404 matches found
The vulnerability of the BIOS microprogramming software in Dell PowerEdge servers allows a hacker to disclose protected information.
The vulnerability of the BIOS microprogramming software in Dell PowerEdge servers is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to disclose protected information...
CVE-2024-44984 bnxt_en: Fix double DMA unmapping for XDP_REDIRECT
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix double DMA unmapping for XDPREDIRECT Remove the dmaunmappageattrs call in the driver's XDPREDIRECT code path. This should have been removed when we let the page pool handle the DMA mapping. This bug causes the warning...
CVE-2024-38304
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38304
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38303
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38303
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38304
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38304
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38304
CVE-2024-38304 affects Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x. The vulnerability is an Access of Memory Location After End of Buffer, caused by writing beyond the end of a buffer in memory, which could enable a low-privilege attacker with local access to cause informatio...
CVE-2024-38303
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38303
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-38303
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, contains an Improper Input Validation vulnerability that could allow a high-privilege local attacker to cause information disclosure. Affected component is the BIOS/input handling within Dell PowerEdge BIOS prior to 2.22.x. The roo...
Dell PowerEdge Platform 输入验证错误漏洞
Dell PowerEdge Platform is a server platform from Dell USA. An input validation error vulnerability exists in Dell PowerEdge Platform version 2.22.x and prior versions, which stems from the inclusion of an incorrect input validation vulnerability...
Dell PowerEdge Platform 安全漏洞
Dell PowerEdge Platform is a server platform from Dell USA. A security vulnerability exists in Dell PowerEdge Platform that originates from a contained end-of-buffer access to memory location vulnerability, which could be exploited by a low-privileged attacker with local access rights to cause an...
Dell iDRAC Service Module Out-of-Bounds Write Vulnerability (CNVD-2024-34493)
The Dell iDRAC Service Module is a lightweight software module from Dell USA designed to run on Dell PowerEdge servers to enhance the functionality of iDRAC Integrated Dell Remote Access Controller. An out-of-bounds write vulnerability exists in Dell iDRAC Service Module 5.3.0.0 and earlier...
Dell iDRAC Service Module 缓冲区错误漏洞
The Dell iDRAC Service Module is a lightweight software module from Dell USA designed to run on Dell PowerEdge servers to enhance the functionality of iDRAC Integrated Dell Remote Access Controller. An out-of-bounds write vulnerability exists in Dell iDRAC Service Module 5.3.0.0 and earlier...
CVE-2024-41027
In the Linux kernel, the following vulnerability has been resolved: Fix userfaultfdapi to return EINVAL as expected Currently if we request a feature that is not set in the Kernel config we fail silently and return all the available features. However, the man page indicates we should return an...
CVE-2024-41027
CVE-2024-41027 affects the Linux kernel userfaultfd API. The issue arises when a feature not enabled in kernel config is requested: instead of returning an error, the kernel silently lists all features, potentially triggering a warning (as seen in zap_pte_range mortgage path). The fix is to have ...
CVE-2024-41027 Fix userfaultfd_api to return EINVAL as expected
In the Linux kernel, the following vulnerability has been resolved: Fix userfaultfdapi to return EINVAL as expected Currently if we request a feature that is not set in the Kernel config we fail silently and return all the available features. However, the man page indicates we should return an...
CVE-2024-40980
In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...