Lucene search
K

427 matches found

Positive Technologies
Positive Technologies
added 2026/04/30 12:0 a.m.10 views

PT-2026-36170

Name of the Vulnerable Software and Affected Versions Secure Access client for MacOS versions prior to 14.50 Description A format string issue exists in the logging subsystem. Attackers controlling a modified server can force the client to dump small portions of memory into log files, which may...

4.8CVSS5.8AI score0.001EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/31 10:3 p.m.5 views

EUVD-2026-17705

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a heap-buffer-overflow HBO in icMemDump when iccDumpProfile attempts to dump/describe malformed tag contents. The issue is observable under...

6.2CVSS5.8AI score0.00156EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/31 10:3 p.m.3 views

CVE-2026-34540

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a heap-buffer-overflow HBO in icMemDump when iccDumpProfile attempts to dump/describe malformed tag contents. The issue is observable under...

6.2CVSS5.8AI score0.00156EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/03/31 10:3 p.m.8 views

CVE-2026-34540

The CVE concerns iccDEV ICC color management libraries. Prior to version 2.3.1.6, a crafted ICC profile can trigger a heap-buffer-overflow in icMemDump() when iccDumpProfile tries to dump/malformed tag contents. The out-of-bounds read is observed under AddressSanitizer in icMemDump(...) at IccPro...

6.2CVSS5.8AI score0.00156EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.4 views

PT-2026-29388

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a heap-buffer-overflow HBO in icMemDump when iccDumpProfile attempts to dump/describe malformed tag contents. The issue is observable under...

6.2CVSS5.8AI score0.00156EPSS
Exploits1References6
OSV
OSV
added 2026/02/10 4:16 a.m.4 views

CVE-2026-24319

In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high...

5.8CVSS5.8AI score0.00094EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/10 3:3 a.m.3 views

CVE-2026-24319 Information Disclosure Vulnerability in SAP Business One (B1 Client Memory Dump Files)

In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high...

5.8CVSS5.5AI score0.00094EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/10 3:3 a.m.28 views

CVE-2026-24319 Information Disclosure Vulnerability in SAP Business One (B1 Client Memory Dump Files)

In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high...

5.8CVSS0.00094EPSS
Exploits0References2
CVE
CVE
added 2026/02/10 3:3 a.m.14 views

CVE-2026-24319

In SAP Business One, sensitive information is written to memory dump files without obfuscation, exposing confidential and integrity-related data. This CVE (CVE-2026-24319) is a local-attack with high privileges required and user interaction, affecting confidentiality and integrity (no availabilit...

5.8CVSS5.5AI score0.00094EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003132)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003132 advisory. A missing address check in the callers of the showopcodes in the Linux kernel allows an attacker to dump the kernel memory at an arbitrary kernel address into the...

7CVSS7.2AI score0.00528EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2026/01/09 12:35 p.m.7 views

CVE-2023-49312

Precision Bridge PrecisionBridge.exe aka the thick client before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address...

9.1CVSS6.8AI score0.00676EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.9 views

CVE-2021-31989

A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a memory dump from the built-in Windows Task Manager application. The memory dump may potentially contain credentials of connected Axis devices...

5.3CVSS6.8AI score0.00397EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:29 a.m.13 views

CVE-2023-50706

A user without administrator permissions with access to the UC500 windows system could perform a memory dump of the running processes and extract clear credentials or valid session tokens...

4.3CVSS6.9AI score0.00243EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/12/25 12:55 a.m.3 views

SUSE CVE-2023-54113

In the Linux kernel, the following vulnerability has been resolved: rcu: dump vmalloc memory info safely Currently, for double invoke callrcu, will dump rcuhead objects memory info, if the objects is not allocated from the slab allocator, the vmallocdumpobj will be invoke and the vmaparealock...

5.5CVSS6.4AI score0.00168EPSS
Exploits0References17
EUVD
EUVD
added 2025/12/24 3:30 p.m.5 views

EUVD-2023-60332

In the Linux kernel, the following vulnerability has been resolved: rcu: dump vmalloc memory info safely Currently, for double invoke callrcu, will dump rcuhead objects memory info, if the objects is not allocated from the slab allocator, the vmallocdumpobj will be invoke and the vmaparealock...

5.9AI score0.00168EPSS
Exploits0References6
OSV
OSV
added 2025/12/24 1:16 p.m.4 views

UBUNTU-CVE-2023-54113

In the Linux kernel, the following vulnerability has been resolved: rcu: dump vmalloc memory info safely Currently, for double invoke callrcu, will dump rcuhead objects memory info, if the objects is not allocated from the slab allocator, the vmallocdumpobj will be invoke and the vmaparealock...

5.7AI score0.00168EPSS
Exploits0References7
CVE
CVE
added 2025/12/24 1:6 p.m.13 views

CVE-2023-54113

CVE-2023-54113 describes a Linux kernel RCU/vmalloc memory dump issue that could cause a deadlock when dump_vmalloc_obj is invoked during interrupt context. The fix changes the code to use a deadlock-safe, best-effort find_vm_area path and, if that fails, prints that the pointer is vmalloc-backed...

6AI score0.00168EPSS
Exploits0References5
OSV
OSV
added 2025/12/24 1:6 p.m.5 views

CVE-2023-54113 rcu: dump vmalloc memory info safely

In the Linux kernel, the following vulnerability has been resolved: rcu: dump vmalloc memory info safely Currently, for double invoke callrcu, will dump rcuhead objects memory info, if the objects is not allocated from the slab allocator, the vmallocdumpobj will be invoke and the vmaparealock...

6.3AI score0.00168EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-54113

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rcu: dump vmalloc memory info safely Currently, for double invoke callrcu, will dump rcuhead objects memory info, if the objects is not allocated from the slab...

6.9AI score0.00168EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/10 9:31 p.m.4 views

EUVD-2025-202612

The mobile application insecurely handles information stored within memory. By performing a memory dump on the application after a user has logged out and terminated it, Wi-Fi credentials sent during the pairing process, JWTs used for authentication, and other sensitive details can be retrieved. ...

5.8AI score0.00122EPSS
Exploits0References3
Rows per page
Query Builder