Lucene search
K

4316 matches found

Positive Technologies
Positive Technologies
added 2024/02/05 12:0 a.m.4 views

PT-2024-18719 · Unknown · Libpadm.So

Name of the Vulnerable Software and Affected Versions: libpadm.so versions prior to SMR Feb-2024 Release 1 Description: The issue is an out-of-bounds write in the padmd vld htbl of libpadm.so, allowing a local attacker to execute arbitrary code. Recommendations: For versions prior to SMR Feb-2024...

8.4CVSS7.7AI score0.00188EPSS
Exploits0References6
OSV
OSV
added 2024/02/01 12:41 p.m.7 views

USN-6620-1 glibc vulnerabilities

It was discovered that the GNU C Library incorrectly handled the syslog function call. A local attacker could use this issue to execute arbitrary code and possibly escalate privileges...

8.4CVSS7.2AI score0.04794EPSS
Exploits9References4
Vulnrichment
Vulnrichment
added 2024/02/01 12:0 a.m.8 views

CVE-2023-51835

An issue in TRENDnet TEW-822DRE v.1.03B02 allows a local attacker to execute arbitrary code via the parameters ipv4ping in the /boafrm/formSystemCheck...

7.6AI score0.07319EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.4 views

PT-2024-14308 · Trendnet · Trendnet Tew-822Dre

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-822DRE version 1.03B02 Description: An issue allows a local attacker to execute arbitrary code via the ipv4 ping parameter in the "/boafrm/formSystemCheck" API endpoint. Recommendations: For TRENDnet TEW-822DRE version 1.03B02,...

6.8CVSS7.4AI score0.07319EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2024/01/31 2:54 a.m.2 views

SUSE CVE-2024-21803

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

7.8CVSS5.8AI score0.00495EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/01/30 11:1 a.m.37 views

CVE-2024-21803

NVD describes an after-free vulnerability found in the Linux kernel in the Linux x86 ARM Bluetooth module that allows local code execution. This vulnerability is associated with the program file, https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects...

7CVSS7.1AI score0.00495EPSS
Exploits0References3
OSV
OSV
added 2024/01/30 8:15 a.m.5 views

AZL-34875 CVE-2024-21803 affecting package kernel for versions less than 6.6.35.1-4

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

7.8CVSS6.6AI score0.00495EPSS
Exploits0References1
OSV
OSV
added 2024/01/30 8:15 a.m.2 views

DEBIAN-CVE-2024-21803

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

7.8CVSS6.1AI score0.00495EPSS
Exploits0References1
OSV
OSV
added 2024/01/30 8:15 a.m.5 views

AZL-34203 CVE-2024-21803 affecting package kernel for versions less than 5.15.158.1-1

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

7.8CVSS6.6AI score0.00495EPSS
Exploits0References1
OSV
OSV
added 2024/01/30 8:15 a.m.2 views

UBUNTU-CVE-2024-21803

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

7.8CVSS5.8AI score0.00495EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.5 views

PT-2024-6708 · Synology · Synology Drive Client

Name of the Vulnerable Software and Affected Versions: Synology Drive Client versions prior to 3.3.0-15082 Description: The issue is related to the inclusion of functionality from an untrusted control sphere in the OpenSSL DLL component. This allows local users to execute arbitrary code via...

7.8CVSS7.9AI score0.00203EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.5 views

PT-2024-19620 · Bosscms · Bosscms

Name of the Vulnerable Software and Affected Versions: BossCMS version 1.3.0 Description: The issue allows a local attacker to execute arbitrary code and escalate privileges. This is achieved via the init function in the admin.class.php component. Recommendations: For BossCMS version 1.3.0,...

7.8CVSS7.9AI score0.0031EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/01/25 12:0 a.m.4 views

CVE-2023-51833

A command injection issue in TRENDnet TEW-411BRPplus v.2.07eu that allows a local attacker to execute arbitrary code via the data1 parameter in the debug.cgi page...

8.4AI score0.04429EPSS
Exploits1References2
OSV
OSV
added 2024/01/17 2:15 p.m.3 views

CVE-2024-0645

Buffer overflow vulnerability in Explorer++ affecting version 1.3.5.531. A local attacker could execute arbitrary code via a long filename argument by monitoring Structured Exception Handler SEH records...

7.8CVSS6AI score0.00186EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/01/17 1:51 p.m.60 views

PAX PoS Terminal Flaw Could Allow Attackers to Tamper with Transactions

The point-of-sale PoS terminals from PAX Technology are impacted by a collection of high-severity vulnerabilities that can be weaponized by threat actors to execute arbitrary code. The STM Cyber R&D team, which reverse engineered the Android-based devices manufactured by the Chinese firm owing to...

7.8CVSS8.7AI score0.00663EPSS
Exploits5
OSV
OSV
added 2024/01/16 4:15 a.m.2 views

CVE-2024-22428

Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions vulnerability. It may allow a local unprivileged user to escalate privileges and execute arbitrary code on the affected system. Dell recommends customers upgrade at the earliest opportunity...

7.8CVSS6.1AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/01/16 2:36 a.m.1 views

SUSE CVE-2023-51257

An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code...

4.8CVSS7.4AI score0.00256EPSS
Exploits0References6
OSV
OSV
added 2024/01/16 2:15 a.m.8 views

AZL-34807 CVE-2023-51257 affecting package jasper for versions less than 4.2.1-1

An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code...

7.8CVSS7AI score0.00256EPSS
Exploits0References1
OSV
OSV
added 2024/01/15 11:15 p.m.4 views

CVE-2023-7206

In Horner Automation Cscape versions 9.90 SP10 and prior, local attackers are able to exploit this vulnerability if a user opens a malicious CSP file, which would result in execution of arbitrary code on affected installations of Cscape...

7.8CVSS6.2AI score0.00213EPSS
Exploits0References2
NVD
NVD
added 2024/01/15 2:15 p.m.13 views

CVE-2023-42134

PAX Android based POS devices with PayDroid8.1.0SagittariusV11.1.4520230314 or earlier can allow the signed partition overwrite and subsequently local code execution via hidden command. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS6.7AI score0.00557EPSS
Exploits1References4
Rows per page
Query Builder