Lucene search
K

199 matches found

UbuntuCve
UbuntuCve
added 2024/04/17 10:15 a.m.17 views

CVE-2024-26818

In the Linux kernel, the following vulnerability has been resolved: tools/rtla: Fix clang warning about mountpoint var size clang is reporting this warning: $ make HOSTCC=clang CC=clang LLVMIAS=1 ... clang -O -g -DVERSION="6.8.0-rc3" -flto=auto -fexceptions -fstack-protector-strong...

5.5CVSS6.5AI score0.00225EPSS
Exploits0References10
OSV
OSV
added 2024/04/17 9:43 a.m.5 views

CVE-2024-26818 tools/rtla: Fix clang warning about mount_point var size

In the Linux kernel, the following vulnerability has been resolved: tools/rtla: Fix clang warning about mountpoint var size clang is reporting this warning: $ make HOSTCC=clang CC=clang LLVMIAS=1 ... clang -O -g -DVERSION="6.8.0-rc3" -flto=auto -fexceptions -fstack-protector-strong...

5.5CVSS5.6AI score0.00225EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/04/17 9:43 a.m.32 views

CVE-2024-26818 tools/rtla: Fix clang warning about mount_point var size

In the Linux kernel, the following vulnerability has been resolved: tools/rtla: Fix clang warning about mountpoint var size clang is reporting this warning: $ make HOSTCC=clang CC=clang LLVMIAS=1 ... clang -O -g -DVERSION="6.8.0-rc3" -flto=auto -fexceptions -fstack-protector-strong...

6.8AI score0.00225EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 7:15 a.m.7 views

AZL-56819 CVE-2023-52596 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: sysctl: Fix out of bounds access for empty sysctl registers When registering tables to the sysctl subsystem there is a check to see if header is a permanently empty directory used for mounts. This check evaluates the first elemen...

5.5CVSS5.8AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 7:15 a.m.1 views

DEBIAN-CVE-2023-52596

In the Linux kernel, the following vulnerability has been resolved: sysctl: Fix out of bounds access for empty sysctl registers When registering tables to the sysctl subsystem there is a check to see if header is a permanently empty directory used for mounts. This check evaluates the first elemen...

5.5CVSS5.4AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 7:15 a.m.1 views

UBUNTU-CVE-2023-52596

In the Linux kernel, the following vulnerability has been resolved: sysctl: Fix out of bounds access for empty sysctl registers When registering tables to the sysctl subsystem there is a check to see if header is a permanently empty directory used for mounts. This check evaluates the first elemen...

5.5CVSS6.6AI score0.00228EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.4 views

PT-2024-15116 · Unknown · Is Mount Point

Name of the Vulnerable Software and Affected Versions: is mount point affected versions not specified Description: The issue concerns a possible buffer overflow in the is mount point function. Recommendations: At the moment, there is no information about a newer version that contains a fix for th...

9.8CVSS7.8AI score0.00438EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/02/12 12:0 a.m.11 views

PT-2024-7734 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel version 6.8.0-rc3 Description: The issue is related to a potential buffer overflow in the fscanf function, which may occur when the mount point variable is used. The warning is reported by clang, indicating that the destination...

7.8CVSS7.1AI score0.01287EPSS
Exploits1References318
NVD
NVD
added 2024/02/06 8:15 a.m.27 views

CVE-2023-32474

Dell Display Manager application, version 2.1.1.17 and prior, contain an insecure operation on windows junction/mount point. A local malicious user could potentially exploit this vulnerability during installation leading to arbitrary folder or file deletion...

6.6CVSS6.4AI score0.00191EPSS
Exploits0References1
NVD
NVD
added 2024/02/06 8:15 a.m.25 views

CVE-2023-32454

DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service...

7.1CVSS6.4AI score0.00168EPSS
Exploits0References1
Prion
Prion
added 2024/02/06 8:15 a.m.22 views

Arbitrary file deletion

Dell Display Manager application, version 2.1.1.17 and prior, contain an insecure operation on windows junction/mount point. A local malicious user could potentially exploit this vulnerability during installation leading to arbitrary folder or file deletion...

3CVSS7.3AI score0.00191EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/06 8:0 a.m.20 views

CVE-2023-32454

DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service...

6.3CVSS6.8AI score0.00168EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/06 8:0 a.m.28 views

CVE-2023-32454

DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service...

6.3CVSS7AI score0.00168EPSS
Exploits0References1
CVE
CVE
added 2024/02/06 8:0 a.m.48 views

CVE-2023-32454

Dell DUP Framework ≤ 4.9.4.36 is affected by an insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit this to create arbitrary files, potentially causing denial of service. Affected product: Dell Update Package Framework. Root cause: insec...

7.1CVSS6.8AI score0.00168EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/06 7:53 a.m.16 views

CVE-2023-32474

Dell Display Manager application, version 2.1.1.17 and prior, contain an insecure operation on windows junction/mount point. A local malicious user could potentially exploit this vulnerability during installation leading to arbitrary folder or file deletion...

6.6CVSS6.9AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 2024/02/06 7:53 a.m.51 views

CVE-2023-32474

Dell Display Manager (Windows) versions 2.1.1.17 and earlier are affected by an insecure operation on Windows junction/mount points that an attacker can exploit during installation, allowing arbitrary folder or file deletion. This is a local, low-privilege, high-impact issue (prone to file/system...

6.6CVSS6.4AI score0.00191EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/01/31 10:15 p.m.7 views

AZL-35010 CVE-2024-23652 affecting package moby-engine for versions less than 25.0.3-1

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the...

9.1CVSS6.6AI score0.02038EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/01/10 12:0 a.m.27 views

Trend Micro Apex One Virus Scan Engine Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7.8CVSS7.5AI score0.00311EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/11/10 12:0 a.m.5 views

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update software relates to a insecure operation at the mount point in the Windows operating system. This allows an attacker to delete arbitrary files.

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update programs is related to a unsafe operation at the mount point in the Windows operating system. Exploiting this vulnerability could allow an attacker to delete arbitrary files...

7.1CVSS7.2AI score0.00176EPSS
Exploits0References2Affected Software3
OSV
OSV
added 2023/10/28 12:30 a.m.14 views

GHSA-47XW-VW6M-W9FQ HashiCorp Vagrant Insecure Operation on Windows Junction / Mount Point vulnerability

HashiCorp Vagrant's Windows installer targeted a custom location with a non-protected path that could be junctioned, introducing potential for unauthorized file system writes. Fixed in Vagrant 2.4.0...

3.8CVSS5.5AI score0.00223EPSS
Exploits0References3
Rows per page
Query Builder