CVE-2021-44169

A improper initialization in Fortinet FortiClient Windows version 6.0.10 and below, version 6.2.9 and below, version 6.4.7 and below, version 7.0.3 and below allows attacker to gain administrative privileges via placing a malicious executable inside the FortiClient installer's directory...

CVE-2024-0819

Improper initialization of default settings in TeamViewer Remote Client prior version 15.51.5 for Windows, Linux and macOS, allow a low privileged user to elevate privileges by changing the personal password setting and establishing a remote connection to a logged-in admin account...

Security Bulletin: IBM QRadar Network Packet Capture includes components with multiple known vulnerabilities

Summary The product includes multiple vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. IBM has addressed the relevant CVEs. Vulnerability Details CVEID:CVE-2024-37891 DESCRIPTION: urllib3 could allow a remote authenticated attacker to...

Intel® NUC Software Advisory

Summary: Summary: Potential security vulnerabilities in some Intel® NUC Software may allow escalation of privilege, denial of service, and information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-28737...

CVE-2024-54129

The CVE-2024-54129 entry concerns NASA’s Interplanetary Overlay Network (ION) - DTN BPv7, version 4.1.3. The flaw occurs when receiving a bundle with an improper reference to the imc scheme that contains a valid Service-Specific Part (SSP) in the Previous Node Block, which can cause ION to become...

CVE-2024-54129 Improper Initialization of `imc` Scheme Leading to `SIGABRT` in ION-DTN BPv7

The NASA’s Interplanetary Overlay Network ION is an implementation of Delay/Disruption Tolerant Networking DTN. A vulnerability exists in the version ION-DTN BPv7 implementation version 4.1.3 when receiving a bundle with an improper reference to the imc scheme with valid Service-Specific Part SSP...

CVE-2024-25563

Improper initialization in firmware for some IntelR PROSet/Wireless Software and IntelR KillerTM Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclosure via local access...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly initializing the bits of the MANAGEPAGES command when initializing the command mask...

CVE-2024-47728 bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error

In the Linux kernel, the following vulnerability has been resolved: bpf: Zero former ARGPTRTOLONG,INT args in case of error For all non-tracing helpers which formerly had ARGPTRTOLONG,INT as input arguments, zero the value for the case of an error as otherwise it could leak memory. For tracing, i...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to properly initialize fields of the hfsinodeinfo structure...

CVE-2023-48361

Improper initialization in firmware for some IntelR CSME may allow a privileged user to potentially enable information disclosure via local access...

PT-2024-6365 · Intel · Intel Ethernet Network Controllers/Adapters

Name of the Vulnerable Software and Affected Versions: Linux kernel mode driver for Intel Ethernet Network Controllers and Adapters versions prior to 28.3 Description: The issue is related to improper initialization and insecure privilege management in the Linux kernel mode driver for Intel...

eap-galleon: custom provisioning creates unsecured http-invoker

An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...

CVE-2023-45315

Improper initialization in some IntelR Power Gadget software for Windwos all versions may allow an authenticated user to potentially enable denial of service via local access...

CVE-2023-45315

The CVE-2023-45315 issue affects Intel Power Gadget software for Windows (all versions). It is caused by improper initialization in the Power Gadget component, which may allow an authenticated user to trigger a local denial-of-service condition. The vulnerability is documented across multiple sou...

PT-2024-13237 · Intel · Intel Power Gadget

Name of the Vulnerable Software and Affected Versions: IntelR Power Gadget software for Windows affected versions not specified Description: The issue is related to improper initialization in the IntelR Power Gadget software, which may allow an authenticated user to potentially enable denial of...

CVE-2023-27322

CVE-2023-27322 affects Parallels Desktop Service, with a local privilege escalation caused by improper initialization of environment variables in the Parallels Service. The vulnerability enables a local attacker who already has low-privilege code execution access to escalate to root and execute a...

Exploit for Improper Initialization in Linux Linux_Kernel

CVE-2022-0847 A simple reproduction of CVE-2022-0847 Orig...

CVE-2024-0154

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter initialization vulnerability. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory...

BIT-PILLOW-2022-22815

pathgetbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path...