Lucene search
K

160 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 7 : libvirt (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvirt: TLS certificate verification disabled for clients CVE-2017-1000256 - The LXC driver...

8.1CVSS8.6AI score0.017EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/16 12:0 a.m.3 views

PT-2024-20686 · Intel · Intel Server D50Fcp Family

Name of the Vulnerable Software and Affected Versions: IntelR Server M50FCP Family products affected versions not specified Description: The issue is related to improper input validation in the PfrSmiUpdateFw driver in UEFI firmware, which may allow a privileged user to enable escalation of...

7.5CVSS6.2AI score0.00193EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/03/28 12:0 a.m.4 views

PT-2024-23613 · Unknown · Zephyr Rtos

Name of the Vulnerable Software and Affected Versions: Zephyr RTOS versions prior to 3.6 Description: The issue allows a malicious BLE device to crash a BLE victim device by sending a malformed gatt packet. This can be exploited for local attacks. Network segmentation can help mitigate the risk...

6.8CVSS7.1AI score0.00469EPSS
Exploits1References6
OSV
OSV
added 2023/09/06 7:51 p.m.14 views

GHSA-7X97-J373-85X5 Electron vulnerable to out-of-package code execution when launched with arbitrary cwd

Impact Apps that are launched as command line executables are impacted. E.g. if your app exposes itself in the path as myapp --help Specifically this issue can only be exploited if the following conditions are met: Your app is launched with an attacker-controlled working directory The attacker ha...

6.1CVSS6.7AI score0.00563EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/05/11 12:0 a.m.4 views

PT-2023-20632 · Digitalpersona · Digitalpersona Fpsensor

Name of the Vulnerable Software and Affected Versions: DigitalPersona FPSensor version 1.0.0.1 Description: A problematic issue has been found in the processing of the file C:Program Files x86FPSensorbinDpHost.exe, leading to an unquoted search path. This issue requires local attacking to be...

7.8CVSS7AI score0.00206EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/05/04 12:0 a.m.5 views

CVE-2023-21491

Improper access control vulnerability in ThemeManager prior to SMR May-2023 Release 1 allows local attackers to write arbitrary files with system privilege...

8.5CVSS8.3AI score0.00152EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.5 views

SUSE CVE-2011-1550

The default configuration of logrotate on SUSE openSUSE Factory uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as...

6.3CVSS6.7AI score0.0035EPSS
Exploits0References8
OSV
OSV
added 2022/08/16 7:42 a.m.8 views

OPENSUSE-SU-2022:10090-1 Security update for canna

This update for canna fixes the following issues: - CVE-2022-21950: move UNIX socket dir from /tmp to /run to avoid local attackers being able to place bogus directories in its stead. Use systemd-tmpfiles for cleaning old sockets boo1199280...

5.3CVSS5.2AI score0.00142EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2022/05/28 8:37 a.m.51 views

Microsoft Finds Critical Bugs in Pre-Installed Apps on Millions of Android Devices

Four high severity vulnerabilities have been disclosed in a framework used by pre-installed Android System apps with millions of downloads. The issues, now fixed by its Israeli developer MCE Systems, could have potentially allowed threat actors to stage remote and local attacks or be abused as...

0.5AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/05/27 4:0 p.m.29 views

Android apps with millions of downloads exposed to high-severity vulnerabilities

Microsoft uncovered high-severity vulnerabilities in a mobile framework owned by mce Systems and used by multiple large mobile service providers in pre-installed Android System apps that potentially exposed users to remote albeit complex or local attacks. The vulnerabilities, which affected apps...

7.2AI score
Exploits0
Vulnrichment
Vulnrichment
added 2022/02/24 6:27 p.m.6 views

CVE-2020-14480

Due to usernames/passwords being stored in plaintext in Random Access Memory RAM, a local, authenticated attacker could gain access to certain credentials, including Windows Logon credentials...

5.4AI score0.00269EPSS
Exploits0References1
OSV
OSV
added 2020/07/22 9:15 p.m.4 views

CVE-2020-4371

IBM Verify Gateway IVG 1.0.0 and 1.0.1 contains sensitive information in leftover debug code that could be used aid a local user in further attacks against the system. IBM X-Force ID: 179008...

3.3CVSS5.8AI score0.00308EPSS
Exploits0References2
Pen Test Partners Blog
Pen Test Partners Blog
added 2020/07/17 5:58 a.m.27 views

Threat modelling and IoT hubs

IoT hubs are increasingly being used to provide a single point of access to the myriad of smart devices in the home. One ring to rule them all, if rather than multiple apps for different devices. When reviewing devices we often start with the single biggest security threat: unauthorised access to...

7.6AI score
Exploits0
exploitpack
exploitpack
added 2019/08/15 12:0 a.m.18 views

NSKeyedUnarchiver - Info Leak in Decoding SGBigUTF8String

NSKeyedUnarchiver - Info Leak in Decoding SGBigUTF8String There is an info leak when decoding the SGBigUTF8String class using SGBigUTF8String initWithCoder:. This class initializes the string using SGBigUTF8String initWithUTF8DataNullTerminated: even though there is no guarantee the bytes provide...

Exploits0
0day.today
0day.today
added 2019/08/15 12:0 a.m.58 views

NSKeyedUnarchiver - Info Leak in Decoding SGBigUTF8String Exploit

There is an info leak when decoding the SGBigUTF8String class using SGBigUTF8String initWithCoder:. This class initializes the string using SGBigUTF8String initWithUTF8DataNullTerminated: even though there is no guarantee the bytes provided to the decoder are null terminated. It should use...

5.3CVSS0.1AI score0.06688EPSS
Exploits1
NVD
NVD
added 2018/05/31 12:29 p.m.28 views

CVE-2018-9322

The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows local attacks involving the USB or OBD-II interface. An attacker can bypass the code-signing protection mechanism for firmware...

7.8CVSS7.5AI score0.00643EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/05/31 12:0 p.m.22 views

CVE-2018-9322

The Head Unit HUNBT aka Infotainment component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows local attacks involving the USB or OBD-II interface. An attacker can bypass the code-signing protection mechanism for firmware...

7.6AI score0.00643EPSS
Exploits1References3
Prion
Prion
added 2017/11/01 5:29 p.m.11 views

Privilege escalation

Sera 1.2 stores the user's login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks...

2.1CVSS7.8AI score0.01151EPSS
Exploits4References2Affected Software1
NVD
NVD
added 2017/11/01 5:29 p.m.15 views

CVE-2017-15918

Sera 1.2 stores the user's login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks...

7.8CVSS7.8AI score0.01151EPSS
Exploits4References2
CVE
CVE
added 2017/11/01 5:0 p.m.52 views

CVE-2017-15918

CVE-2017-15918 affects Sera 1.2 on macOS. It stores the user’s login password in plain text in the home directory, specifically at ~/Library/Preferences/no.ignitum.SeraOSX.plist, enabling local privilege escalation and potential dumping of the user and system keychains. The connected documents co...

7.8CVSS7.7AI score0.01151EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder