and SRX Series, causing the flowd daemon to crash and trigger DoS when specific SIP traffic is processed with SIP ALG enabled. Affected versions include Junos OS: 20.4 (before 20.4R3‑S1), 21.1 (before...

7.5CVSS7.5AI score0.00688EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/01/05 12:0 a.m.16 views

Google Android Kernel elevation of privilege vulnerability (CNVD-2022-01773)

Google Android is a Linux-based open source operating system from Google. An elevation of privilege vulnerability exists in the Google Android Kernel. The vulnerability stems from an out-of-bounds write due to improper locking in the dwc3gadgetep0queue of ep0.c. An attacker could use this...

7.8CVSS7.5AI score0.001EPSS
Exploits0References1
NVD
NVD
added 2022/01/04 4:15 p.m.20 views

CVE-2022-20016

In vow driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862986; Issue ID: ALPS05862986...

6.7CVSS0.0009EPSS
Exploits0References1
OSV
OSV
added 2022/01/04 4:15 p.m.5 views

CVE-2022-20016

In vow driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862986; Issue ID: ALPS05862986...

6.7CVSS5.9AI score0.0009EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/01/04 4:15 p.m.8 views

CVE-2022-20016

In vow driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862986; Issue ID: ALPS05862986...

6.7CVSS6.7AI score0.0009EPSS
Exploits0References2
Prion
Prion
added 2022/01/04 4:15 p.m.17 views

Memory corruption

In vow driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862986; Issue ID: ALPS05862986...

4.6CVSS6.8AI score0.0009EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/12/15 7:15 p.m.20 views

CVE-2021-39640

In dwc3gadgetep0queue of ep0.c, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.8CVSS0.001EPSS
Exploits0References1
OSV
OSV
added 2021/12/15 7:15 p.m.6 views

CVE-2021-39656

In configfsopenfile of file.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

6.7CVSS6.7AI score
Exploits0References2
OSV
OSV
added 2021/12/15 7:15 p.m.4 views

UBUNTU-CVE-2021-39656

In configfsopenfile of file.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

6.7CVSS6.8AI score0.0012EPSS
Exploits0References4
Rows per page
Query Builder