Lucene search
K

5122 matches found

Positive Technologies
Positive Technologies
added 2017/11/27 12:0 a.m.5 views

PT-2017-4077 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 2.6.38 through 4.14 Description: The issue is related to the touch pmd function in the Linux Kernel, which can be exploited due to incorrect synchronization when using a shared resource. This can allow an attacker to...

9.8CVSS7.4AI score0.93838EPSS
Exploits75References430
Citrix
Citrix
added 2017/11/24 12:0 a.m.9 views

Citrix *Client Folder Redirection* (CFR) is not *Folder Redirection*

Client Folder Redirection, Folder Redirection and Special Folder Redirection are not the same. Client Folder Redirection CFR provides access to client-side folders in an ICA session while not having to redirect complete client-side drives. Support throughClient Drive Mapping CDM has enabled...

7.1AI score
Exploits0
CNVD
CNVD
added 2017/11/20 12:0 a.m.4 views

Multiple SUSE Products SuSEfirewall2 Package Security Bypass Vulnerability

SUSE Linux Enterprise SLE Desktop and others are products of SUSE Corporation, U.S.A. SUSE Linux Enterprise SLE Desktop is an enterprise Linux desktop edition system.SLE Server is a server edition Linux system. SuSEfirewall2 package is one of the packages with network data filtering. A security...

6.5CVSS6.9AI score0.01225EPSS
Exploits0References1
NVD
NVD
added 2017/11/16 10:29 p.m.14 views

CVE-2017-11073

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/athpktlog/cld to user space...

7.8CVSS7.2AI score0.00138EPSS
Exploits0References1
Prion
Prion
added 2017/11/16 10:29 p.m.22 views

Code injection

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/athpktlog/cld to user space...

4.6CVSS7.7AI score0.00138EPSS
Exploits0References1
CVE
CVE
added 2017/11/16 10:0 p.m.57 views

CVE-2017-11073

CVE-2017-11073 is a Qualcomm Networking subsystem vulnerability affecting Android on MSM/CAF/Linux kernel builds. The qcacld pktlog allows a local attacker to map memory to user space via /proc/ath_pktlog/cld, enabling potentially exposure or modification of memory. Public details specify LOCAL a...

7.8CVSS7AI score0.00138EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/11/16 10:0 p.m.18 views

CVE-2017-11073

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/athpktlog/cld to user space...

7.1AI score0.00138EPSS
Exploits0References1
Kitploit
Kitploit
added 2017/11/13 8:43 p.m.186 views

Faraday v2.7 - Collaborative Penetration Test and Vulnerability Management Platform

Faraday is the Integrated Multiuser Risk Environment you have alwasy been looking for! It maps and leverages all the data you generate in real time , letting you track and understand your audits. Our dashboard for CISOs and managers uncovers the risks and impacts and risks being assessed by the...

9.3AI score
Exploits0References2
Prion
Prion
added 2017/11/13 3:29 a.m.20 views

Design/Logic Flaw

An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "APFS" component. It does not properly restrict the DMA mapping time of FileVault decryption buffers, which allows attackers to read cleartext APFS data via a crafted Thunderbolt adapter...

2.1CVSS3.6AI score0.00324EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/11/13 3:0 a.m.70 views

CVE-2017-13786

APFS DMA mapping timing vulnerability in macOS with versions before 10.13.1. The issue allows reading cleartext APFS data via a crafted Thunderbolt adapter due to insufficient restriction of DMA mapping time for FileVault decryption buffers. Apple’s security update 10.13.1 (and related Sierra/El ...

4.6CVSS5AI score0.00324EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/11/13 3:0 a.m.22 views

CVE-2017-13786

An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "APFS" component. It does not properly restrict the DMA mapping time of FileVault decryption buffers, which allows attackers to read cleartext APFS data via a crafted Thunderbolt adapter...

4.5AI score0.00324EPSS
Exploits0References2
Kitploit
Kitploit
added 2017/11/04 9:35 p.m.96 views

Striker - Offensive Information And Vulnerability Scanner

Striker is an offensive information and vulnerability scanner. Features Just supply a domain name to Striker and it will automatically do the following for you: Check and Bypass Cloudflare Retrieve Server and Powered by Headers Fingerprint the operating system of Web Server Detect CMS 197+ CMSs a...

8.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/10/19 12:0 a.m.41 views

Xen Hypervisor Translated Guest Self-linear Shadow Mapping Handling Guest-to-Host Privilege Escalation (XSA-243)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by an unspecified flaw in mm/shadow/multi.c that is triggered during the handling of self-linear shadow mappings with translated guests. This may allow an attacker on the guest to cause a...

8.8CVSS6.7AI score0.01547EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2017/10/18 2:54 p.m.26 views

CVE-2017-15590

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...

8.8CVSS5.5AI score0.0041EPSS
Exploits0References2
OSV
OSV
added 2017/10/18 8:29 a.m.0 views

ALPINE-CVE-2017-15590

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...

8.8CVSS7.1AI score0.0041EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/10/18 8:29 a.m.28 views

CVE-2017-15590

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...

8.8CVSS7.2AI score0.0041EPSS
Exploits0References2
NVD
NVD
added 2017/10/18 8:29 a.m.18 views

CVE-2017-15590

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...

8.8CVSS7.6AI score0.0041EPSS
Exploits0References7
Prion
Prion
added 2017/10/18 8:29 a.m.24 views

Denial of service

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...

4.6CVSS8.6AI score0.0041EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2017/10/18 8:29 a.m.28 views

CVE-2017-15590

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...

8.8CVSS7.6AI score
Exploits0References7
OSV
OSV
added 2017/10/18 8:29 a.m.3 views

DEBIAN-CVE-2017-15590

An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service hypervisor crash or possibly gain privileges because MSI mapping was mishandled...

8.8CVSS8AI score0.0041EPSS
Exploits0References1
Rows per page
Query Builder