Lucene search
K

6634 matches found

CNNVD
CNNVD
added 2023/08/14 12:0 a.m.2 views

Apple macOS Ventura Buffer Error Vulnerability

Apple macOS Ventura is a desktop operating system from Apple Inc. in the United States. A security vulnerability exists in Apple macOS Ventura prior to version 13.3, which stems from an out-of-bounds read issue that results in a kernel memory leak...

5.5CVSS6.4AI score0.00227EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/08/08 8:34 a.m.4 views

kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capconnect and l2capleconnectreq functions. An attacker with physical access within the range of standard Bluetooth transmission could...

8.8CVSS6.8AI score0.02014EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/08/08 8:27 a.m.3 views

kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capconnect and l2capleconnectreq functions. An attacker with physical access within the range of standard Bluetooth transmission could...

8.8CVSS6.8AI score0.02014EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/08/08 7:58 a.m.2 views

kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capconnect and l2capleconnectreq functions. An attacker with physical access within the range of standard Bluetooth transmission could...

8.8CVSS6.8AI score0.02014EPSS
Exploits0References5
GoogleProjectZero
GoogleProjectZero
added 2023/08/02 12:0 a.m.30 views

MTE As Implemented, Part 3: The Kernel

By Mark Brand, Project Zero Background In 2018, in the v8.5a version of the ARM architecture, ARM proposed a hardware implementation of tagged memory, referred to as MTE Memory Tagging Extensions. In Part 1 we discussed testing the technical and implementation limitations of MTE on the hardware...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2023/07/31 12:0 a.m.3 views

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a memory misreference vulnerability that originates when a user triggers the nftpipaporemove function using an element without NFTSETEXTKEYEND,...

7.8CVSS8.4AI score0.00958EPSS
Exploits0References37
Cvelist
Cvelist
added 2023/07/28 4:30 a.m.19 views

CVE-2023-38590

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A remote user may be able to cause unexpected system...

8.2AI score0.01EPSS
Exploits0References14
Vulnrichment
Vulnrichment
added 2023/07/28 4:30 a.m.16 views

CVE-2023-38590

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A remote user may be able to cause unexpected system...

6.7AI score0.01EPSS
Exploits0References14
CNNVD
CNNVD
added 2023/07/28 12:0 a.m.2 views

Apple watchOS 安全漏洞

Apple watchOS is an operating system for smartwatches from Apple. A security vulnerability exists in Apple watchOS version 9.6, which originated from a remote user could cause the system to terminate unexpectedly or corrupt kernel memory...

8.8CVSS7.6AI score0.01EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2023/07/28 12:0 a.m.43 views

Debian dla-3508 : hyperv-daemons - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3508 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3508-1 [email protected]...

7.8CVSS7.8AI score0.16642EPSS
Exploits15References36
Ubuntu
Ubuntu
added 2023/07/25 9:49 p.m.68 views

USN-6247-1: Linux kernel (OEM) vulnerabilities

David Leadbeater discovered that the netfilter IRC protocol tracking implementation in the Linux Kernel incorrectly handled certain message payloads in some situations. A remote attacker could possibly use this to cause a denial of service or bypass firewall filtering. CVE-2022-2663 It was...

7.8CVSS7.2AI score0.02163EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2023/07/25 7:57 a.m.4 views

kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation

A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nftables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user with CAPNETADMIN capability could use this...

7.8CVSS6.6AI score0.12966EPSS
Exploits7References6
RedHat Linux
RedHat Linux
added 2023/07/25 7:57 a.m.4 views

kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation

A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nftables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user with CAPNETADMIN capability could use this...

7.8CVSS6.6AI score0.12966EPSS
Exploits7References6
RedHat Linux
RedHat Linux
added 2023/07/25 7:55 a.m.4 views

kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation

A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nftables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user with CAPNETADMIN capability could use this...

7.8CVSS6.6AI score0.12966EPSS
Exploits7References6
RedHat Linux
RedHat Linux
added 2023/07/20 7:36 a.m.5 views

kernel: use-after-free in l2cap_connect and l2cap_le_connect_req in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capconnect and l2capleconnectreq functions. An attacker with physical access within the range of standard Bluetooth transmission could...

8.8CVSS6.8AI score0.02014EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/07/20 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of proper locking when an object performs an operation, which can be exploited by an attacker to...

6.7CVSS6.7AI score0.0034EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.34 views

Juniper Junos OS Multiple Vulnerabilities (JSA69720)

The version of Junos OS installed on the remote host is affected by multiple vulnerabilities as referenced in the JSA69720 advisory. - Multiple ethernet Network Interface Card NIC device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous...

5CVSS6.2AI score0.73006EPSS
Exploits15References3
OpenVAS
OpenVAS
added 2023/07/19 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-6234-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.00532EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2023/07/18 12:22 p.m.61 views

USN-6234-1: Linux kernel (Xilinx ZynqMP) vulnerability

Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-35788, LP: 2023577 It was discovered that for some...

7.8CVSS7.2AI score0.00532EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/07/18 9:3 a.m.4 views

kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation

A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nftables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user with CAPNETADMIN capability could use this...

7.8CVSS6.6AI score0.12966EPSS
Exploits7References6
Rows per page
Query Builder