Lucene search
K

316 matches found

OSV
OSV
added 2024/10/04 1:15 p.m.4 views

CVE-2024-9513

A vulnerability was found in Netadmin Software NetAdmin IAM up to 3.5 and classified as problematic. Affected by this issue is some unknown functionality of the file /controller/api/Answer/ReturnUserQuestionsFilled of the component HTTP POST Request Handler. The manipulation of the argument...

3.7CVSS4.5AI score0.01635EPSS
Exploits3References3
NVD
NVD
added 2024/09/18 6:15 p.m.24 views

CVE-2024-34399

UNSUPPORTED WHEN ASSIGNED An issue was discovered in BMC Remedy Mid Tier 7.6.04. An unauthenticated remote attacker is able to access any user account without using any password. NOTE: This vulnerability only affects products that are no longer supported by the maintainer and the impacted version...

9.8CVSS0.00518EPSS
Exploits0References1
OSV
OSV
added 2024/09/18 6:15 p.m.4 views

CVE-2024-34399

UNSUPPORTED WHEN ASSIGNED An issue was discovered in BMC Remedy Mid Tier 7.6.04. An unauthenticated remote attacker is able to access any user account without using any password. NOTE: This vulnerability only affects products that are no longer supported by the maintainer and the impacted version...

9.8CVSS5.8AI score0.00518EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/18 12:0 a.m.5 views

BMC Remedy Mid Tier 安全漏洞

BMC Remedy Mid Tier is an application from BMC USA, Inc. It is used to act as a client for the Remedy AR System server and a server for the browser. A security vulnerability exists in BMC Remedy Mid Tier version 7.6.04 that originates from an unauthorized remote attacker being able to access any...

9.8CVSS6.8AI score0.00518EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/18 12:0 a.m.14 views

CVE-2024-34399

UNSUPPORTED WHEN ASSIGNED An issue was discovered in BMC Remedy Mid Tier 7.6.04. An unauthenticated remote attacker is able to access any user account without using any password. NOTE: This vulnerability only affects products that are no longer supported by the maintainer and the impacted version...

7.1AI score0.00518EPSS
Exploits0References1
CVE
CVE
added 2024/09/18 12:0 a.m.70 views

CVE-2024-34399

CVE-2024-34399 affects BMC Remedy Mid Tier 7.6.04. An unauthenticated remote attacker can access any user account without a password, implying high impact to confidentiality, integrity, and availability as described. The impact is noted as total in the referenced metrics, with a CVSS3.1 base scor...

9.8CVSS7.2AI score0.00518EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2024/08/08 4:53 a.m.3 views

kernel: cifs: fix mid leak during reconnection after timeout threshold

In the Linux kernel, the following vulnerability has been resolved: cifs: fix mid leak during reconnection after timeout threshold When the number of responses with status of STATUSIOTIMEOUT exceeds a specified threshold NUMSTATUSIOTIMEOUT, we reconnect the connection. But we do not return the mi...

5.5CVSS5.7AI score0.00136EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/29 10:0 a.m.2 views

SUSE CVE-2023-52757

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when releasing mids All releasemid callers seem to hold a reference of @mid so there is no need to call krefput&mid-refcount, releasemid under @server-midlock spinlock. If they don't, then an...

5.5CVSS6.5AI score0.00184EPSS
Exploits0References16
OSV
OSV
added 2024/05/21 4:15 p.m.1 views

DEBIAN-CVE-2023-52757

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when releasing mids All releasemid callers seem to hold a reference of @mid so there is no need to call krefput&mid-refcount, releasemid under @server-midlock spinlock. If they don't, then an...

7.8CVSS5.8AI score0.00184EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 4:15 p.m.5 views

UBUNTU-CVE-2023-52757

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when releasing mids All releasemid callers seem to hold a reference of @mid so there is no need to call krefput&mid-refcount, releasemid under @server-midlock spinlock. If they don't, then an...

7.8CVSS6.2AI score0.00184EPSS
Exploits0References27
OSV
OSV
added 2024/05/20 10:15 a.m.2 views

DEBIAN-CVE-2024-35998

In the Linux kernel, the following vulnerability has been resolved: smb3: fix lock ordering potential deadlock in cifssyncmidresult Coverity spotted that the cifssyncmidresult function could deadlock "Thread deadlock ORDERREVERSAL lockorder: Calling spinlock acquires lock TCPServerInfo.srvlock...

5.5CVSS5.5AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2024/05/20 10:15 a.m.5 views

AZL-55440 CVE-2024-35998 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: smb3: fix lock ordering potential deadlock in cifssyncmidresult Coverity spotted that the cifssyncmidresult function could deadlock "Thread deadlock ORDERREVERSAL lockorder: Calling spinlock acquires lock TCPServerInfo.srvlock...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

SAMSUNG Escargot 安全漏洞

SAMSUNG Escargot is a memory-optimized JavaScript engine from Samsung South Korea for mid-range devices such as cell phones, tablets and TVs. A security vulnerability exists in SAMSUNG Escargot version 4.0.0, which stems from a segmentation error issue...

5.3CVSS6.7AI score0.00791EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/04/08 9:13 a.m.3 views

nodejs: improper handling of wildcards in --allow-fs-read and --allow-fs-write

A flaw was found in the Node.js Permission Model, where it is not clarified in the documentation that wildcards should only be used as the last character of a file path. For example: --allow-fs-read=/home/node/.ssh/.pub will ignore pub and give access to everything after .ssh/...

6.5CVSS7.2AI score0.00945EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2024/03/04 11:12 a.m.19 views

From 500 to 5000 Employees - Securing 3rd Party App-Usage in Mid-Market Companies

A company's lifecycle stage, size, and state have a significant impact on its security needs, policies, and priorities. This is particularly true for modern mid-market companies that are either experiencing or have experienced rapid growth. As requirements and tasks continue to accumulate and...

7.1AI score
Exploits0
OSV
OSV
added 2024/02/27 7:15 a.m.1 views

DEBIAN-CVE-2021-46911

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

5.5CVSS5.6AI score0.00222EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/02/27 7:15 a.m.2 views

CVE-2021-46911

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

5.5CVSS6.4AI score0.00222EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/02/27 7:15 a.m.1 views

UBUNTU-CVE-2021-46911

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

5.5CVSS6.6AI score0.00222EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/10/31 12:0 a.m.7 views

PT-2024-14725

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a potential deadlock when releasing mids in the smb client. All release mid callers seem to hold a reference of @mid, so there is no need to call kref...

7.8CVSS6.9AI score0.00184EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.21 views

Ubuntu 16.04 ESM : WildMIDI vulnerabilities (USN-4807-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4807-1 advisory. It was discovered that WildMIDI incorrectly handled certain MID files. A remote attacker could possibly use this issue to cause a denial of service...

7.5CVSS6.8AI score0.10772EPSS
Exploits7References5
Rows per page
Query Builder