Lucene search
K

5122 matches found

ICS
ICS
added 2018/04/17 12:0 p.m.95 views

Biosense Webster Carto 3 System Vulnerabilities

1. EXECUTIVE SUMMARY Biosense Webster Inc. BWI, a Johnson & Johnson company, has produced a software update that applies operating system patches and anti-virus signature updates to close known vulnerabilities in the operating system of the CARTO 3 System, a 3D cardiovascular mapping platform...

6.7AI score
Exploits0References19
Packet Storm
Packet Storm
added 2018/04/17 12:0 a.m.55 views

Facebook Graph Metadata Crosswalk Mapping Proof Of Concept

!/usr/bin/perl Facebook 'Graph' metadata crosswalk mapping PoC 2018 Todor Donev https://ethical-hacker.org/ https://facebook.com/ethicalhackerorg Description: Criminal hacker CRACKER can take advantage of this weakness by creating a specialized database to manipulate facebook users with fake news...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/04/17 12:0 a.m.43 views

Facebook Graph Phone Number Metadata Crosswalk Mapping Proof Of Concept

!/usr/bin/perl Facebook 'Graph' Phone Number metadata crosswalk mapping PoC 2018 Todor Donev https://ethical-hacker.org/ https://facebook.com/ethicalhackerorg Description: Criminal hacker CRACKER can take advantage of this weakness by creating a specialized database to manipulate facebook users...

0.1AI score
Exploits0
Prion
Prion
added 2018/04/12 1:29 a.m.23 views

Privilege escalation

An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory, aka "Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012,...

7.2CVSS7.7AI score0.01279EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2018/04/10 3:29 p.m.5 views

CVE-2018-2403

Under certain conditions, SAP Disclosure Management 10.1 allows an attacker to access information which would otherwise be restricted. It is possible for an authorized user to get SAP Disclosure Management to point a specific chapter type to a chapter the user has not been given access to...

6.5CVSS5.8AI score0.01197EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.219 views

KLA11221 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows . Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, cause denial of service and possibly to bypass security restrictions. Below is a complete list of...

9.3CVSS8.8AI score0.40069EPSS
Exploits10References48
OSV
OSV
added 2018/04/04 6:29 p.m.0 views

DEBIAN-CVE-2018-9275

In checkusertoken in util.c in the Yubico PAM module aka pamyubico 2.18 through 2.25, successful logins can leak file descriptors to the auth mapping file, which can lead to information disclosure serial number of a device and/or DoS reaching the maximum number of file descriptors...

8.2CVSS7.7AI score0.01466EPSS
Exploits0References1
OSV
OSV
added 2018/04/04 6:29 p.m.2 views

UBUNTU-CVE-2018-9275

In checkusertoken in util.c in the Yubico PAM module aka pamyubico 2.18 through 2.25, successful logins can leak file descriptors to the auth mapping file, which can lead to information disclosure serial number of a device and/or DoS reaching the maximum number of file descriptors...

8.2CVSS5.8AI score0.01466EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2018/04/04 12:0 a.m.5 views

The vulnerability of the Mapping::DoubleHash::clear function in the Sam2p image conversion utility allows a attacker to cause a service failure or exert other effects.

The vulnerability of the Mapping::DoubleHash::clear function in the Sam2p image conversion utility is caused by the operation being performed outside the buffer’s memory boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures or other adverse effects...

9.8CVSS5.5AI score0.02255EPSS
Exploits1References3Affected Software1
Fedora
Fedora
added 2018/03/30 1:31 p.m.12 views

[SECURITY] Fedora 28 Update: kst-2.0.8-20.fc28

Kst is a real-time data viewing and plotting tool with basic data analysis functionality. Kst contains many powerful built-in features and is expandable with plugins and extensions. Main features of kst include: Robust plotting of live "streaming" data. Powerful keyboard and mouse plot...

1.5AI score
Exploits0
OSV
OSV
added 2018/03/14 5:37 p.m.9 views

SUSE-SU-2018:0678-1 Security update for xen

This update for xen fixes several issues. These security issues were fixed: - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754: Prevent information leaks via side effects of speculative execution, aka 'Spectre' and 'Meltdown' attacks bsc1074562, bsc1068032 - CVE-2018-5683: The vgadrawtext function...

8.8CVSS8.1AI score0.93838EPSS
Exploits14References28
OSV
OSV
added 2018/03/07 8:29 a.m.2 views

DEBIAN-CVE-2018-7740

The resvmaprelease function in mm/hugetlb.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service BUG via a crafted application that makes mmap system calls and has a large pgoff argument to the remapfilepages system call...

5.5CVSS6.8AI score0.00616EPSS
Exploits1References1
OSV
OSV
added 2018/03/06 4:29 p.m.4 views

CVE-2017-6282

NVIDIA Tegra kernel driver contains a vulnerability in NVMAP where an attacker has the ability to write an arbitrary value to an arbitrary location which may lead to an escalation of privileges. This issue is rated as high...

7.8CVSS5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/03/05 12:49 p.m.47 views

CVE-2017-18208

The madvisewillneed function in the Linux kernel allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...

5.5CVSS5.8AI score0.00502EPSS
Exploits0References2
Citrix
Citrix
added 2018/03/02 12:0 a.m.6 views

Keyboards Fail to Map in ICA Sessions From Non-Windows Receivers such as Mac, Linux and HTML5

After an in-place upgrade of Remote PC VDA's from version 5.6.400 to 7.6.300 keyboards would fail to map in ICA sessions from non-Windows Receivers such as Mac, Linux, and HTML5...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/03/02 12:0 a.m.33 views

Xen gnttab_map_frame() Function Missing Mapping Check Upgrade Guest-to-host DoS (XSA-255)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability. Note that Nessus has checked the changeset versions based on the xen.git change log. Nessus did not check guest hardware configurations or if patches we...

8.8CVSS7.9AI score0.0044EPSS
Exploits0References3
Prion
Prion
added 2018/03/01 5:29 a.m.27 views

Code injection

The madvisewillneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...

4.9CVSS5.6AI score0.00502EPSS
Exploits0References16Affected Software1
NVD
NVD
added 2018/03/01 5:29 a.m.22 views

CVE-2017-18208

The madvisewillneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...

5.5CVSS5.8AI score0.00502EPSS
Exploits0References16
OSV
OSV
added 2018/03/01 5:29 a.m.1 views

DEBIAN-CVE-2017-18208

The madvisewillneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...

5.5CVSS7AI score0.00502EPSS
Exploits0References1
CVE
CVE
added 2018/03/01 5:0 a.m.247 views

CVE-2017-18208

CVE-2017-18208 affects the Linux kernel prior to 4.14.4. The vulnerability lies in the MADVISE_WILLNEED handling in mm/madvise.c, where triggering MADVISE_WILLNEED for a DAX mapping allows a local attacker to cause a denial of service via an infinite loop. The issue is local in scope and is tied ...

5.5CVSS5.6AI score0.00502EPSS
Exploits0References16Affected Software1
Rows per page
Query Builder