CVE-2024-6222

In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC messages. Docker Desktop v4.29.0 https://docs.docker.com/desktop/release-notes/4290 fixes the...

CVE-2024-6222 In Docker Desktop before v4.29.0 an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC messages

In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC messages. Docker Desktop v4.29.0 https://docs.docker.com/desktop/release-notes/4290 fixes the...

CVE-2024-6222

Docker Desktop prior to v4.29.0 is affected: a container breakout can escape to the host via extension- and dashboard-related IPC messages. Vulnerability details show the issue exists in Docker Desktop with Hyper-V backend on MacOS, Linux, and Windows. Remediation per the sources includes fixing ...

Docker Desktop Security Vulnerabilities

Docker Desktop is a desktop software for lightweight deployment of applications based on container technology from Docker Inc. in the United States. The product provides a desktop environment that supports creating a container lightweight virtual machine and deploying and running applications on...

CVE-2024-23368 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC

Memory corruption when allocating and accessing an entry in an SMEM partition...

Malicious code in naql-ipc (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-2690 Malicious code in naql-ipc (npm)

--- -= Per source details. Do not edit below this line.=-...

Google Pixel Security Breach

Google Pixel is a smartphone from Google, Inc USA. A security vulnerability exists in Google Pixel, which stems from the presence of uninitialized data in the pluginipchandler module of slcplugin.c, which may allow for information disclosure...

Fedora: Security Advisory for qt6-qtremoteobjects (FEDORA-2024-bfb8617ba3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for qt5-qtremoteobjects (FEDORA-2024-2e27372d4c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2021-3759

A memory overflow vulnerability was found in the Linux kernel's ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from th...

CVE-2023-43544

Memory corruption when IPC callback handle is used after it has been released during register callback by another thread...

CVE-2023-43544 Use After Free in Audio

Memory corruption when IPC callback handle is used after it has been released during register callback by another thread...

CVE-2023-43544 Use After Free in Audio

Memory corruption when IPC callback handle is used after it has been released during register callback by another thread...

RHEL 5 : arts (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - arts,kdelibs3: Use of mktemp3 allows attacker to hijack the IPC CVE-2015-7543 Note that Nessus has not tested for...

CVE-2024-35344

Certain Anpviz products contain a hardcoded cryptographic key stored in the firmware of the device. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380, IPC-D880, IPC-D280, IPC-D3180, MC800N, YM500L, YM800NN2, YMF50B, YM800SV2, YM500L8, and YM200E10...

CVE-2024-35341

Certain Anpviz products allow unauthenticated users to download the running configuration of the device via a HTTP GET request to /ConfigFile.ini or /config.xml URIs. This configuration file contains usernames and encrypted passwords encrypted with a hardcoded key common to all devices. This...

多款Anpviz产品 安全漏洞

Anpviz IPC is a series of webcams from Anpviz. A security vulnerability exists in multiple Anpviz products that stems from a vulnerability that allows an unauthenticated attacker to modify or disable camera-related settings such as microphone volume, speaker volume, LED lighting, NTP, motion...

多款Anpviz产品 安全漏洞

Anpviz IPC is a series of network cameras from Anpviz. A security vulnerability exists in multiple Anpviz products that originates from a vulnerability that allows an unauthenticated attacker to download the device's running configuration to the /ConfigFile.ini or /config.xml URIs via an HTTP GET...

多款Anpviz产品 安全漏洞

Anpviz IPC is a series of network cameras from Anpviz. A security vulnerability exists in multiple Anpviz products that originates from a vulnerability that allows an unauthenticated attacker to download arbitrary files from the device's filesystem to /reloading/URI via an HTTP GET request.Affect...