Lucene search
K

5119 matches found

OSV
OSV
added 2015/11/24 8:59 p.m.4 views

DEBIAN-CVE-2015-5053

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

10CVSS7.4AI score0.01746EPSS
Exploits0References1
OSV
OSV
added 2015/11/24 8:59 p.m.6 views

CVE-2015-5053

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

7.8AI score
Exploits0References1
Prion
Prion
added 2015/11/24 8:59 p.m.22 views

Path traversal

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

10CVSS8.1AI score0.01746EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2015/11/24 8:59 p.m.30 views

CVE-2015-5053

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

10CVSS5.9AI score0.01746EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/11/20 12:0 a.m.30 views

RedHat Update for sssd RHSA-2015:2355-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.03666EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2015/11/19 7:56 p.m.5 views

kernel: kvm: reporting emulation failures to userspace

It was found that reporting emulation failures to user space could lead to either a local CVE-2014-7842 or a L2-L1 CVE-2010-5313 denial of service. In the case of a local denial of service, an attacker must have access to the MMIO area or be able to access an I/O port. Please note that on certain...

4.9CVSS6.6AI score0.00325EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/11/19 5:27 a.m.33 views

Low: Red Hat Security Advisory: sssd security, bug fix, and enhancement update

Updated sssd packages that fix one security issue, multiple bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

6.8CVSS7AI score0.03666EPSS
Exploits0References49
RedHat Linux
RedHat Linux
added 2015/11/19 2:51 a.m.18 views

Moderate: Red Hat Security Advisory: realmd security, bug fix, and enhancement update

Updated realmd packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

5CVSS6AI score0.02915EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2015/11/03 12:0 a.m.35 views

Debian DSA-3390-1 : xen - security update

It was discovered that the code to validate level 2 page table entries is bypassed when certain conditions are satisfied. A malicious PV guest administrator can take advantage of this flaw to gain privileges via a crafted superpage mapping. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

7.2CVSS7.8AI score0.00427EPSS
Exploits0References4
Debian
Debian
added 2015/11/02 6:24 p.m.31 views

[SECURITY] [DSA 3390-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3390-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 02, 2015 https://www.debian.org/security/faq -...

7.2CVSS6.1AI score0.00427EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/11/02 12:0 a.m.28 views

Debian Security Advisory DSA 3390-1 (xen - security update)

It was discovered that the code to validate level 2 page table entries is bypassed when certain conditions are satisfied. A malicious PV guest administrator can take advantage of this flaw to gain privileges via a crafted superpage mapping. OpenVAS Vulnerability Test $Id: deb3390.nasl 6609...

7.2CVSS1.1AI score0.00427EPSS
Exploits0References1
OSV
OSV
added 2015/11/02 12:0 a.m.15 views

DSA-3390-1 xen - security update

Bulletin has no description...

7.2CVSS7AI score0.00427EPSS
Exploits0
Kitploit
Kitploit
added 2015/10/30 9:30 p.m.202 views

Infernal-Twin - This Is Evil Twin Attack Automated (Wireless Hacking)

This tool is created to aid the penetration testers in assessing wireless security. Author is not responsible for misuse. Please read instructions thoroughly. Usage sudo python InfernalWireless.py How to install $ sudo apt-get install apache2 $ sudo apt-get install mysql-server...

7.4AI score
Exploits0References1
OSV
OSV
added 2015/10/30 3:59 p.m.1 views

DEBIAN-CVE-2015-7835

The modl2entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x does not properly validate level 2 page table entries, which allows local PV guest administrators to gain privileges via a crafted superpage mapping...

7.2CVSS8.3AI score0.00427EPSS
Exploits0References1
Prion
Prion
added 2015/10/30 3:59 p.m.18 views

Design/Logic Flaw

The modl2entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x does not properly validate level 2 page table entries, which allows local PV guest administrators to gain privileges via a crafted superpage mapping...

7.2CVSS6.7AI score0.00427EPSS
Exploits0References12Affected Software1
UbuntuCve
UbuntuCve
added 2015/10/30 3:59 p.m.25 views

CVE-2015-7835

The modl2entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x does not properly validate level 2 page table entries, which allows local PV guest administrators to gain privileges via a crafted superpage mapping...

7.2CVSS7.2AI score0.00427EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/10/30 3:0 p.m.25 views

CVE-2015-7835

The modl2entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x does not properly validate level 2 page table entries, which allows local PV guest administrators to gain privileges via a crafted superpage mapping...

6AI score0.00427EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2015/10/30 3:0 p.m.31 views

CVE-2015-7835

The modl2entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x does not properly validate level 2 page table entries, which allows local PV guest administrators to gain privileges via a crafted superpage mapping...

7.2CVSS7.2AI score0.00427EPSS
Exploits0
Prion
Prion
added 2015/10/30 10:59 a.m.20 views

Code injection

Cisco Unified Communications Domain Manager before 10.61 provides different error messages for pathname access attempts depending on whether the pathname exists, which allows remote attackers to map a filesystem via a series of requests, aka Bug ID CSCut67891...

4.3CVSS7.2AI score0.01816EPSS
Exploits0References3Affected Software2
RedhatCVE
RedhatCVE
added 2015/10/30 10:33 a.m.19 views

CVE-2013-4511

Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted mmap operations, related to the 1 au1100fbfbmmap function in...

6.9CVSS7.2AI score0.00596EPSS
Exploits1References2
Rows per page
Query Builder