Lucene search
K

754 matches found

OSV
OSV
added 2015/06/03 12:0 a.m.1 views

UBUNTU-CVE-2015-4104

Xen 3.3.x through 4.5.x does not properly restrict access to PCI MSI mask bits, which allows local x86 HVM guest users to cause a denial of service unexpected interrupt and host crash via unspecified vectors...

7.8CVSS7.3AI score0.03427EPSS
Exploits0References4
OSV
OSV
added 2015/04/01 2:59 p.m.1 views

DEBIAN-CVE-2015-2752

The XENDOMCTLmemorymapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service host CPU consumption via a crafted request to the device model qemu-dm...

4.9CVSS8.1AI score0.00453EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2014/10/21 12:0 a.m.31 views

wireshark security update

1.10.3-12.0.1.el7 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.10.3-12 - security patches - Related: 1148266 1.10.3-11 - security patches - Resolves: CVE-2014-6421 CVE-2014-6423 CVE-2014-6424 CVE-2014-6425 CVE-2014-6426 CVE-2014-6427 CVE-2014-6428 CVE-2014-6429...

5CVSS1.8AI score0.03409EPSS
Exploits0
Prion
Prion
added 2014/09/23 10:55 p.m.12 views

Hardcoded credentials

IBM System Networking G8052, G8124, G8124-E, G8124-ER, G8264, G8316, and G8264-T switches before 7.9.10.0; EN4093, EN4093R, CN4093, SI4093, EN2092, and G8264CS switches before 7.8.6.0; Flex System Interconnect Fabric before 7.8.6.0; 1G L2-7 SLB switch for Bladecenter before 21.0.21.0; 10G VFSM fo...

10CVSS6.9AI score0.02027EPSS
Exploits0References2Affected Software20
Oracle linux
Oracle linux
added 2014/03/31 12:0 a.m.60 views

wireshark security update

1.8.10-7.0.1.el6 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-7 - security patches - Resolves: CVE-2013-6337 1.8.10-6 - security patches - Resolves: CVE-2014-2281 CVE-2014-2283 CVE-2014-2299 1.8.10-5 - security patches - Resolves: CVE-2013-6336 CVE-2013-6338...

9.3CVSS1.8AI score0.47422EPSS
Exploits13
NVD
NVD
added 2013/10/22 11:17 a.m.20 views

CVE-2013-5550

The fabric-interconnect component in Cisco Unified Computing System UCS allows local users to cause a denial of service via crafted command parameters that trigger hardware-component write operations, aka Bug ID CSCtq86549...

4.6CVSS6.3AI score0.00262EPSS
Exploits0References1
Cvelist
Cvelist
added 2013/10/22 10:0 a.m.26 views

CVE-2013-5550

The fabric-interconnect component in Cisco Unified Computing System UCS allows local users to cause a denial of service via crafted command parameters that trigger hardware-component write operations, aka Bug ID CSCtq86549...

6.3AI score0.00262EPSS
Exploits0References1
CVE
CVE
added 2013/10/22 10:0 a.m.68 views

CVE-2013-5550

CVE-2013-5550 affects the Cisco UCS fabric interconnect. The issue arises from improper filtering of user-supplied parameters, enabling a local attacker to trigger hardware-component write operations and cause a denial-of-service condition. The vulnerability requires local access to the targeted ...

4.6CVSS6.5AI score0.00262EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2013/10/21 5:57 p.m.33 views

Cisco Unified Computing System Fabric Interconnect Man-In-The-Middle Vulnerability

A vulnerability in the Fabric Interconnect KVM module of Cisco Unified Computing System could allow an unauthenticated, remote attacker to execute a man-in-the-middle attack. The vulnerability is due to the virtual KVM sending video data unencrypted. An attacker could exploit this vulnerability b...

