Lucene search
K

116 matches found

BDU FSTEC
BDU FSTEC
added 2018/05/25 12:0 a.m.4 views

The vulnerability of the Qualcomm QTEE API in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Qualcomm QTEE API in the Android operating system is related to errors in handling array indexes. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS5.5AI score0.01252EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.26 views

Amazon Linux: Security Advisory (ALAS-2014-452)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.1AI score0.03082EPSS
Exploits0References2
NVD
NVD
added 2015/02/02 4:59 p.m.20 views

CVE-2014-8612

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

4.6CVSS6.4AI score0.00896EPSS
Exploits5References6
UbuntuCve
UbuntuCve
added 2015/02/02 4:59 p.m.45 views

CVE-2014-8612

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

4.6CVSS6AI score0.00896EPSS
Exploits5References2
Prion
Prion
added 2015/02/02 4:59 p.m.20 views

Information disclosure

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

4.6CVSS6.9AI score0.00896EPSS
Exploits5References6Affected Software1
CVE
CVE
added 2015/02/02 4:0 p.m.60 views

CVE-2014-8612

CVE-2014-8612 corresponds to multiple FreeBSD kernel SCTP issues. The SCTP_SS_VALUE path allows a local attacker to craft an out-of-bounds stream_id index into stcb->asoc.strmout, enabling 16-bit kernel memory write (memory corruption) and, via the function pointer path, arbitrary write of a 1...

4.6CVSS6.3AI score0.00896EPSS
Exploits5References6Affected Software1
Cvelist
Cvelist
added 2015/02/02 4:0 p.m.32 views

CVE-2014-8612

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

6.3AI score0.00896EPSS
Exploits5References6
Debian CVE
Debian CVE
added 2015/02/02 4:0 p.m.22 views

CVE-2014-8612

Removed by vendor...

4.6CVSS6.7AI score0.00896EPSS
Exploits5
Amazon
Amazon
added 2014/11/22 12:0 a.m.36 views

Medium: libX11, libXcursor, libXfixes, libXi, libXrandr, libXrender, libXres, libXt, libXv, libXvMC, libXxf86dga, libXxf86vm, libdmx, xorg-x11-proto-devel

Issue Overview: Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way various X11 client libraries handled certain protocol data. An attacker able to submit invalid protocol data to an X11 server via a malicious X11 client could use either of these flaws t...

6.8CVSS9.5AI score0.03082EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.35 views

RedHat Update for X11 client libraries RHSA-2014:1436-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.6AI score0.03082EPSS
Exploits0References2
NVD
NVD
added 2014/06/06 2:55 p.m.19 views

CVE-2013-2602

Multiple array index errors in the MyHeritage SEQueryObject ActiveX control SearchEngineQuery.dll 1.0.2.0 allow remote attackers to execute arbitrary code via the 1 seTokensArray, or 2 seTokensValuesArray parameter to the AddTokens method; 3 seLastNameTokensArray parameter to the AddLastNameToken...

9.3CVSS7.7AI score0.03626EPSS
Exploits0References4
Prion
Prion
added 2014/06/06 2:55 p.m.15 views

Security feature bypass

Multiple array index errors in the MyHeritage SEQueryObject ActiveX control SearchEngineQuery.dll 1.0.2.0 allow remote attackers to execute arbitrary code via the 1 seTokensArray, or 2 seTokensValuesArray parameter to the AddTokens method; 3 seLastNameTokensArray parameter to the AddLastNameToken...

9.3CVSS8.3AI score0.03626EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2014/06/06 2:0 p.m.27 views

CVE-2013-2602

Multiple array index errors in the MyHeritage SEQueryObject ActiveX control SearchEngineQuery.dll 1.0.2.0 allow remote attackers to execute arbitrary code via the 1 seTokensArray, or 2 seTokensValuesArray parameter to the AddTokens method; 3 seLastNameTokensArray parameter to the AddLastNameToken...

7.7AI score0.03626EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/04/24 5:36 p.m.4 views

Kernel: HID: memory corruption flaw

Multiple array index errors in drivers/hid/hid-core.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11 allow physically proximate attackers to execute arbitrary code or cause a denial of service heap memory corruption via a crafted device that provides an invalid Repor...

6.2CVSS7.2AI score0.00477EPSS
Exploits0References4
NVD
NVD
added 2014/03/31 2:58 p.m.23 views

CVE-2014-0983

Multiple array index errors in programs that are automatically generated by VBox/HostServices/SharedOpenGL/crserverlib/serverdispatch.py in Oracle VirtualBox 4.2.x through 4.2.20 and 4.3.x before 4.3.8, when using 3D Acceleration, allow local guest OS users to execute arbitrary code on the Chromi...

6.9CVSS6.8AI score0.08195EPSS
Exploits11References9
UbuntuCve
UbuntuCve
added 2014/03/31 2:58 p.m.32 views

CVE-2014-0983

Multiple array index errors in programs that are automatically generated by VBox/HostServices/SharedOpenGL/crserverlib/serverdispatch.py in Oracle VirtualBox 4.2.x through 4.2.20 and 4.3.x before 4.3.8, when using 3D Acceleration, allow local guest OS users to execute arbitrary code on the Chromi...

6.9CVSS7AI score0.08195EPSS
Exploits11References5
Prion
Prion
added 2014/03/31 2:58 p.m.22 views

Code injection

Multiple array index errors in programs that are automatically generated by VBox/HostServices/SharedOpenGL/crserverlib/serverdispatch.py in Oracle VirtualBox 4.2.x through 4.2.20 and 4.3.x before 4.3.8, when using 3D Acceleration, allow local guest OS users to execute arbitrary code on the Chromi...

6.9CVSS7.2AI score0.08195EPSS
Exploits11References9Affected Software1
CVE
CVE
added 2014/03/28 9:0 p.m.88 views

CVE-2014-0983

CVE-2014-0983 affects Oracle VirtualBox 4.2.x (through 4.2.20) and 4.3.x (before 4.3.8). It describes multiple array-index errors in VBox’s generated OpenGL/SharedOpenGL server code (server_dispatch.py) that, when 3D acceleration is enabled, permit local guest OS users to execute arbitrary code o...

6.9CVSS6.5AI score0.08195EPSS
Exploits11References9Affected Software1
Debian CVE
Debian CVE
added 2014/03/28 9:0 p.m.44 views

CVE-2014-0983

Multiple array index errors in programs that are automatically generated by VBox/HostServices/SharedOpenGL/crserverlib/serverdispatch.py in Oracle VirtualBox 4.2.x through 4.2.20 and 4.3.x before 4.3.8, when using 3D Acceleration, allow local guest OS users to execute arbitrary code on the Chromi...

6.9CVSS4.1AI score0.08195EPSS
Exploits11
NVD
NVD
added 2014/01/14 4:29 a.m.25 views

CVE-2013-6123

Multiple array index errors in drivers/media/video/msm/server/msmcamserver.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node...

6.9CVSS6.8AI score0.00299EPSS
Exploits1References4
Rows per page
Query Builder