SUSE SLED15 / SLES15 Security Update : ffmpeg (SUSE-SU-2021:2322-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2322-1 advisory. - In FFmpeg before 4.2, avcodecopen2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact whe...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc. Google Chrome 91.0.4472.164 was previously vulnerable to resource management errors that could be exploited by remote attackers to cause heap corruption via crafted HTML pages...

Security update for ffmpeg (important)

openSUSE Security Update: Security update for ffmpeg Announcement ID: openSUSE-SU-2021:2322-1 Rating: important References: 1172640 1186406 1186583 1186586 1186587 1186596 1186597 1186598 1186600 1186603 1186604 1186605 1186613 1186614 1186615 1186616 1186658 1186660 1186757 1186758 1186762 11867...

CVE-2021-22351

There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may induce users to grant permissions on modifying items in the configuration table,causing system exceptions...

CVE-2021-22367

There is a Key Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to authentication bypass...

Authentication flaw

There is a Key Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to authentication bypass...

CVE-2021-22367

CVE-2021-22367 is described across multiple sources as a Huawei Smartphone vulnerability titled “Key Management Errors,” with potential authentication bypass. The documents consistently cite the affected product (Huawei Smartphone) and the impact (authentication bypass) but do not provide detaile...

CVE-2021-22370

There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality...

Design/Logic Flaw

There is a Key Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality,availability and integrity...

CVE-2021-22370

Technical details about CVE-2021-22370 are not publicly available in the provided documents. Sources describe a credentials-management error affecting Huawei smartphones but do not specify affected models/versions, root cause, exploitability, or remediation. Monitor for updates.

CVE-2021-22375

CVE-2021-22375 corresponds to a Huawei smartphone vulnerability described as a key management error. The issue could affect service confidentiality, availability and integrity. Publicly documented data show an attacker could access the device over the network with low complexity (no authenticatio...

PT-2021-14996 · Huawei · Huawei Smartphone

Name of the Vulnerable Software and Affected Versions: Huawei Smartphone affected versions not specified Description: The issue is related to Key Management Errors, which may lead to authentication bypass if successfully exploited. Recommendations: At the moment, there is no information about a...

The vulnerability of the authfile.c component of the sshd service in the OpenSSH encryption protection mechanism allows a hacker to gain unauthorized access to protected information.

The vulnerability of the authfile.c component of the sshd service in the OpenSSH encryption protection mechanism is related to key management errors. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Spring Framework software, caused by privilege management errors, allows a hacker to read and rewrite any files they desire.

The vulnerability of the Spring Framework software is caused by privilege management errors. Exploiting this vulnerability allows an attacker to read and rewrite any files at will...

The vulnerability of the Dovecot mail server, related to resource management errors, allows a hacker to cause a service failure.

The vulnerability of the Dovecot mail server is related to resource management errors. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of IBM DB2 database management systems, including IBM DB2 Connect, stems from privilege management errors, allowing attackers to overwrite arbitrary files.

The vulnerability of IBM DB2 database management systems and IBM DB2 Connect is related to privilege management errors. Exploiting this vulnerability can allow a malicious actor to re-record arbitrary files remotely...

The vulnerability of the OpenSSH cryptographic protection mechanism, related to privilege management errors, allows attackers to compromise the integrity of the protected information.

The vulnerability of the OpenSSH cryptographic protection mechanism is related to privilege management errors. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information...

The vulnerability of the Python Priority Library, related to resource management errors, allows a hacker to cause a service failure.

The vulnerability of the Python Priority Library is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the Cisco Jabber software platform, related to resource management errors, allows a perpetrator to trigger a service failure.

The vulnerability of the Cisco Jabber software platform is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to trigger a service failure through a specially crafted XMPP message...

The vulnerability of the Group Policy Services in the Windows operating system allows a perpetrator to increase their privileges.

The vulnerability of the Windows Group Policy Services relates to privilege management errors. Exploiting this vulnerability can allow an attacker to increase their privileges...