856 matches found
Nomachine NoMachine 安全漏洞
NoMachine is a remote desktop access tool from the Luxembourg company NoMachine. A security vulnerability exists in NoMachine Cloud Server, which can be exploited by an attacker to execute arbitrary code in kernel mode or cause a denial of service memory corruption and operating system crash via...
About the security content of watchOS 8.1
About the security content of watchOS 8.1 This document describes the security content of watchOS 8.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
About the security content of tvOS 15.1
About the security content of tvOS 15.1 This document describes the security content of tvOS 15.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
CVE-2021-30837
A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An application may be able to execute arbitrary code with kernel privileges...
Linux kernel 安全漏洞
Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel 5.14-rc3 is vulnerable due to a type obfuscation flaw in eBPF program processing. By executing a carefully crafted eBPF program, an authenticated attacker could exploit this vulnerability t...
The vulnerability of the hci_sock_bound_ioctl() function in the HCI subsystem of the Linux operating system allows a attacker to execute arbitrary code in the kernel context.
The vulnerability of the hcisockboundioctl function in the HCI subsystem of the Linux operating system arises from the simultaneous execution using a shared resource with incorrect synchronization of the “race condition”. Exploiting this vulnerability allows an attacker to execute arbitrary code ...
The vulnerability of the eBPF subsystem in the Linux operating system, related to reading beyond the buffer in memory, allows a hacker to execute arbitrary code in the kernel context.
The vulnerability of the eBPF subsystem in the Linux operating system is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the kernel context...
The vulnerability of the bpf_ringbuf_reserve() function in the Linux operating system, related to writing beyond the buffer boundaries in memory, allows a attacker to execute arbitrary code in the kernel context.
The vulnerability of the bpfringbufreserve function in the Linux operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the kernel context...
DEBIAN-CVE-2021-38300
arch/mips/net/bpfjit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architectur...
Apple iPadOS 缓冲区错误漏洞
Apple iPadOS is a suite of operating systems from Apple Inc. for the iPad tablet computer. Apple iPadOS suffers from a buffer error vulnerability that originates from a boundary error in the Attachment Manager. An attacker can exploit the vulnerability to trigger excessive memory consumption and...
PlayStation: size_t-to-int vulnerability in exFAT leads to memory corruption via malformed USB flash drives
Summary A heap-based buffer overflow can be triggered by a malformed exFAT USB flash drive. Vulnerability The vulnerability is in Sony's exFAT implementation where there is an integer truncation from 64bit to 32bit on a size variable that is used to allocate the up-case table: c int...
CVE-2021-30793
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges...
CVE-2021-30770
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...
CVE-2021-30770
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...
Code injection
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...
CVE-2021-30805
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges...
CVE-2021-30770
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...
CVE-2021-30935
A logic issue was addressed with improved validation. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. An application may be able to execute arbitrary code with kernel privileges...
CVE-2021-30933
A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6. A malicious application may be able to execute arbitrary code with kernel privileges...
CVE-2021-30914
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1. An application may be able to execute arbitrary code with kernel privileges...