Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6611 matches found

CNVD
CNVDadded 2018/04/08 12:0 a.m.1 views

Kernel Memory Corruption Vulnerability in Multiple Apple Products (CNVD-2018-08247)

Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers; tvOS is a smart TV operating system; and watchOS is a smart watch operating system. kernel is a...

9.3CVSS7.3AI score0.01279EPSS
Exploits0References1
CNVD
CNVDadded 2018/04/08 12:0 a.m.0 views

Kernel Memory Corruption Vulnerability in Multiple Apple Products (CNVD-2018-08249)

Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers; tvOS is a smart TV operating system; and watchOS is a smart watch operating system. kernel is a...

9.3CVSS7.3AI score0.01392EPSS
Exploits0References1
CNVD
CNVDadded 2018/04/08 12:0 a.m.1 views

Kernel Memory Corruption Vulnerability in Multiple Apple Products (CNVD-2018-08234)

Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers; tvOS is a smart TV operating system; and watchOS is a smart watch operating system. kernel is a...

9.3CVSS7.3AI score0.04722EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2018/04/06 12:0 a.m.27 views

FreeBSD : FreeBSD -- vt console memory disclosure (a5cf3ecd-38db-11e8-8b7f-a4badb2f469b)

Insufficient validation of user-provided font parameters can result in an integer overflow, leading to the use of arbitrary kernel memory as glyph data. Characters that reference this data can be displayed on the screen, effectively disclosing kernel memory. Impact : Unprivileged users may be abl...

7.5CVSS7.6AI score0.02033EPSS
Exploits0References2
Ubuntu
Ubuntuadded 2018/04/04 7:21 p.m.103 views

USN-3619-1: Linux kernel vulnerabilities

Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-16995 It was discovered that a...

7.8CVSS7.3AI score0.30052EPSS
Exploits26
Prion
Prionadded 2018/04/04 2:29 p.m.19 views

Integer overflow

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, insufficient validation of user-provided font parameters can result in an integer overflow, leading to the use of arbitrary kernel memory as glyph data. Unprivileged users may be able to access...

5CVSS7.3AI score0.02033EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2018/04/04 2:29 p.m.4 views

CVE-2018-6917

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, insufficient validation of user-provided font parameters can result in an integer overflow, leading to the use of arbitrary kernel memory as glyph data. Unprivileged users may be able to access...

7.5CVSS6.6AI score0.02033EPSS
Exploits0References3
NVD
NVDadded 2018/04/04 2:29 p.m.19 views

CVE-2018-6917

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, insufficient validation of user-provided font parameters can result in an integer overflow, leading to the use of arbitrary kernel memory as glyph data. Unprivileged users may be able to access...

7.5CVSS7.3AI score0.02033EPSS
Exploits0References3
Prion
Prionadded 2018/04/04 2:29 p.m.15 views

Design/Logic Flaw

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, due to insufficient initialization of memory copied to userland, small amounts of kernel memory may be disclosed to userland processes. Unprivileged users may be able to access small amounts...

5CVSS7.3AI score0.01441EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2018/04/04 2:29 p.m.8 views

CVE-2018-6919

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, due to insufficient initialization of memory copied to userland, small amounts of kernel memory may be disclosed to userland processes. Unprivileged users may be able to access small amounts...

7.5CVSS6.6AI score0.01441EPSS
Exploits0References2
Cvelist
Cvelistadded 2018/04/04 2:0 p.m.19 views

CVE-2018-6917

In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28, insufficient validation of user-provided font parameters can result in an integer overflow, leading to the use of arbitrary kernel memory as glyph data. Unprivileged users may be able to access...

7.3AI score0.02033EPSS
Exploits0References3
CVE
CVEadded 2018/04/04 2:0 p.m.53 views

CVE-2018-6917

In FreeBSD, CVE-2018-6917 affects the vt console (vt(4)) as shipped in stable/10, stable/11 and related RELEASEs. The flaw is due to insufficient validation of user-provided font parameters, causing an integer overflow that may let unprivileged users access arbitrary kernel memory used as glyph d...

7.5CVSS7.3AI score0.02033EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2018/04/04 2:0 p.m.21 views

CVE-2018-6917

Removed by vendor...

7.5CVSS7.6AI score0.02033EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2018/04/04 12:0 a.m.104 views

Ubuntu 16.04 LTS : Linux (HWE) vulnerabilities (USN-3617-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3617-2 advisory. USN-3617-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement H...

7.8CVSS7.1AI score0.07679EPSS
Exploits10References23
OSV
OSVadded 2018/04/03 6:29 a.m.3 views

CVE-2018-4090

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a...

5.5CVSS5.8AI score0.03762EPSS
Exploits2References8
Prion
Prionadded 2018/03/30 3:29 p.m.18 views

Information disclosure

In Android before 2017-08-05 on Qualcomm MSM, Firefox OS for MSM, QRD Android, and all Android releases from CAF using the Linux kernel, if kernel memory address is passed from userspace through irisvidiocsextctrls ioctl, it will print kernel address data. A user could set it to an arbitrary kern...

4CVSS6.7AI score0.00456EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2018/03/30 3:29 p.m.1 views

CVE-2017-9681

In Android before 2017-08-05 on Qualcomm MSM, Firefox OS for MSM, QRD Android, and all Android releases from CAF using the Linux kernel, if kernel memory address is passed from userspace through irisvidiocsextctrls ioctl, it will print kernel address data. A user could set it to an arbitrary kern...

6.5CVSS5.6AI score0.00456EPSS
Exploits0References3
ThreatPost
ThreatPostadded 2018/03/28 12:25 p.m.20 views

Bad Microsoft Meltdown Patch Made Some Windows Systems Less Secure

UPDATE Researcher Ulf Frisk has created a proof-of-concept exploit demonstrating that Microsoft’s January Patch Tuesday update made security matters worse when it comes to memory vulnerabilities associated with Intel’s CPU bug Meltdown. Frisk, a Swedish IT security expert, reported on Tuesday tha...

7.1AI score
Exploits0References6
CNVD
CNVDadded 2018/03/20 12:0 a.m.1 views

Linux kernel local elevation of privilege vulnerability (CNVD-2018-06116)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the bridge implementation of the 32-bit system call interface in Linux kernel version 4.x. An attacker could use this vulnerability ...

7.2CVSS7.6AI score0.00451EPSS
Exploits0References1
Exploit DB
Exploit DBadded 2018/03/20 12:0 a.m.60 views

Microsoft Windows Kernel - 'NtQueryInformationThread(ThreadBasicInformation)' 64-bit Stack Memory Disclosure

/ We have discovered that the nt!NtQueryInformationThread system call invoked with the 0 information class ThreadBasicInformation discloses portions of uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. The specific layout of the...

7.4AI score
Exploits0
Rows per page
Query Builder