Lucene search
+L

31 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:49 p.m.60 views

K80622270: Linux kernel vulnerability CVE-2020-10742

Security Advisory Description A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to crash. In some cases, a reach out of the index after one memory allocation by kmalloc will cause a kernel panic. The highest threat from this...

6CVSS6.6AI score0.00263EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.6 views

PT-2025-37875

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's ext4 filesystem implementation where the i disksize can exceed i size during partial write operations. This condition can trigger a warning and...

6CVSS6.6AI score0.00145EPSS
Exploits0
OSV
OSV
added 2022/07/30 11:4 a.m.6 views

OESA-2022-1791 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized read on the translatefail path, leading to an ioreadx or iowritex crash.CVE-2022-35414...

8.8CVSS6.8AI score0.00656EPSS
Exploits1References2
OSV
OSV
added 2022/07/11 2:15 a.m.8 views

AZL-10110 CVE-2022-35414 affecting package qemu for versions less than 6.2.0-7

softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized read on the translatefail path, leading to an ioreadx or iowritex crash. NOTE: a third party states that the Non-virtualization Use Case in the qemu.org reference applies here, i.e., "Bugs affecting the non-virtualization use ca...

8.8CVSS7.2AI score0.00656EPSS
Exploits1References1
NVD
NVD
added 2021/07/07 5:15 p.m.21 views

CVE-2021-21789

A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. During IOCTL 0x9c40a0e0, the first dword passed in the input buffer is the device port to write to and the dword at offset 4 is the value to write via...

8.8CVSS0.00321EPSS
Exploits1References1
CVE
CVE
added 2021/07/07 4:39 p.m.75 views

CVE-2021-21788

Summary: CVE-2021-21788 affects IOBit Advanced SystemCare Ultimate 14.2.0.220, where the driver mishandles Privileged I/O write requests. The vulnerability is triggered via IOCTL 0x9c40a0dc (and related IOCTLs in TALOS analysis), where the first dword of the input buffer selects the device port a...

8.8CVSS8.7AI score0.00321EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2021/06/02 11:15 a.m.54 views

CVE-2020-10742

A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to crash. In some cases, a reach out of the index after one memory allocation by kmalloc will cause a kernel panic. The highest threat from this vulnerability is to data confidentiality...

6CVSS6.9AI score0.00263EPSS
Exploits0References1
OSV
OSV
added 2020/12/18 8:15 p.m.8 views

CVE-2020-13512

A privilege escalation vulnerability exists in the WinRing0x64 Driver Privileged I/O Write IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet IRP can cause increased privileges. Using the IRP 0x9c40a0d8 gives a low privilege user direct access to the OUT instruction that...

8.8CVSS5.8AI score0.00527EPSS
Exploits1References1
CNNVD
CNNVD
added 2020/12/16 12:0 a.m.7 views

NZXT CAM 权限许可和访问控制问题漏洞

NZXT CAM is a performance monitoring software for gaming computers from NZXT USA. The software can be used to manage computer performance, temperature, and devices to ensure that the computer is at optimal performance. NZXT CAM 4.8.0 suffers from a Privilege Permission and Access Control Issues...

8.8CVSS7.3AI score0.00527EPSS
Exploits1References2
Veracode
Veracode
added 2020/10/01 3:52 a.m.28 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service. The vulnerability exists due to an index buffer overflow during Direct IO write leading to the NFS client to crash...

6CVSS3.5AI score0.00263EPSS
Exploits0References7Affected Software2
Exploit DB
Exploit DB
added 2015/08/27 12:0 a.m.53 views

QEMU - Programmable Interrupt Timer Controller Heap Overflow

Source: https://code.google.com/p/google-security-research/issues/detail?id=419c4 The programmable interrupt timer PIT controller in QEMU does not correctly validate the channel number when performing IO writes to the device controller, allowing both an information disclosure and heap-overflow...

7.4AI score
Exploits0
Rows per page
Query Builder