Lucene search
+L

65 matches found

CNNVD
CNNVD
added 2023/07/06 12:0 a.m.8 views

Google Android OS 安全漏洞

Google Android is a Linux-based open source operating system from Google. An elevation of privilege vulnerability exists in Google Android Framework, which can be exploited by attackers to cause an elevation of privilege...

7.8CVSS6.9AI score0.0009EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/04/11 12:0 a.m.8 views

Microsoft Windows Win32K 安全漏洞

Microsoft Windows Win32k is a system file for Windows multi-user administration from Microsoft USA. A security vulnerability exists in Microsoft Windows Win32K. The following products and versions are affected:Windows 11 version 21H2 for ARM64-based Systems,Windows 10 Version 21H2 for 32-bit...

7.8CVSS7.7AI score0.06827EPSS
Exploits0References3
OSV
OSV
added 2023/04/06 3:54 p.m.51 views

RXSA-2023:0951 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 kernel: use-after-free in...

7.8CVSS7.4AI score0.06346EPSS
Exploits5References6
0day.today
0day.today
added 2023/03/16 12:0 a.m.991 views

Microsoft SQL Server 2014 / 2016 / 2017 / 2019 / 2022 Audit Logging Failure Vulnerability

Microsoft SQL Server 2014, 2016, 2017, 2019, and 2022 appears to ignore audit rules for sys.sysxlgns allowing an attacker with administrative permissions to extract password hashes under the radar. Microsoft told the researcher they are not willing to fix it but acknowledge it as a security...

8.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/03/16 12:0 a.m.404 views

Microsoft SQL Server 2014 / 2016 / 2017 / 2019 / 2022 Audit Logging Failure

Title: Microsoft SQL Server Password Hash Exposure Product: Database Manufacturer: Microsoft Affected Versions: 2012-2022 Risk Level: Medium CVE Reference: N/A Author of Advisory: Emad Al-Mousa Overview: SQL Server is a popular database system, and database systems are a vital backbone in IT...

7.4AI score
Exploits0
CVE
CVE
added 2023/02/28 4:36 p.m.60 views

CVE-2023-22756

CVE-2023-22756 corresponds to buffer overflow vulnerabilities in ArubaOS processes that allow unauthenticated remote code execution when specially crafted packets are sent via the PAPI protocol. Affected product family: ArubaOS (Aruba Mobility Controllers/ gateways). Root cause described as buffe...

9.8CVSS9.6AI score0.01073EPSS
Exploits0References1Affected Software2
RedHat Linux
RedHat Linux
added 2022/05/11 4:44 p.m.58 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...

7.8CVSS6.9AI score0.05528EPSS
Exploits12References3
CNVD
CNVD
added 2021/11/05 12:0 a.m.5 views

Huawei Emui and Magic UI Configuration Flaw Vulnerability

Huawei Emui is a mobile operating system developed based on Android.Magic Ui is a mobile operating system developed based on Android. Huawei Emui and Magic UI have security vulnerabilities that can be exploited by attackers to compromise service confidentiality...

5.3CVSS7.1AI score0.00574EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2021/07/13 12:0 a.m.41 views

July 13, 2021 Public preview security update (KB5004243)

None None...

9CVSS6.8AI score0.13794EPSS
Exploits0
NVD
NVD
added 2021/07/08 8:15 a.m.21 views

CVE-2021-28809

An improper access control vulnerability has been reported to affect certain legacy versions of HBS 3. If exploited, this vulnerability allows attackers to compromise the security of the operating system.QNAP have already fixed this vulnerability in the following versions of HBS 3: QTS 4.3.6: HBS...

10CVSS0.15802EPSS
Exploits0References2
CVE
CVE
added 2020/10/27 7:54 p.m.105 views

CVE-2019-8832

CVE-2019-8832 is a memory corruption vulnerability in Apple platforms. The issue could allow an application to execute arbitrary code with system privileges. It affects multiple Apple operating systems, with fixes in iOS 13.3, iPadOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 20...

9.3CVSS7.6AI score0.013EPSS
Exploits0References4Affected Software5
RedHat Linux
RedHat Linux
added 2020/09/29 8:16 p.m.5 views

webkitgtk: Multiple memory corruption issues leading to arbitrary code execution

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS6.9AI score0.01558EPSS
Exploits0References5
OSV
OSV
added 2020/06/09 5:15 p.m.2 views

CVE-2020-9821

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to execute arbitrary code with kernel privileges...

7.8CVSS7.3AI score0.01316EPSS
Exploits0References4
Microsoft Secure
Microsoft Secure
added 2019/10/21 3:0 p.m.54 views

Microsoft and partners design new device security requirements to protect against targeted firmware attacks

Recent developments in security research and real-world attacks demonstrate that as more protections are proactively built into the OS and in connected services, attackers are looking for other avenues of exploitation with firmware emerging as a top target. In the last three years alone, NIST’s...

7.1AI score
Exploits0
OSV
OSV
added 2019/01/11 6:29 p.m.3 views

CVE-2018-4257

In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved size validation...

9.8CVSS6.1AI score0.01288EPSS
Exploits0References1
android
android
added 2017/03/01 12:0 a.m.37 views

CVE-2017-0335

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01703EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2015/10/08 11:37 a.m.13 views

Amazon Web Services Inspector Application Security Scanner

Amazon answered many security and compliance prayers yesterday with the release of its Inspector tool. Inspector scans applications launched in Amazon Web Services instances, looking for issues on two fronts: compliance with certain regulations such as the Payment Card Industry Data Security...

0.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2013/07/16 12:0 a.m.45 views

Fedora Update for kernel FEDORA-2013-12530

Check for the Version of kernel OpenVAS Vulnerability Test Fedora Update for kernel FEDORA-2013-12530 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

7.9CVSS1.5AI score0.07313EPSS
Exploits30References2
ThreatPost
ThreatPost
added 2011/08/04 6:37 p.m.10 views

New Analysis Finds Java is the Weakest Link in the Security Chain

Exploit kits come and go, but the exploits they utilize remain the same, according to Securelist’s mid-year analysis of exploit kits and attack vectors. In 2010, the top five exploit kits, ordered by prevalence, were the Phoenix, Eleanor, NeoSploit, YESExploitKit, and SEOSPloitPack exploit kits...

0.6AI score
Exploits0References1
ThreatPost
ThreatPost
added 2010/10/14 2:44 p.m.8 views

Manufacturers, Carriers Look to Defend Devices Against Attackers and Users

As mobile phones have gradually morphed into complete computing devices in the last few years with the advent of the iPhone and Android-based phones, mobile phone manufacturers and wireless carriers have been working to create new protection mechanisms to stop attacks against the increasingly...

0.1AI score
Exploits0References2
Rows per page
Query Builder