Lucene search
K

58 matches found

OSV
OSV
added 2022/11/21 7:15 a.m.4 views

CVE-2022-4087

A vulnerability was found in iPXE. It has been declared as problematic. This vulnerability affects the function tlsnewciphertext of the file src/net/tls.c of the component TLS. The manipulation of the argument padlen leads to information exposure through discrepancy. The name of the patch is...

4.3CVSS4.3AI score0.00481EPSS
Exploits0References2
NVD
NVD
added 2022/11/21 7:15 a.m.17 views

CVE-2022-4087

A vulnerability was found in iPXE. It has been declared as problematic. This vulnerability affects the function tlsnewciphertext of the file src/net/tls.c of the component TLS. The manipulation of the argument padlen leads to information exposure through discrepancy. The name of the patch is...

4.3CVSS0.00481EPSS
Exploits0References2
Prion
Prion
added 2022/11/21 7:15 a.m.18 views

Design/Logic Flaw

A vulnerability was found in iPXE. It has been declared as problematic. This vulnerability affects the function tlsnewciphertext of the file src/net/tls.c of the component TLS. The manipulation of the argument padlen leads to information exposure through discrepancy. The name of the patch is...

4CVSS4.5AI score0.00481EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/21 12:0 a.m.4 views

CVE-2022-4087 iPXE TLS tls.c tls_new_ciphertext information exposure

A vulnerability was found in iPXE. It has been declared as problematic. This vulnerability affects the function tlsnewciphertext of the file src/net/tls.c of the component TLS. The manipulation of the argument padlen leads to information exposure through discrepancy. The name of the patch is...

2.6CVSS4.1AI score0.00481EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/11/21 12:0 a.m.19 views

CVE-2022-4087

A vulnerability was found in iPXE. It has been declared as problematic. This vulnerability affects the function tlsnewciphertext of the file src/net/tls.c of the component TLS. The manipulation of the argument padlen leads to information exposure through discrepancy. The name of the patch is...

4.3CVSS5.4AI score0.00481EPSS
Exploits0References2
CVE
CVE
added 2022/11/21 12:0 a.m.77 views

CVE-2022-4087

The CVE-2022-4087 entry concerns iPXE and affects the TLS component (src/net/tls.c, function tls_new_ciphertext). The vulnerability arises from manipulating the pad_len argument, leading to information exposure through discrepancy. Public sources in the connected documents identify the issue and ...

4.3CVSS4.1AI score0.00481EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/11/21 12:0 a.m.4 views

iPXE 安全漏洞

iPXE is iPXE open source a network bootstrap program . An information disclosure vulnerability exists in versions of iPXE prior to iPXE 2022.11.08 that affects the tlsnewciphertext function in the component TLS src/net/tls.c file and can be exploited by an attacker to obtain sensitive information...

4.3CVSS6AI score0.00481EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/11/21 12:0 a.m.22 views

CVE-2022-4087 iPXE TLS tls.c tls_new_ciphertext information exposure

A vulnerability was found in iPXE. It has been declared as problematic. This vulnerability affects the function tlsnewciphertext of the file src/net/tls.c of the component TLS. The manipulation of the argument padlen leads to information exposure through discrepancy. The name of the patch is...

2.6CVSS4.9AI score0.00481EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/11/21 12:0 a.m.34 views

CVE-2022-4087

A vulnerability was found in iPXE. It has been declared as problematic. This vulnerability affects the function tlsnewciphertext of the file src/net/tls.c of the component TLS. The manipulation of the argument padlen leads to information exposure through discrepancy. The name of the patch is...

4.3CVSS4.5AI score0.00481EPSS
Exploits0
Rockylinux
Rockylinux
added 2022/11/15 6:13 a.m.16 views

ipxe bug fix and enhancement update

An update is available for ipxe. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.1...

2AI score
Exploits0
Rockylinux
Rockylinux
added 2022/11/08 6:25 a.m.15 views

ipxe bug fix and enhancement update

An update is available for ipxe. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.7...

2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/10/27 12:0 a.m.4 views

PT-2022-6954 · Cisco · Cisco Ios Xr

Name of the Vulnerable Software and Affected Versions: Cisco IOS XR affected versions not specified Description: The issue is related to insufficient image verification in the iPXE boot function of Cisco IOS XR software. This could allow an authenticated, local attacker to install an unverified...

7.8CVSS7.1AI score0.00095EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2022/05/17 6:48 a.m.11 views

new packages: ipxe / bug fix and enhancement update

An update is available for ipxe. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

1.6AI score
Exploits0
OSV
OSV
added 2022/05/10 8:10 a.m.12 views

ALBA-2022:1973 ipxe bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

6.8AI score
Exploits0References1
AlmaLinux
AlmaLinux
added 2022/05/10 8:10 a.m.15 views

ipxe bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

1.4AI score
Exploits0References1
Rockylinux
Rockylinux
added 2022/05/10 8:10 a.m.13 views

ipxe bug fix and enhancement update

An update is available for ipxe. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.6...

2AI score
Exploits0
OSV
OSV
added 2021/05/18 6:26 a.m.11 views

ALBA-2021:1941 ipxe bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

6.8AI score
Exploits0References1
AlmaLinux
AlmaLinux
added 2021/05/18 6:26 a.m.14 views

ipxe bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

1.4AI score
Exploits0References1
Rockylinux
Rockylinux
added 2021/05/18 6:26 a.m.10 views

ipxe bug fix and enhancement update

An update is available for ipxe. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

1.8AI score
Exploits0
Packet Storm
Packet Storm
added 2021/04/29 12:0 a.m.202 views

Fog Project 1.5.9 Shell Upload

Exploit Title: Fog Project - File Upload RCE Authenticated Date: 2021-04-28 Exploit Author: [email protected] Vendor Homepage: https://fogproject.org Software Link: https://github.com/FOGProject/fogproject/archive/1.5.9.zip Tested on: Debian 10 On the Attacker Machine: 1 Create an empty 10Mb file...

0.1AI score
Exploits0
Rows per page
Query Builder