4.3CVSS2.7AI score0.00848EPSS
Exploits0References1
Cisco
Cisco
added 2013/10/21 4:24 p.m.27 views

Cisco Unified Computing System Fabric Interconnect Denial of Service Vulnerability

A vulnerability in the fabric interconnect of Cisco Unified Computing System could allow an authenticated, local attacker to cause a denial of service DoS condition. The vulnerability is due to improper filtering of user-supplied parameters. An attacker could exploit this vulnerability by executi...

4.6CVSS1.8AI score0.00262EPSS
Exploits0References1
NVD
NVD
added 2013/10/21 10:50 a.m.24 views

CVE-2012-4115

The fabric-interconnect component in Cisco Unified Computing System UCS does not encrypt KVM virtual-media data, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug...

5.8CVSS6AI score0.00848EPSS
Exploits0References1
Prion
Prion
added 2013/10/21 10:50 a.m.19 views

Code injection

The fabric-interconnect component in Cisco Unified Computing System UCS does not encrypt KVM virtual-media data, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug...

5.8CVSS6.4AI score0.00848EPSS
Exploits0References1
CVE
CVE
added 2013/10/21 10:0 a.m.53 views

CVE-2012-4115

CVE-2012-4115 affects Cisco UCS Fabric Interconnect: KVM virtual-media traffic is not encrypted, enabling MITM capture or modification of KVM traffic. NVD lists Confidentiality/Integrity impact as Partial, with Network attack vector and no authentication required. Cisco and Red Hat entries confir...

5.8CVSS6.1AI score0.00848EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/10/21 10:0 a.m.26 views

CVE-2012-4115

The fabric-interconnect component in Cisco Unified Computing System UCS does not encrypt KVM virtual-media data, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug...

6AI score0.00848EPSS
Exploits0References1
NVD
NVD
added 2013/10/19 10:36 a.m.15 views

CVE-2012-4114

The fabric-interconnect KVM module in Cisco Unified Computing System UCS does not encrypt video data, which allows man-in-the-middle attackers to watch KVM display content by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug ID CSCtr72949...

5.8CVSS6.4AI score0.00848EPSS
Exploits0References1
NVD
NVD
added 2013/10/19 10:36 a.m.19 views

CVE-2012-4116

The fabric-interconnect component in Cisco Unified Computing System UCS does not encrypt KVM media traffic, which allows remote attackers to obtain sensitive information, and consequently complete the authentication process for a server connection, by sniffing the network, aka Bug ID CSCtr72970...

4.3CVSS6.7AI score0.01119EPSS
Exploits0References1
NVD
NVD
added 2013/10/19 10:36 a.m.15 views

CVE-2012-4113

The fabric-interconnect component in Cisco Unified Computing System UCS allows local users to gain privileges and read arbitrary files via crafted command parameters within the command-line interface, aka Bug ID CSCtr43374...

4.6CVSS6.7AI score0.00302EPSS
Exploits0References1
Prion
Prion
added 2013/10/19 10:36 a.m.16 views

Command injection

The fabric-interconnect component in Cisco Unified Computing System UCS allows local users to gain privileges and read arbitrary files via crafted command parameters within the command-line interface, aka Bug ID CSCtr43374...

4.6CVSS7.2AI score0.00302EPSS
Exploits0References1
Prion
Prion
added 2013/10/19 10:36 a.m.12 views

Authentication flaw

The fabric-interconnect component in Cisco Unified Computing System UCS does not encrypt KVM media traffic, which allows remote attackers to obtain sensitive information, and consequently complete the authentication process for a server connection, by sniffing the network, aka Bug ID CSCtr72970...

4.3CVSS7.2AI score0.01119EPSS
Exploits0References1
Prion
Prion
added 2013/10/19 10:36 a.m.23 views

Code injection

The fabric-interconnect KVM module in Cisco Unified Computing System UCS does not encrypt video data, which allows man-in-the-middle attackers to watch KVM display content by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug ID CSCtr72949...

5.8CVSS6.9AI score0.00848EPSS
Exploits0References1
Rows per page
Query Builder