14 matches found
EUVD-2022-25371
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-0508
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of t...
CVE-2023-20768
In ion, there is a possible out of bounds read due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560720; Issue ID: ALPS07559800...
CVE-2022-20109
In ion, there is a possible use after free due to improper update of reference count. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID: ALPS06399915...
CVE-2022-21743
In ion, there is a possible use after free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06371108; Issue ID: ALPS06371108...
Palo Alto Networks Prisma SD-WAN ION 安全漏洞
The Palo Alto Networks Prisma SD-WAN ION is a series of next-generation software-defined enterprise branch appliances with integrated 4G or 5G cellular network access from Palo Alto Networks, Inc. in the United States. A security vulnerability exists in the Palo Alto Networks Prisma SD-WAN ION th...
Security Bulletin: IBM Instana Observability is affected by Vulnerabilities in Puma and Amazon Ion.
Summary Vulnerabilities in Puma and Amazon Ion were remediated in IBM Observability with Instana build 266. Vulnerability Details CVEID:CVE-2024-21647 DESCRIPTION: Puma is vulnerable to a denial of service, caused by incorrect behavior when parsing chunked transfer encoding bodies. By sending a...
CVE-2023-20616
In ion, there is a possible out of bounds read due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560720; Issue ID: ALPS07560720...
CVE-2022-21743
In ion, there is a possible use after free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06371108; Issue ID: ALPS06371108...
CVE-2022-20109
In ion, there is a possible use after free due to improper update of reference count. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID: ALPS06399915...
PT-2022-14353 · Ion · Ion
Name of the Vulnerable Software and Affected Versions: ion affected versions not specified Description: The issue is related to a possible use after free due to improper update of reference count in ion. This could lead to local escalation of privilege with no additional execution privileges...
UBUNTU-CVE-2016-6728
An elevation of privilege vulnerability in the kernel ION subsystem in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise,...
Multiple Google products kernel ION subsystem elevation of privilege vulnerability
Google Nexus 5X etc. are smart devices from Google USA. kernel ION is one of the kernel memory management subsystems. An elevation of privilege vulnerability exists in the kernel ION subsystem in several Google products. An attacker can exploit the vulnerability to execute arbitrary code in the...
Google Releases Supplemental Patch for Dirty Cow Vulnerability
Google’s November Android Security Bulletin, released Monday, patched 15 critical vulnerabilities and addressed 85 CVEs overall. But conspicuously absent is a fix for the Linux race condition vulnerability known as Dirty Cow Copy-on-Write that also impacts Android. While Google didn’t issue an...