Lucene search
K

176 matches found

OSV
OSV
added 2023/12/05 12:25 a.m.4 views

CVE-2023-48697 Azure RTOS USBX Remote Code Execution Vulnerability

Azure RTOS USBX is a USB host, device, and on-the-go OTG embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to memory buffer and pointer vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in...

6.4CVSS8.4AI score0.01185EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/27 12:0 a.m.36 views

Debian dla-3668 : opensc - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3668 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3668-1 [email protected]...

6.6CVSS6.6AI score0.01174EPSS
Exploits0References6
OSV
OSV
added 2023/11/06 5:15 p.m.6 views

AZL-35075 CVE-2023-40661 affecting package opensc for versions less than 0.25.1-3

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

6.4CVSS7.1AI score0.01174EPSS
Exploits0References1
OSV
OSV
added 2023/11/06 5:15 p.m.2 views

DEBIAN-CVE-2023-40661

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

6.4CVSS6.2AI score0.01174EPSS
Exploits0References1
NVD
NVD
added 2023/11/06 5:15 p.m.21 views

CVE-2023-40661

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

6.4CVSS6AI score0.01174EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2023/11/06 5:15 p.m.29 views

CVE-2023-40661

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

6.4CVSS6.7AI score0.01174EPSS
Exploits0References5
Prion
Prion
added 2023/11/06 5:15 p.m.23 views

Input validation

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

4.1CVSS6.9AI score0.01174EPSS
Exploits0References11Affected Software2
CVE
CVE
added 2023/11/06 4:58 p.m.434 views

CVE-2023-40661

Summary: CVE-2023-40661 affects the OpenSC project, specifically the enrollment tooling pkcs15-init. The issue consists of multiple memory-related vulnerabilities reported by dynamic analysis during the card enrollment process, where a locally present attacker with physical access could manipulat...

6.4CVSS6AI score0.01174EPSS
Exploits0References12Affected Software1
OSV
OSV
added 2023/11/06 4:58 p.m.28 views

CVE-2023-40661 Opensc: multiple memory issues with pkcs15-init (enrollment tool)

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

5.4CVSS6.7AI score0.01174EPSS
Exploits0References16
Cvelist
Cvelist
added 2023/11/06 4:58 p.m.36 views

CVE-2023-40661 Opensc: multiple memory issues with pkcs15-init (enrollment tool)

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

5.4CVSS6.6AI score0.01174EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2023/11/06 4:58 p.m.25 views

CVE-2023-40661

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

6.4CVSS6.4AI score0.01174EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2023/10/04 4:54 a.m.42 views

CVE-2023-40661

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

5.4CVSS6.5AI score0.01174EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/09/27 12:0 p.m.25 views

CVE-2023-44153

Sensitive information disclosure due to cleartext storage of sensitive information in memory. The following products are affected: Acronis Cyber Protect 15 Linux, macOS, Windows before build 35979...

2.2CVSS7.4AI score0.00294EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/25 12:0 a.m.2 views

PT-2023-8908 · Opensc +8 · Opensc +8

Name of the Vulnerable Software and Affected Versions: OpenSC affected versions not specified Description: The issue is related to several memory vulnerabilities within the OpenSC packages, specifically in the card enrollment process using pkcs15-init. An attacker must have physical access to the...

7.5CVSS5.4AI score0.02805EPSS
Exploits1References122
BDU FSTEC
BDU FSTEC
added 2023/08/31 12:0 a.m.8 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020/Adobe Acrobat Reader 2020 involve memory-related issues, allowing attackers to exploit these vulnerabilities to disclose protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to reading data beyond the memory limit. Exploiting these vulnerabilities can allow attackers to disclos...

5.5CVSS5.5AI score0.0213EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/31 12:0 a.m.5 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020/Adobe Acrobat Reader 2020 involve memory-related issues, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 involve memoryless reading. Exploiting these vulnerabilities can allow attackers to gain unauthorized access to...

5.5CVSS5.6AI score0.0213EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/31 12:0 a.m.5 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020/Adobe Acrobat Reader 2020 involve memory-related issues, allowing attackers to gain unauthorized access to protected information.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 involve memoryless reading. Exploiting these vulnerabilities can allow attackers to gain unauthorized access to...

5.5CVSS5.6AI score0.0213EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/31 12:0 a.m.6 views

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020/Adobe Acrobat Reader 2020 involve memory management issues after memory is freed, allowing attackers to execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow an attacker to execut...

7.8CVSS7.6AI score0.02465EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/29 12:0 a.m.2 views

PT-2023-5340 · Libxml2 +7 · Libxml2 +7

Name of the Vulnerable Software and Affected Versions: libxml2 versions prior to 2.11.0 Description: The libxml2 library contains a vulnerability where crafted XML input can cause a global buffer overflow via the xmlSAX2StartElement function. This can lead to a denial-of-service DoS condition. Th...

8.1CVSS6.6AI score0.03185EPSS
Exploits12References109
OpenVAS
OpenVAS
added 2023/08/21 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-6302-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00872EPSS
Exploits15References2
Rows per page
Query Builder