Lucene search
K

660 matches found

CNNVD
CNNVD
added 2022/10/05 12:0 a.m.5 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a bypass checking vulnerability in the HISP module for data passed in the kernel state...

7.5CVSS7.3AI score0.00426EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/09/17 12:0 a.m.3 views

PT-2022-33839 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to a potential security vulnerability in the jbd2 module of the Linux Kernel. The problem arises when a journal is aborted, leading to an assertion failure. The actual...

7.3AI score
Exploits0References1
OSV
OSV
added 2022/09/16 6:15 p.m.2 views

CVE-2022-39005

The MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks...

7.5CVSS5.8AI score0.00544EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/16 5:57 p.m.5 views

CVE-2022-39009

The WLAN module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause third-party apps to affect WLAN functions...

9.3AI score0.00566EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.5 views

PT-2022-11146 · Unknown · Wlan Module

Name of the Vulnerable Software and Affected Versions: WLAN module affected versions not specified Description: The implementation of the WLAN module interfaces contains an issue that may lead to information disclosure. If exploited, this could impact data confidentiality. Recommendations: At the...

7.5CVSS7.3AI score0.00441EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.9 views

PT-2022-6522 · Unknown · Wlan Module

Name of the Vulnerable Software and Affected Versions: WLAN module affected versions not specified Description: The issue is related to a vulnerability in permission verification within the WLAN module. This vulnerability can be exploited by third-party apps to affect WLAN functions. The problem ...

10CVSS9.2AI score0.00566EPSS
Exploits0References6
OSV
OSV
added 2022/08/10 8:16 p.m.4 views

CVE-2022-37003

The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files...

9.8CVSS5.8AI score0.00422EPSS
Exploits0References2
OSV
OSV
added 2022/07/14 3:15 p.m.3 views

ALPINE-CVE-2022-32215

The llhttp parser v14.20.1, v16.17.1 and v18.9.1 in the http module in Node.js does not correctly handle multi-line Transfer-Encoding headers. This can lead to HTTP Request Smuggling HRS...

6.5CVSS7AI score0.68796EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/07/12 2:15 p.m.2 views

CVE-2022-34742

The system module has a read/write vulnerability. Successful exploitation of this vulnerability may affect data confidentiality...

7.5CVSS5.9AI score0.00798EPSS
Exploits0References4Affected Software3
OpenVAS
OpenVAS
added 2022/07/05 12:0 a.m.13 views

SUSE: Security Advisory (SUSE-SU-2022:2249-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS8.5AI score0.07017EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.4 views

TOTOLINK EX1200T 操作系统命令注入漏洞

TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.A command injection vulnerability exists in TOTOLINK EX1200T V4.1.2cu.5215, which originates from the file lib/cstemodules/system in the setNoticeCfg function in the file lib/cstemodules/system fails to properly...

10CVSS5.9AI score0.06755EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/05/20 10:53 p.m.23 views

CVE-2019-12816

Modules.cpp in ZNC before 1.7.4-rc1 allows remote authenticated non-admin users to escalate privileges and execute arbitrary code by loading a module with a crafted name...

8.8CVSS6AI score0.04127EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/05/20 10:45 p.m.26 views

CVE-2017-16114

The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds...

7.5CVSS4.3AI score0.01758EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/05/05 12:0 a.m.6 views

HUAWEI HarmonyOS 资源管理错误漏洞

HUAWEI HarmonyOS is an operating system from the Chinese company Huawei HUAWEI. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in the HUAWEI HarmonyOS kernel that stems from a use-after-release vulnerability in a kernel module, whi...

9.1CVSS8.1AI score0.0063EPSS
Exploits0References4
Prion
Prion
added 2022/04/11 8:15 p.m.19 views

Input validation

The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability...

5CVSS7.6AI score0.00292EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/02/22 12:0 a.m.9 views

The vulnerability of the NetUSB.ko module of TP-Link AC1750 Archer C7 router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the NetUSB.ko module of TP-Link AC1750 Archer C7 router’s microprogramming software is related to writing data outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.8CVSS8.2AI score0.00739EPSS
Exploits0References7Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.8 views

Mageia: Security Advisory (MGASA-2016-0245)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.6 views

The vulnerability of the URI module in the Ansible configuration management system arises from a lack of mechanisms for encoding or shielding output data, allowing attackers to access confidential information.

The vulnerability of the Ansible configuration system’s module module relates to the lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability can allow attackers to access confidential data...

5.5CVSS6.8AI score0.00568EPSS
Exploits1References10Affected Software4
Cvelist
Cvelist
added 2022/01/07 10:39 p.m.27 views

CVE-2021-40002

The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end...

9.1AI score0.00384EPSS
Exploits0References1
NVD
NVD
added 2022/01/03 10:15 p.m.23 views

CVE-2021-37112

Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak...

5.3CVSS0.00483EPSS
Exploits0References1
Rows per page
Query Builder