Lucene search
K

48 matches found

NCSC
NCSC
added 2021/01/12 12:0 a.m.4 views

Vulnerability fixed in Microsoft SQL server

There is a vulnerability in Microsoft SQL Server. A authenticated malicious party can send data over a network to an affected SQL Server when it is configured to running an Extended Event session. SQL Server: |----------------|------|-------------------------------------| | CVE ID | CVSS | Impact...

8.8CVSS6.8AI score0.06153EPSS
Exploits0
Debian CVE
Debian CVE
added 2020/10/27 7:39 p.m.34 views

CVE-2019-8675

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code...

8.8CVSS6.1AI score0.02031EPSS
Exploits0
OSV
OSV
added 2020/09/10 3:16 p.m.6 views

CVE-2020-8758

Improper buffer restrictions in network subsystem in provisioned IntelR AMT and IntelR ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authenticat...

9.8CVSS6AI score0.01686EPSS
Exploits0References2
OSV
OSV
added 2020/08/07 10:15 p.m.4 views

CVE-2020-15058

Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic...

8.8CVSS7.3AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/03/31 1:57 p.m.30 views

CVE-2019-9162

It was found that there are insufficient ASN.1 sequence length checks a.k.a. an array index error in the Linux kernel in the snmpversion and snmphelper functions in the net/ipv4/netfilter/nfnatsnmpbasicmain.c in the nfnatsnmpbasic module making out-of-bounds read and write operations possible. An...

7.8CVSS3.7AI score0.01092EPSS
Exploits2References4
Node.js
Node.js
added 2016/12/01 4:15 p.m.33 views

Downloads Resources over HTTP

Overview Affected versions of apk-parser2 insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution ...

9.3CVSS5.7AI score0.01752EPSS
Exploits0Affected Software1
NVD
NVD
added 2012/03/17 10:55 a.m.11 views

CVE-2012-0326

The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted application...

5CVSS6.6AI score0.01563EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2008/08/13 2:19 p.m.7 views

Java-API calls in untrusted Javascript allow network privilege escalation

Unspecified vulnerability in Sun JDK and Java Runtime Environment JRE 6 Update 4 and earlier and 5.0 Update 14 and earlier; and SDK and JRE 1.4.216 and earlier; allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java AP...

9.3CVSS7.5AI score0.05684EPSS
Exploits0References4
Rows per page
Query Builder