Lucene search
K

314 matches found

Ubuntu
Ubuntu
added 2023/02/14 9:21 a.m.66 views

LSN-0091-1: Kernel Live Patch Security Notice

It was discovered that a race condition existed in the memory address space accounting implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2022-41222 Sönke...

8.8CVSS6.8AI score0.0123EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2023/02/09 12:0 a.m.61 views

Ubuntu 18.04 LTS : Linux kernel (Qualcomm Snapdragon) vulnerabilities (USN-5862-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5862-1 advisory. It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 V4L2 implementation in the Linux kernel. A local attacker...

7CVSS7.6AI score0.04947EPSS
Exploits1References12
Ubuntu
Ubuntu
added 2023/01/13 7:11 p.m.91 views

USN-5804-2: Linux kernel vulnerabilities

It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-43945 Tamás Koczka discovered that th...

8.8CVSS7.7AI score0.21314EPSS
Exploits0
NVD
NVD
added 2022/11/18 11:15 p.m.41 views

CVE-2022-45163

An information-disclosure vulnerability exists on select NXP devices when configured in Serial Download Protocol SDP mode: i.MX RT 1010, i.MX RT 1015, i.MX RT 1020, i.MX RT 1050, i.MX RT 1060, i.MX 6 Family, i.MX 7Dual/Solo, i.MX 7ULP, i.MX 8M Quad, i.MX 8M Mini, and Vybrid. In a device...

5.3CVSS0.00572EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2022/11/16 11:0 a.m.58 views

LSN-0090-1: Kernel Live Patch Security Notice

David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2022-1015 David Bouman and Billy Jheng Bing Jhong discovered that a...

8.1CVSS6.9AI score0.03763EPSS
Exploits16
Prion
Prion
added 2022/11/06 11:15 p.m.27 views

Buffer overflow

A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon...

4.3CVSS7.7AI score0.00347EPSS
Exploits0References7Affected Software3
OSV
OSV
added 2022/11/06 12:0 a.m.40 views

CVE-2022-40284

A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon...

7.8CVSS4AI score0.00347EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2022/10/31 12:0 a.m.52 views

CVE-2022-40284

A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon...

7.8CVSS7.1AI score0.00347EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/10/30 1:15 a.m.41 views

CVE-2022-44032

An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open, aka a race condition between cmmopen and cm4000detach...

6.4CVSS6.9AI score0.00323EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/09/30 12:0 a.m.43 views

CVE-2022-41848

drivers/char/pcmcia/synclinkcs.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling ioctl, aka a race condition between mgslpcioctl and mgslpcdetach...

4.2CVSS6.7AI score0.0025EPSS
Exploits0References2
Prion
Prion
added 2022/06/15 5:15 p.m.16 views

Default credentials

A lack of password masking in Devolutions Remote Desktop Manager allows physically proximate attackers to observe sensitive data. A caching issue can cause sensitive fields to sometimes stay revealed when closing and reopening a panel, which could lead to involuntarily disclosing sensitive...

2.1CVSS5AI score0.00378EPSS
Exploits0References1Affected Software1
Ubuntu
Ubuntu
added 2022/05/12 12:3 a.m.108 views

USN-5413-1: Linux kernel vulnerabilities

Jeremy Cline discovered a use-after-free in the nouveau graphics driver of the Linux kernel during device removal. A privileged or physically proximate attacker could use this to cause a denial of service system crash. CVE-2020-27820 It was discovered that a race condition existed in the network...

8.8CVSS6.8AI score0.021EPSS
Exploits1
Ubuntu
Ubuntu
added 2022/04/26 12:59 p.m.185 views

USN-5390-1: Linux kernel vulnerabilities

David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2022-1015 David Bouman discovered that the netfilter subsystem in t...

7.8CVSS7.1AI score0.01467EPSS
Exploits11
NVD
NVD
added 2022/04/07 2:15 p.m.31 views

CVE-2022-25338

ownCloud owncloud/android before 2.20 has Incorrect Access Control for physically proximate attackers...

6.8CVSS0.00236EPSS
Exploits0References1
OSV
OSV
added 2022/04/07 2:1 p.m.27 views

CVE-2022-25338

ownCloud owncloud/android before 2.20 has Incorrect Access Control for physically proximate attackers...

6.8CVSS7AI score0.00236EPSS
Exploits0References3
Prion
Prion
added 2022/01/10 2:12 p.m.24 views

Information disclosure

Incorrect implementation of Knox Guard prior to SMR Jan-2022 Release 1 allows physically proximate attackers to temporary unlock the Knox Guard via Samsung DeX mode...

3.6CVSS6.3AI score0.00112EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/10/18 5:15 p.m.19 views

CVE-2021-42055

ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow attacks by a physically proximate attacker...

6.8CVSS0.00247EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/10/18 4:21 p.m.22 views

CVE-2021-42055

ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow attacks by a physically proximate attacker...

6.8AI score0.00247EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/10/18 12:0 a.m.6 views

ASUSTek ZenBook Pro Due 15 UX582 安全漏洞

ASUSTek ZenBook Pro Due 15 UX582 is a laptop computer from Asus Taiwan, China. The ASUSTek ZenBook Pro Due 15 UX582 suffers from a security vulnerability that stems from the ASUSTek ZenBook Pro Due 15 UX582 laptop firmware up to version 203 has insecure privileges that allow physically proximate...

6.8CVSS6.6AI score0.00247EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2021/06/23 3:45 a.m.217 views

USN-5001-1: Linux kernel (OEM) vulnerabilities

Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. CVE-2021-3609 Mathy Vanhoef discovered that the Linux kernel’s WiFi implementati...

8.8CVSS7.5AI score0.07604EPSS
Exploits9
Rows per page
Query Builder