Lucene search
K

2317 matches found

CNVD
CNVD
added 2021/05/26 12:0 a.m.4 views

Google Chrome Out-of-Bounds Write Vulnerability (CNVD-2021-41142)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. An out-of-bounds write vulnerability exists in TabStrip in versions prior to Google Chrome 91.0.4472.77, which can be exploited by an attacker who convinces a user ...

8.8CVSS6.1AI score0.00989EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/26 12:0 a.m.8 views

3S-Smart Software Solutions CODESYS V2 Web-Server Out-of-Bounds Write Vulnerability

3S-Smart Software Solutions CODESYS V2 Web-Server is an application from 3S-Smart Software Solutions, Germany. A web server. An out-of-bounds write vulnerability exists in 3S-Smart Software Solutions CODESYS V2 Web-Server versions prior to 1.1.9.20, which can be exploited by an attacker with a...

9.8CVSS6.9AI score0.01151EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/05/24 12:0 a.m.332 views

Amazon Linux AMI : kernel (ALAS-2021-1503)

The version of kernel installed on the remote host is prior to 4.14.232-123.381. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1503 advisory. kernel: refcount leak in llcpsockbind CVE-2020-25670 kernel: refcount leak in llcpsockconnect CVE-2020-25671 kernel...

7.8CVSS7AI score0.03233EPSS
Exploits6References29
Microsoft CVE
Microsoft CVE
added 2021/05/19 7:0 a.m.2 views

An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.

...

6.7CVSS6.8AI score0.0072EPSS
Exploits0
NVD
NVD
added 2021/05/14 8:15 p.m.16 views

CVE-2021-29567

TensorFlow is an end-to-end open source platform for machine learning. Due to lack of validation in tf.rawops.SparseDenseCwiseMul, an attacker can trigger denial of service via CHECK-fails or accesses to outside the bounds of heap allocated data. Since the...

5.5CVSS0.00189EPSS
Exploits1References2
PyPA
PyPA
added 2021/05/14 8:15 p.m.7 views

PYSEC-2021-693

TensorFlow is an end-to-end open source platform for machine learning. Due to lack of validation in tf.rawops.SparseDenseCwiseMul, an attacker can trigger denial of service via CHECK-fails or accesses to outside the bounds of heap allocated data. Since the...

5.5CVSS7AI score0.00189EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2021/05/12 2:15 p.m.3 views

DEBIAN-CVE-2021-20277

A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability...

7.5CVSS6.8AI score0.04328EPSS
Exploits0References1
NVD
NVD
added 2021/05/12 2:15 p.m.14 views

CVE-2021-20277

A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability...

7.5CVSS0.04328EPSS
Exploits0References9
OSV
OSV
added 2021/05/12 2:15 p.m.20 views

CVE-2021-20277

A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability...

7.5CVSS6.4AI score0.04328EPSS
Exploits0References9
Prion
Prion
added 2021/05/12 2:15 p.m.25 views

Cross site request forgery (csrf)

A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability...

5CVSS7.2AI score0.04328EPSS
Exploits0References9Affected Software3
Debian CVE
Debian CVE
added 2021/05/12 1:54 p.m.32 views

CVE-2021-20277

A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is to system availability...

7.5CVSS7.2AI score0.04328EPSS
Exploits0
CNVD
CNVD
added 2021/05/07 12:0 a.m.15 views

Linux kernel out-of-bounds memory write vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. An out-of-bounds memory write vulnerability exists in listdevices in drivers/md/dm-ioctl.c in the Multi-Device Driver...

6.7CVSS6.5AI score0.0072EPSS
Exploits0References1
NVD
NVD
added 2021/05/06 5:15 p.m.17 views

CVE-2021-31916

An out-of-bounds OOB memory write flaw was found in listdevices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user CAPSYSADMIN privilege to gain access to out-of-bounds memory leading to a system...

6.7CVSS0.0072EPSS
Exploits0References5
CVE
CVE
added 2021/05/06 4:14 p.m.362 views

CVE-2021-31916

CVE-2021-31916 is a Linux kernel vulnerability in the device-mapper code (drivers/md/dm-ioctl.c, list_devices) causing an out-of-bounds memory write due to a bound check failure in kernels before 5.12. An attacker with CAP_SYS_ADMIN (local, no user interaction) can trigger a heap overrun, potenti...

6.7CVSS6.8AI score0.0072EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2021/04/30 12:0 a.m.49 views

CVE-2021-31916

An out-of-bounds OOB memory write flaw was found in listdevices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. A bound check failure allows an attacker with special user CAPSYSADMIN privilege to gain access to out-of-bounds memory leading to a system...

6.7CVSS6.7AI score0.0072EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/04/30 12:0 a.m.24 views

EulerOS 2.0 SP3 : libldb (EulerOS-SA-2021-1811)

According to the version of the libldb packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to...

7.5CVSS6.9AI score0.04328EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/04/30 12:0 a.m.29 views

EulerOS 2.0 SP3 : samba (EulerOS-SA-2021-1846)

According to the versions of the samba packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and befo...

7.5CVSS7AI score0.04328EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/29 10:13 p.m.84 views

CVE-2021-31916

An out-of-bounds OOB memory write flaw was found in listdevices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel. A bound check failure allows an attacker with special user CAPSYSADMIN privilege to gain access to out-of-bounds memory leading to a system crash, a leak...

6.7CVSS7.2AI score0.0072EPSS
Exploits0References5
OSV
OSV
added 2021/04/28 12:15 p.m.6 views

CVE-2021-22327

There is an arbitrary memory write vulnerability in Huawei smart phone when processing file parsing. Due to insufficient validation of the input files, successful exploit could cause certain service abnormal. Affected product versions include:HUAWEI P30 versions 10.0.0.186C10E7R5P1,...

6.5CVSS6.7AI score0.00534EPSS
Exploits0References1
NVD
NVD
added 2021/04/28 12:15 p.m.17 views

CVE-2021-22327

There is an arbitrary memory write vulnerability in Huawei smart phone when processing file parsing. Due to insufficient validation of the input files, successful exploit could cause certain service abnormal. Affected product versions include:HUAWEI P30 versions 10.0.0.186C10E7R5P1,...

6.5CVSS0.00534EPSS
Exploits0References1
Rows per page
Query Builder