Lucene search
K

211 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-7942

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. CVE-2017-7942 Not...

6.5CVSS7.3AI score0.01906EPSS
Exploits0References2
Redos
Redos
added 2025/03/03 12:0 a.m.15 views

ROS-20250303-05

A vulnerability in the Wi-Fi driver rtl8712 of the Linux operating system kernel is related to the use of memory after its after memory has been freed. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6.6AI score0.00258EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/03/01 9:32 p.m.31 views

Advisory ROSA-SA-2025-2734

SOFTWARE: 389-ds-base 1.4.3.23. OS: ROSA Virtualization 3.0 packageevrstring: 389-ds-base-1.4.3.23-14.rv30 CVE-ID: CVE-2021-4091 BDU-ID: 2022-05559 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the 389 Directory Server's implementation of the 389 Directory Server lookup function is related to the...

7.5CVSS6.7AI score0.02014EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/27 12:0 a.m.7 views

The vulnerability of Remote Desktop Services (RDS) for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of Remote Desktop Services RDS for Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

8.1CVSS8.4AI score0.01384EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/24 3:22 p.m.7 views

CVE-2024-12577

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...

7.3CVSS6.8AI score0.00162EPSS
Exploits0References1
NVD
NVD
added 2025/02/22 3:15 p.m.7 views

CVE-2024-46975

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data into another Guest's virtualised GPU memory...

7.9CVSS0.00145EPSS
Exploits0References1
NVD
NVD
added 2025/02/22 3:15 p.m.7 views

CVE-2024-47896

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...

3.3CVSS0.00148EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/22 2:58 p.m.15 views

CVE-2024-12577 GPU DDK - rgxfw_pcset_ungrab OOB write via psFWMemContext->uiPageCatBaseRegSet

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory...

0.00162EPSS
Exploits0References1
CVE
CVE
added 2025/02/22 2:58 p.m.100 views

CVE-2024-12577

CVE-2024-12577 concerns Imagination Technologies PowerVR-GPU driver where kernel-space code in a guest VM can leverage memory shared with the GPU firmware to write data outside the guest’s virtualised GPU memory. The CVE appears in multiple sources (NVD entry; CVE list entry describing the exploi...

7.3CVSS6.5AI score0.00162EPSS
Exploits0References1
CVE
CVE
added 2025/02/22 2:50 p.m.109 views

CVE-2024-47896

CVE-2024-47896 concerns Imagination Technologies PowerVR-GPU drivers. According to the provided sources, a kernel component running inside a guest VM can access memory shared with the GPU Firmware and write data outside the Guest VM’s virtualized GPU memory, indicating a local vulnerability with ...

3.3CVSS6.5AI score0.00148EPSS
Exploits0References1
CNVD
CNVD
added 2025/02/17 12:0 a.m.2 views

Samsung Blockchain Keystore Out-of-Bounds Read Vulnerability

Samsung Blockchain Keystore is a secure storage solution introduced by South Korea's Samsung SAMSUNG on its mobile devices to protect users' blockchain keys and digital assets. Samsung Blockchain Keystore suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to rea...

4.4CVSS6.2AI score0.00152EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.13 views

The vulnerability of the Windows Win32 Kernel subsystem in operating systems allows attackers to increase their privileges.

The vulnerability of the Windows Win32 Kernel subsystem in operating systems involves the possibility of exploiting memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS7.6AI score0.0063EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/29 7:42 a.m.6 views

CVE-2024-7695 Out-of-bounds Write Vulnerability

Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation, which allows data to be written to memory outside the bounds of the buffer. Successful exploitation of this vulnerability could result in a denial-of-service atta...

8.7CVSS7.5AI score0.00701EPSS
Exploits0References3
Hacker One
Hacker One
added 2025/01/23 11:37 p.m.1416 views

curl: CVE-2025-0725: gzip integer overflow

The libcurl library contained a vulnerability in the gzip content encoding function that allowed a malicious HTTP server to craft an arbitrary heap chunk in the memory of the victim and trigger a free of that forged chunk. This was possible due to an integer overflow in the handling of gzip...

7.3CVSS7.2AI score0.01218EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/01/23 12:0 a.m.20 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : Cyrus IMAP Server vulnerabilities (USN-7224-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7224-1 advisory. It was discovered that non-authentication-related HTTP requests could be interpreted in an authentication context by ...

9.8CVSS7.2AI score0.0307EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/01/17 11:17 p.m.15 views

CVE-2018-9401

In many locations, there is a possible way to access kernel memory in user space due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00095EPSS
Exploits0References1
CVE
CVE
added 2025/01/14 2:8 p.m.108 views

CVE-2024-46668

CVE-2024-46668 describes an allocation of resources without limits or throttling (CWE-770) in Fortinet FortiOS. The vulnerability affects FortiOS versions 7.4.0–7.4.4, 7.2.0–7.2.8, 7.0.0–7.0.15, and 6.4.0–6.4.15, where an unauthenticated remote attacker could cause memory exhaustion by uploading ...

7.5CVSS7.6AI score0.00961EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.5 views

PT-2025-1152 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue affects Microsoft Windows, specifically the Windows Reliable Multicast Transport Driver RMCAST, allowing remote attackers to execute arbitrary code and impact the system...

9.8CVSS9.6AI score0.0184EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.4 views

PT-2025-1246 · Microsoft · Access +1

Name of the Vulnerable Software and Affected Versions: Microsoft Access affected versions not specified Description: The issue is related to a remote code execution problem. It involves the use of memory after it has been freed, which can be exploited by an attacker to execute arbitrary code. Thi...

7.8CVSS8.9AI score0.01087EPSS
Exploits0References8
Redos
Redos
added 2025/01/14 12:0 a.m.13 views

ROS-20250114-13

The Redis database management system DBMS vulnerability is related to the use of memory after its memory after it has been freed. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by injecting a specially crafted lua script A vulnerability in the Redis database...

9.8CVSS7.7AI score0.07934EPSS
Exploits2
Rows per page
Query Builder