Lucene search
K

10108 matches found

NVD
NVD
added 2021/09/09 8:15 a.m.16 views

CVE-2021-1971

Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

7.8CVSS0.00579EPSS
Exploits0References1
Prion
Prion
added 2021/09/09 8:15 a.m.19 views

Design/Logic Flaw

Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

7.8CVSS7.5AI score0.00579EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/09/09 7:36 a.m.29 views

CVE-2021-1971

Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

7.5CVSS7.6AI score0.00579EPSS
Exploits0References1
CVE
CVE
added 2021/09/09 7:36 a.m.65 views

CVE-2021-1971

CVE-2021-1971 affects Qualcomm closed-source components in Snapdragon SoCs, arising from a lack of physical layer state validation leading to possible assertion. The exposure spans Snapdragon Auto/Compute/Connectivity/Consumer Electronics Connectivity/Industrial IOT/ Mobile/Wired Infrastructure, ...

7.8CVSS7.4AI score0.00579EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/09/09 5:15 a.m.4 views

CVE-2021-34713

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

7.4CVSS7.2AI score
Exploits0References1
Prion
Prion
added 2021/09/09 5:15 a.m.13 views

Code injection

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

6.1CVSS7.3AI score0.00349EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/09/09 5:0 a.m.19 views

CVE-2021-34713 Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

7.4CVSS7.5AI score0.00349EPSS
Exploits0References1
CNVD
CNVD
added 2021/09/09 12:0 a.m.21 views

Fortinet FortiWeb Buffer Overflow Vulnerability

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

8.8CVSS9.1AI score0.01919EPSS
Exploits0References1
Cisco
Cisco
added 2021/09/08 4:0 p.m.41 views

Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability

A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames...

7.4CVSS7.4AI score0.00349EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/09/08 12:0 a.m.19 views

Docker < 1.8.3 Multiple Vulnerabilities

Docker is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.02733EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/09/08 12:0 a.m.3 views

Cisco IOS XR 安全漏洞

Cisco IOS XR is an operating system developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR that stems from a vulnerability in the Layer 2 code of the Cisco IOS XR software running on a router due to an error in the handling of specific Ethernet frames resultin...

7.4CVSS7.4AI score0.00349EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2021/09/07 12:15 p.m.30 views

CVE-2021-37219

HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2...

8.8CVSS3.2AI score0.0123EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/09/07 12:15 p.m.361 views

CVE-2021-37219

HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2...

8.8CVSS6.8AI score0.0123EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/09/07 12:15 p.m.19 views

CVE-2021-37218

HashiCorp Nomad and Nomad Enterprise Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.0.10 and 1.1.4...

8.8CVSS7.2AI score0.00689EPSS
Exploits0References3
CVE
CVE
added 2021/09/07 11:33 a.m.351 views

CVE-2021-37219

HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer is affected: non-server agents with a certificate signed by the same CA can access server-only functionality, enabling privilege escalation. The issue is fixed in versions 1.8.15, 1.9.9, and 1.10.2. Impact and remediation details come f...

8.8CVSS8.4AI score0.0123EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/09/06 12:0 a.m.5 views

Qualcomm 芯片 安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. A security vulnerability exists in the Qualcomm chip that stems from the host'...

6.5CVSS6.5AI score0.00225EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/09/06 12:0 a.m.4 views

Qualcomm 芯片 处理逻辑错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip has a processing logic error vulnerability that stems from a...

7.8CVSS7.2AI score0.00579EPSS
Exploits0References6
Prion
Prion
added 2021/09/03 6:15 p.m.16 views

Input validation

Frontier is Substrate's Ethereum compatibility layer. Prior to commit number 0b962f218f0cdd796dadfe26c3f09e68f7861b26, a bug in pallet-ethereum can cause invalid transactions to be included in the Ethereum block state in pallet-ethereum due to not validating the input data size. Any invalid...

5CVSS5.2AI score0.01189EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2021/09/03 5:45 p.m.63 views

CVE-2021-39193

CVE-2021-39193 concerns Frontier’s Ethereum compatibility layer (Frontier) and specifically a bug in the Substrate pallet-ethereum. Before commit 0b962f218f0cdd796dadfe26c3f09e68f7861b26, input data size validation was faulty, which could allow invalid transactions to be included in the Ethereum ...

5.3CVSS5.2AI score0.01189EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2021/09/03 12:0 a.m.5 views

Github Frontier 输入验证错误漏洞

Github Frontier is an ethereum-compatible layer for Substrate. It allows you to run unmodified Ether dapps. An input validation error vulnerability exists in Frontier, which stems from the program failing to validate the size of input data, and an error in "pallet-ethereum" could result in an...

5.3CVSS5.7AI score0.01189EPSS
Exploits0References5
Rows per page
Query Builder