Lucene search
K

281 matches found

Cvelist
Cvelist
added 2020/10/06 12:0 a.m.32 views

CVE-2020-25637

A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the read-write socket with...

6.7AI score0.00529EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2020/10/06 12:0 a.m.60 views

CVE-2020-25637

A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of a running QEMU domain. This flaw affects the polkit access control driver. Specifically, clients connecting to the read-write socket with...

7.2CVSS6.9AI score0.00529EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2020/07/20 12:0 a.m.43 views

Oracle VirtualBox PCnet Out-Of-Bounds Access Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the handlin...

7.5CVSS3.2AI score0.00547EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/07/20 12:0 a.m.42 views

Oracle VirtualBox PCnet Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the handlin...

7.5CVSS3.3AI score0.00416EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/07/20 12:0 a.m.42 views

Oracle VirtualBox PCnet Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the handlin...

7.5CVSS3.3AI score0.00411EPSS
Exploits0References1
OSV
OSV
added 2020/06/24 5:15 a.m.4 views

CVE-2020-10271

MiR100, MiR200 and other MiR robots use the Robot Operating System ROS default packages exposing the computational graph to all network interfaces, wireless and wired. This is the result of a bad set up and can be mitigated by appropriately configuring ROS and/or applying custom patches as...

9.8CVSS7.3AI score0.01768EPSS
Exploits1References1
NVD
NVD
added 2020/06/24 5:15 a.m.39 views

CVE-2020-10271

MiR100, MiR200 and other MiR robots use the Robot Operating System ROS default packages exposing the computational graph to all network interfaces, wireless and wired. This is the result of a bad set up and can be mitigated by appropriately configuring ROS and/or applying custom patches as...

10CVSS0.01768EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/06/24 4:40 a.m.45 views

CVE-2020-10271 RVD#2555: MiR ROS computational graph is exposed to all network interfaces, including poorly secured wireless networks and open wired ones

MiR100, MiR200 and other MiR robots use the Robot Operating System ROS default packages exposing the computational graph to all network interfaces, wireless and wired. This is the result of a bad set up and can be mitigated by appropriately configuring ROS and/or applying custom patches as...

10CVSS9.6AI score0.01768EPSS
Exploits1References1
Fedora
Fedora
added 2020/06/14 5:11 p.m.36 views

[SECURITY] Fedora 31 Update: NetworkManager-1.20.12-1.fc31

NetworkManager is a system service that manages network interfaces and connections based on user or automatic configuration. It supports Ethernet, Bridge, Bond, VLAN, Team, InfiniBand, Wi-Fi, mobile broadband WWAN, PPPoE and other devices, and supports a variety of different VPN services...

4.3CVSS2.8AI score0.00983EPSS
Exploits0
Fedora
Fedora
added 2020/06/01 1:26 a.m.29 views

[SECURITY] Fedora 32 Update: NetworkManager-1.22.14-1.fc32

NetworkManager is a system service that manages network interfaces and connections based on user or automatic configuration. It supports Ethernet, Bridge, Bond, VLAN, Team, InfiniBand, Wi-Fi, mobile broadband WWAN, PPPoE and other devices, and supports a variety of different VPN services...

4.3CVSS2.8AI score0.00983EPSS
Exploits0
CNVD
CNVD
added 2020/05/11 12:0 a.m.7 views

iproute2 resource management error vulnerability

iproute2 is a utility program for controlling and monitoring routes, network interfaces, tunnels, etc. in the Linux kernel. A resource management error vulnerability exists in the 'getnetnsidfromname' function of the ip/ipnetns.c file in iproute2 versions prior to 5.1.0. The vulnerability arises...

4.4CVSS6.6AI score0.00403EPSS
Exploits0References1
OSV
OSV
added 2020/04/01 6:15 p.m.4 views

CVE-2020-10866

An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service AvastSvc.exe allows attackers to enumerate the network interfaces and access points from a Low Integrity process via RPC...

7.5CVSS7.1AI score0.01171EPSS
Exploits1References3
Prion
Prion
added 2020/04/01 6:15 p.m.12 views

Design/Logic Flaw

An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service AvastSvc.exe allows attackers to enumerate the network interfaces and access points from a Low Integrity process via RPC...

5CVSS7.6AI score0.01171EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/04/01 5:4 p.m.23 views

CVE-2020-10866

An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service AvastSvc.exe allows attackers to enumerate the network interfaces and access points from a Low Integrity process via RPC...

7.6AI score0.01171EPSS
Exploits1References3
CVE
CVE
added 2020/04/01 5:4 p.m.47 views

CVE-2020-10866

CVE-2020-10866 affects Avast Antivirus before version 20. The vulnerability stems from the aswTask RPC endpoint in the TaskEx library used by AvastSvc.exe, which allows a Low Integrity process to enumerate network interfaces and access points via RPC. This exposes potential exposure of network to...

7.5CVSS7.5AI score0.01171EPSS
Exploits1References3Affected Software1
Citrix
Citrix
added 2020/01/07 12:0 a.m.9 views

Refresh of WEM agent in admin console fails with error "Some of the requested actions may not have been executed properly"

When attempting to refresh the agents in any way or otherwise perform actions against an agent in the Administration node of the WEM Admin Console, the following message is seen in the bottom right corner: "Some of the requested actions may not have been executed properly." The WEM Agents being...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2019/12/10 8:48 p.m.62 views

CVE-2019-19377

A flaw was found in the Linux kernel's implementation of the BTRFS file system. A local attacker, with the ability to mount a file system, can create a use-after-free memory fault after the file system has been unmounted. This may lead to memory corruption or privilege escalation. Mitigation As t...

7.8CVSS0.5AI score0.034EPSS
Exploits1References3
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/12/03 1:20 p.m.166 views

Commands and Tools for Embedded Reverse Engineering

We’ve been training a lot of people to look at embedded systems. The training is intensive, and it can be hard to remember all the commands and tools used. This is just a quick rundown of those tools with enough information to jog your memory! Basic Commands If we want to see the content of a fil...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.27 views

Siemens Ec Unspecified Vulnerability

A vulnerability has been identified in IEC 61850 system configurator All versions V5.80, DIGSI 5 affected as IEC 61850 system configurator is incorporated All versions V7.80, DIGSI 4 All versions V4.93, SICAM PAS/PQS All versions V8.11, SICAM PQ Analyzer All versions V3.11, SICAM SCC All versions...

9.3CVSS2.5AI score0.01841EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/10/24 12:0 a.m.5 views

The vulnerability of the PAM module of Cisco Firepower Threat Defense’s microprogramming network interfaces, as well as the Cisco Firepower Management Center’s network management software and the Cisco FX-OS operating system, allows a perpetrator to trigger a service failure.

The vulnerability of the PAM module of Cisco Firepower Threat Defense’s microprogramming network interfaces, as well as the Cisco Firepower Management Center’s network management software and the Cisco FX-OS operating system, involves an uncontrolled consumption of resources. Exploiting this...

7.7CVSS5.5AI score0.01879EPSS
Exploits0References2Affected Software3
Rows per page
Query Builder