CVE-2020-0586

CVE-2020-0586 affects Intel Server Platform Services (SPS) subsystems prior to SPS_E3_04.01.04.109.0 and SPS_E3_04.08.04.070.0. The root cause is improper initialization in SPS, which may allow a locally authenticated user to escalate privileges and/or cause a denial of service. Public sources (I...

Intel SPS Security Vulnerability

Intel Server Platform Services SPS is a server platform services program from Intel USA. A security vulnerability exists in Intel SPS versions prior to SPSE304.01.04.109.0 and SPSE304.08.04.070.0, which stems from the program not being properly initialized. A local attacker could exploit the...

Siemens SINUMERIK

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SINUMERIK Vulnerabilities: Buffer Underflow, Heap-based Buffer Overflow, Improper Initialization, Out-of-bounds Read, Stack-based Buffer Overflow, Access of Memory Location After...

Information Disclosure

kernel is vulnerable to information disclosure. An attacker is able to obtain confidential information via the eqlgmastercfg function in drivers/net/eql due to improper initialization of certain structure member...

Input validation

Improper initialization in IntelR Graphics Drivers before versions 15.40.44.5107, 15.45.29.5077, and 26.20.100.7000 may allow a privileged user to potentially enable a denial of service via local access...

CVE-2020-0506

Improper initialization in IntelR Graphics Drivers before versions 15.40.44.5107, 15.45.29.5077, and 26.20.100.7000 may allow a privileged user to potentially enable a denial of service via local access...

CVE-2020-0506

Improper initialization in IntelR Graphics Drivers before versions 15.40.44.5107, 15.45.29.5077, and 26.20.100.7000 may allow a privileged user to potentially enable a denial of service via local access...

CVE-2020-0561

Improper initialization in the IntelR SGX SDK before v2.6.100.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2020-0561

Improper initialization in the IntelR SGX SDK before v2.6.100.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

FreeBSD Kernel Stack Data Disclosure Vulnerability

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A stack data disclosure vulnerability exists in the FreeBSD kernel. The vulnerability is due to incorrect initialization of stack data structures and can be exploited by an attacker to cause a user process to crash...

CVE-2019-10561

Improper initialization of local variables which are parameters to sfs api may cause invalid pointer dereference and leads to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

CVE-2019-10561

Improper initialization of local variables which are parameters to sfs api may cause invalid pointer dereference and leads to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

openSUSE Security Update : LibVNCServer (openSUSE-2019-53)

This update for LibVNCServer fixes the following issues : Security issues fixed : - CVE-2018-15126: Fixed use-after-free in file transfer extension bsc1120114 - CVE-2018-6307: Fixed use-after-free in file transfer extension server code bsc1120115 - CVE-2018-20020: Fixed heap out-of-bound write...

MGASA-2019-0037 Updated libvncserver & x11vnc packages fix security vulnerabilities

A heap use-after-free vulnerability in the server code of the file transfer extension, which can result in remote code execution. This attack appears to be exploitable via network connectivity CVE-2018-6307. A heap use-after-free vulnerability in the server code of the file transfer extension,...

SUSE SLED15 / SLES15 Security Update : LibVNCServer (SUSE-SU-2019:0080-1)

This update for LibVNCServer fixes the following issues : Security issues fixed : CVE-2018-15126: Fixed use-after-free in file transfer extension bsc1120114 CVE-2018-6307: Fixed use-after-free in file transfer extension server code bsc1120115 CVE-2018-20020: Fixed heap out-of-bound write inside...

CVE-2018-20023

LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memor...

LibVNC improper initialization vulnerability (CNVD-2019-05098)

LibVNC is a cross-platform C library for implementing VNC server and client functionality. A security vulnerability exists in the VNC Repeater client code in versions prior to LibVNC 8b06f835e259652b0ff026898014fc7297ade858, which stems from incorrect initialization of the program. An attacker...

LibVNC Improper Initialization Vulnerability

LibVNC is a cross-platform C library for implementing VNC server and client functionality. A security vulnerability exists in the VNC client code in versions prior to LibVNC 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838, which stems from incorrect initialization of the program. An attacker could explo...

CVE-2018-20022

LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak...

Information disclosure

LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memor...