Lucene search
K

9 matches found

NVD
NVD
added 2026/03/27 9:16 a.m.4 views

CVE-2026-27856

Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack. An attacker can use this to determine the configured credentials. Figuring out the credential will lead into full access to the affected component. Limit access to the doveadm http service port,...

7.4CVSS0.00392EPSS
Exploits1References5
CVE
CVE
added 2026/03/27 8:10 a.m.28 views

CVE-2026-27856

CVE-2026-27856 concerns the doveadm credential verification path, where direct comparison enables a timing oracle to determine configured credentials. The issue affects the doveadm HTTP service component used by Open-Xchange-related deployments, enabling an attacker to infer credentials through t...

7.4CVSS5.9AI score0.00392EPSS
Exploits1References5Affected Software2
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: ASoC: qcom: Fixed potential buffer overflows in sc7280 lpass. Values introduced in commit 5f78e1fb7a3e “ASoC: qcom: Added driver support for audioreach solution” caused out-of-bounds access to array data in the sc7280 driver...

7.8CVSS6.5AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/05/21 12:45 a.m.6 views

SUSE CVE-2025-37979

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix sc7280 lpass potential buffer overflow Case values introduced in commit 5f78e1fb7a3e "ASoC: qcom: Add driver support for audioreach solution" cause out of bounds access in arrays of sc7280 driver data e.g. in case...

5.5CVSS7.9AI score0.00173EPSS
Exploits0References16
OSV
OSV
added 2025/05/20 5:15 p.m.1 views

DEBIAN-CVE-2025-37979

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix sc7280 lpass potential buffer overflow Case values introduced in commit 5f78e1fb7a3e "ASoC: qcom: Add driver support for audioreach solution" cause out of bounds access in arrays of sc7280 driver data e.g. in case...

7.8CVSS6.1AI score0.00173EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/05/28 3:29 p.m.9 views

SUSE CVE-2021-47548

In the Linux kernel, the following vulnerability has been resolved: ethernet: hisilicon: hns: hnsdsafmisc: fix a possible array overflow in hnsdsafgesrstbyport The if statement: if port = DSAFGENUM return; limits the value of port less than DSAFGENUM i.e., 8. However, if the value of port is 6 or...

6.6CVSS6.4AI score0.01358EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2017/06/16 12:51 p.m.42 views

CVE-2017-7376

Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects...

10CVSS7.3AI score0.23694EPSS
Exploits0References1
Saint
Saint
added 2012/10/12 12:0 a.m.35 views

HP Diagnostics magentservice.exe Malformed Packet Parsing Vulnerability

Added: 10/12/2012 BID: 55159 OSVDB: 84855 Background HP Diagnostics software monitors application transaction health in traditional, virtualized and cloud environments. Problem HP Diagnostics Server has a buffer overflow vulnerability in the magentservice.exe process that could allow...

2.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/07/25 12:0 a.m.13 views

Panda AdminSecure Communications Agent Detection

The remote service is a Communications Agent, which manages communications between Panda AdminSecure and client computers for centralized management of Panda antivirus software. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if...

5.5AI score
Exploits0
Rows per page
Query Builder