Lucene search
+L

200 matches found

bdu_fstec
bdu_fstec
added 2024/01/17 12:0 a.m.11 views

The vulnerability of the ASP Bootloader component of AMD’s microprogramming software allows a hacker to disclose sensitive information or cause system failures.

The vulnerability of the ASP Bootloader microprogramming system for AMD processors is related to the state of competition. Exploiting this vulnerability can allow attackers to disclose protected information or cause malfunctions in the system...

5.7CVSS5.9AI score0.00257EPSS
Exploits0References3
osv
osv
added 2024/01/10 9:15 a.m.5 views

CVE-2023-49394

Zentao versions 4.1.3 and before has a URL redirect vulnerability, which prevents the system from functioning properly...

6.1CVSS5.8AI score0.00374EPSS
Exploits1References2
nvd
nvd
added 2024/01/10 9:15 a.m.21 views

CVE-2023-49394

Zentao versions 4.1.3 and before has a URL redirect vulnerability, which prevents the system from functioning properly...

6.1CVSS6.3AI score0.00374EPSS
Exploits1References2
nvd
nvd
added 2024/01/05 5:15 p.m.21 views

CVE-2023-34326

The caching invalidation guidelines from the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 is incorrect on some hardware, as devices will malfunction see stale DMA mappings if some fields of the DTE are updated but the IOMMU TLB is not flushed. Such stale DMA mappings can point to memory range...

7.8CVSS7.7AI score0.00287EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2024/01/05 5:15 p.m.38 views

CVE-2023-34326

The caching invalidation guidelines from the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 is incorrect on some hardware, as devices will malfunction see stale DMA mappings if some fields of the DTE are updated but the IOMMU TLB is not flushed. Such stale DMA mappings can point to memory range...

7.8CVSS7.1AI score0.00287EPSS
Exploits0References2
prion
prion
added 2024/01/05 5:15 p.m.26 views

Memory corruption

The caching invalidation guidelines from the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 is incorrect on some hardware, as devices will malfunction see stale DMA mappings if some fields of the DTE are updated but the IOMMU TLB is not flushed. Such stale DMA mappings can point to memory range...

4.3CVSS6.9AI score0.00287EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/01/05 4:30 p.m.2 views

CVE-2023-34326 x86/AMD: missing IOMMU TLB flushing

The caching invalidation guidelines from the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 is incorrect on some hardware, as devices will malfunction see stale DMA mappings if some fields of the DTE are updated but the IOMMU TLB is not flushed. Such stale DMA mappings can point to memory range...

7.2AI score0.00287EPSS
Exploits0References1
cve
cve
added 2024/01/05 4:30 p.m.88 views

CVE-2023-34326

CVE-2023-34326 concerns AMD-Vi (IOMMU) caching invalidation. The AMD-Vi specification guides improper invalidation: if DTE fields are updated but the IOMMU TLB is not flushed, devices may cause stale DMA mappings. These mappings can reference memory ranges not owned by the guest, potentially expo...

7.8CVSS7.5AI score0.00287EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2024/01/05 4:30 p.m.42 views

CVE-2023-34326 x86/AMD: missing IOMMU TLB flushing

The caching invalidation guidelines from the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 is incorrect on some hardware, as devices will malfunction see stale DMA mappings if some fields of the DTE are updated but the IOMMU TLB is not flushed. Such stale DMA mappings can point to memory range...

7.9AI score0.00287EPSS
Exploits0References1
citrix
citrix
added 2023/12/15 12:0 a.m.9 views

Restoration with backup file doesn't work issue

Restore by backup file does not work correctly in NetScaler...

7.1AI score
Exploits0
nvd
nvd
added 2023/11/23 7:15 a.m.25 views

CVE-2023-28811

There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device...

7.4CVSS0.00394EPSS
Exploits0References1
prion
prion
added 2023/11/23 7:15 a.m.28 views

Buffer overflow

There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device...

3.3CVSS7.6AI score0.00394EPSS
Exploits0References1Affected Software40
cvelist
cvelist
added 2023/11/23 6:42 a.m.30 views

CVE-2023-28811

There is a buffer overflow in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device...

7.4CVSS7.8AI score0.00394EPSS
Exploits0References1
nvd
nvd
added 2023/11/13 1:15 p.m.17 views

CVE-2023-6097

A SQL injection vulnerability has been found in ICS Business Manager, affecting version 7.06.0028.7089. This vulnerability could allow a remote user to send a specially crafted SQL query and retrieve all the information stored in the database. The data could also be modified or deleted, causing t...

9.4CVSS0.00803EPSS
Exploits0References1
prion
prion
added 2023/11/13 1:15 p.m.25 views

Sql injection

A SQL injection vulnerability has been found in ICS Business Manager, affecting version 7.06.0028.7089. This vulnerability could allow a remote user to send a specially crafted SQL query and retrieve all the information stored in the database. The data could also be modified or deleted, causing t...

6.5CVSS7.7AI score0.00803EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2023/11/13 12:0 a.m.4 views

PT-2023-32511 · Unknown · Ics Business Manager

Name of the Vulnerable Software and Affected Versions: ICS Business Manager version 7.06.0028.7089 Description: A SQL injection issue has been discovered, allowing a remote user to send a specially crafted SQL query to retrieve all database information. The data can also be modified or deleted,...

9.4CVSS9.1AI score0.00803EPSS
Exploits0References2
osv
osv
added 2023/11/08 3:15 a.m.5 views

CVE-2023-46768

Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally...

7.5CVSS5.8AI score0.00514EPSS
Exploits0References2
nessus
nessus
added 2023/11/06 12:0 a.m.29 views

Rocky Linux 9 : rsyslog (RLSA-2022:4795)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:4795 advisory. - Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used...

8.1CVSS7.5AI score0.03821EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/10/31 12:0 a.m.6 views

PT-2023-29936 · Unknown · Px4-Autopilot

Name of the Vulnerable Software and Affected Versions: PX4-Autopilot versions 1.14.0-rc1 and prior Description: The issue is related to a heap buffer overflow vulnerability in the parser function of PX4-Autopilot due to the absence of parserbuf index value checking. This can cause unexpected dron...

9.8CVSS9.4AI score0.0063EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2023/10/27 12:0 a.m.5 views

PT-2023-13356 · Lenovo · Lenovo Printers

Name of the Vulnerable Software and Affected Versions: Lenovo printers affected versions not specified Description: A denial-of-service issue was found in the firmware used in Lenovo printers. It occurs when users send illegal or malformed strings to an open port, triggering a denial of service...

6.5CVSS6.3AI score0.00493EPSS
Exploits0References5
Rows per page
Query Builder