CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2808 matches found

Cisco•added 2021/07/15 4:0 p.m.•83 views

Cisco Adaptive Security Appliance Software Release 9.16.1 and Cisco Firepower Threat Defense Software Release 7.0.0 IPsec Denial of Service Vulnerability

A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, remote attacker or an unauthenticated attacker in a man-in-the-middle position to cause an unexpected reload of the...

7.7CVSS7.4AI score0.01188EPSS

Exploits0References1

NVD•added 2021/06/09 7:15 a.m.•12 views

CVE-2020-11176

While processing server certificate from IPSec server, certificate validation for subject alternative name API can cause heap overflow which can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrago...

10CVSS0.00683EPSS

Exploits0References1

Cvelist•added 2021/06/09 6:20 a.m.•22 views

CVE-2020-11176

9.8CVSS9.8AI score0.00683EPSS

Exploits0References1

CVE•added 2021/06/09 6:20 a.m.•50 views

CVE-2020-11176

CVE-2020-11176 is a memory-corruption issue in Qualcomm closed‑source components (cert processing for IPSec server certificates; SAN API) that can cause a heap overflow. Affected: Snapdragon/mobile Qualcomm stack as per the CVE entry and Qualcomm bulletin; CVSSv3.1 base score 9.8 (Crypto/Network ...

10CVSS9.6AI score0.00683EPSS

Exploits0References1Affected Software1

OpenVAS•added 2021/06/09 12:0 a.m.•32 views

SUSE: Security Advisory (SUSE-SU-2020:1772-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.03588EPSS

Exploits1References2

OpenVAS•added 2021/06/09 12:0 a.m.•20 views

SUSE: Security Advisory (SUSE-SU-2015:1367-1)

7.8CVSS7.1AI score0.09798EPSS

Exploits1References5

OpenVAS•added 2021/06/09 12:0 a.m.•16 views

SUSE: Security Advisory (SUSE-SU-2018:0423-1)

7.8CVSS7.7AI score0.02928EPSS

Exploits0References4

OpenVAS•added 2021/06/09 12:0 a.m.•27 views

SUSE: Security Advisory (SUSE-SU-2020:2980-1)

8.8CVSS8AI score0.07693EPSS

Exploits7References2

CNVD•added 2021/06/07 12:0 a.m.•13 views

Command Execution Vulnerability in DeepSync IPSec VPNs

DeepTrust IPSec VPN provides an all-in-one networking solution for small and medium-sized branches. A command execution vulnerability exists in the DeepSync IPSec VPN, which can be exploited by an attacker to gain control of the server...

7.6AI score

Exploits0

CNNVD•added 2021/06/07 12:0 a.m.•4 views

Linux kernel 资源管理错误漏洞

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A post-release reuse vulnerability exists in the XFRM subsystem in Linux kernel versions prior to 5.0.19. An attacker...

7.8CVSS8.1AI score0.00503EPSS

Exploits1References8

The Hacker News•added 2021/05/26 3:30 p.m.•282 views

Data Wiper Malware Disguised As Ransomware Targets Israeli Entities

Researchers on Tuesday disclosed a new espionage campaign that resorts to destructive data-wiping attacks targeting Israeli entities at least since December 2020 that camouflage the malicious activity as ransomware extortions. Cybersecurity firm SentinelOne attributed the attacks to a nation-stat...

9.8CVSS1.5AI score0.99999EPSS

Exploits22

ThreatPost•added 2021/05/25 8:26 p.m.•53 views

‘Agrius’ APT Launches Wiper Attacks Against Israelis

A new attack group called Agrius is launching damaging wiper attacks against Israeli targets, which researchers said are hiding behind ransomware to make their state-sponsored activities appear financially motivated. Sentinel Labs analysts said they have been tracking Agrius’ operations in Israel...

7.8AI score

Exploits0References9

CNVD•added 2021/05/09 12:0 a.m.•14 views

Command Execution Vulnerability in the Sangfor-IPSec MIG of Deepcore Technology Co.

Ltd. is a product and service provider focusing on enterprise-level security, cloud computing and infrastructure, with three business brands, namely, DeepsenSecure, Cloud and DeepsenSecure New IT, which are committed to carrying the cornerstone work in the process of digital transformation of use...

7.5AI score

Exploits0

Malwarebytes•added 2021/05/07 11:11 a.m.•33 views

VPN protocols explained and compared

A Virtual Private Network VPN creates a safe "tunnel" between you and a computer you trust normally your VPN provider to protect your traffic from spying and manipulation. Any VPN worth its money encrypts the information that passes through it, so in this article we will ignore those that dont us...

6.8AI score

Exploits0

RedHat Linux•added 2021/04/27 7:25 a.m.•173 views

Important: Red Hat Security Advisory: kernel-alt security and bug fix update

An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

7.8CVSS6.9AI score0.02079EPSS

Exploits3References5

OpenVAS•added 2021/04/19 12:0 a.m.•14 views

SUSE: Security Advisory (SUSE-SU-2017:0720-1)

7.5CVSS8.1AI score0.95707EPSS

Exploits7References4

OpenVAS•added 2021/04/19 12:0 a.m.•32 views

SUSE: Security Advisory (SUSE-SU-2021:0835-1)

8.1CVSS7.1AI score0.06563EPSS

Exploits3References8

OpenVAS•added 2021/04/19 12:0 a.m.•32 views

SUSE: Security Advisory (SUSE-SU-2020:3656-1)