CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4287 matches found

BDU FSTEC•added 2019/03/06 12:0 a.m.•1 views

The vulnerability of MMSE traffic analyzer detectors in Wireshark allows a hacker to cause a service failure.

The vulnerability of the MMSE discoverer Wireshark/menagerie/menagerie/1847-AradaWSACaptures.cap, a traffic analyzer for computer networks in Wireshark, is related to the locking mechanism of the discoverer. Exploiting this vulnerability can allow a malicious actor to induce a service failure...

5.5CVSS6.8AI score0.03241EPSS

Exploits1References5Affected Software2

OSV•added 2019/02/28 5:29 p.m.•6 views

CVE-2019-1999

In binderallocfreepage of binderalloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android...

7.8CVSS7.8AI score

Exploits0References6

OSV•added 2019/02/28 5:29 p.m.•1 views

DEBIAN-CVE-2019-1999

7.8CVSS8.8AI score0.00788EPSS

Exploits2References1

Prion•added 2019/02/28 5:29 p.m.•13 views

Double free

7.2CVSS7.5AI score0.00788EPSS

Exploits2References6Affected Software2

NVD•added 2019/02/28 5:29 p.m.•18 views

CVE-2019-1999

7.8CVSS7.7AI score0.00788EPSS

Exploits2References6

Hacker One•added 2019/01/14 5:15 a.m.•60 views

Tron Foundation: DOS attack by consuming all CPU and using all available memory

Summary: A single request to submit a post to /wallet/deploycontract with several megabytes of bytecode along with CPU intensive long parsing will consume CPU for about 10 minutes while still holding several megabytes of bytecode in heap. With enough requests lets say 1K-10K depending upon...

7.1AI score

Exploits0

IBM Security Bulletins•added 2018/12/17 2:30 p.m.•56 views

Security Bulletin: Vulnerabilities in MariaDB affect PowerKVM

Summary PowerKVM is affected by vulnerabilities in MariaDB. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2018-2819 DESCRIPTION: An unspecified vulnerability in Oracle MySQL related to the Server InnoDB component could allow an authenticated attacker to cause a...

7.7CVSS1.7AI score0.04061EPSS

Exploits0Affected Software1

Oracle linux•added 2018/12/11 12:0 a.m.•97 views

Unbreakable Enterprise kernel security update

4.14.35-1818.5.4 - RDS: null pointer dereference in rdsatomicfreeop Mohamed Ghannam Orabug: 28020694 CVE-2018-5333 - x86/speculation: Make enhanced IBRS the default spectre v2 mitigation Alejandro Jimenez Orabug: 28474853 - x86/speculation: Enable enhanced IBRS usage Alejandro Jimenez Orabug:...

7.8CVSS0.2AI score0.07823EPSS

Exploits15

RedHat Linux•added 2018/11/26 12:31 p.m.•217 views

Moderate: Red Hat Security Advisory: rh-mysql57-mysql security update

An update for rh-mysql57-mysql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.7CVSS6.4AI score0.04445EPSS

Exploits0References64

Prion•added 2018/11/06 5:29 p.m.•20 views

Double free

In driveroverridestore and driveroverrideshow of bus.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel...

4.6CVSS7.4AI score0.00254EPSS

Exploits0References4Affected Software1

OSV•added 2018/11/06 5:29 p.m.•2 views

DEBIAN-CVE-2018-9415

7.8CVSS7.6AI score0.00254EPSS

Exploits0References1

OSV•added 2018/11/06 5:29 p.m.•0 views

UBUNTU-CVE-2018-9422

In getfutexkey of futex.c, there is a use-after-free due to improper locking. This could lead to local escalation of privilege with no additional privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-74250718 References: Upstre...

7.8CVSS7.1AI score0.00216EPSS

Exploits0References4

OSV•added 2018/11/06 5:29 p.m.•3 views

DEBIAN-CVE-2018-9422

7.8CVSS7.6AI score0.00216EPSS

Exploits0References1

OSV•added 2018/11/06 5:29 p.m.•6 views

CVE-2018-9415

7.8CVSS6.8AI score

Exploits0References4

NVD•added 2018/11/06 5:29 p.m.•25 views

CVE-2018-9415

7.8CVSS7.6AI score0.00254EPSS

Exploits0References4

NVD•added 2018/11/06 5:29 p.m.•16 views

CVE-2018-9422

7.8CVSS7.2AI score0.00216EPSS

Exploits0References4

Cvelist•added 2018/11/06 5:0 p.m.•26 views

CVE-2018-9415

7.1AI score0.00254EPSS

Exploits0References4

CVE•added 2018/11/06 5:0 p.m.•91 views

CVE-2018-9415

CVE-2018-9415 affects the Android kernel’s bus.c, specifically in driver_override_store and driver_override_show, where a double free can occur due to improper locking. This can enable local escalation of privilege to SYSTEM without user interaction. The vulnerability follows from upstream kernel...

7.8CVSS7.4AI score0.00254EPSS

Exploits0References4Affected Software1

Debian CVE•added 2018/11/06 5:0 p.m.•36 views

CVE-2018-9415

7.8CVSS7.8AI score0.00254EPSS

Exploits0

Zero Day Initiative•added 2018/10/30 12:0 a.m.•33 views

Apple Safari WebCrypto Race Condition Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS1.8AI score0.01704EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by