PT-2026-46138

OpenStack Ironic before 35.0.2 allows a malicious authenticated project admin or manager to read local files on the Ironic conductor via a pxe template...

Cisco IOS XR Data Forgery Issue Vulnerability

Cisco IOS XR is an operating system developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR, which originates from a security hole in the iPXE boot feature that can be exploited by an authenticated attacker to install an unauthenticated software image on an...

CVE-2020-3284 Cisco IOS XR Software Enhanced Preboot eXecution Environment Unsigned Code Execution Vulnerability

A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...

Cisco IOS XR -bit Preboot eXecution Environment Access Control Error Vulnerability

Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. A security vulnerability exists in the Cisco IOS XR 64-bit Preboot eXecution Environment, which can be exploited by an attacker to bypass restrictions via the Cisco IOS XR 64-bit...

Update for Windows Server 2008 SP2: August 16, 2019

Update for Windows Server 2008 SP2: August 16, 2019 Summary This non-security update for Windows Server 2008 SP2 includes the quality improvements from KB4512491 released August 16, 2019, in addition to these key changes: Addresses an issue in which the following may stop responding and you may...

August 17, 2019—KB4512499 (Preview of Monthly Rollup)

August 17, 2019—KB4512499 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4512476 released August 13, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses an...

August 13, 2019—KB4512489 (Security-only update)

August 13, 2019—KB4512489 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Security updates to Windows App Platform and Frameworks, Windows Input and Composition, Windows Wireless Networking, Windows Virtualization, Windows...

May 19, 2019—KB4505056 (OS Build 17763.504)

May 19, 2019—KB4505056 OS Build 17763.504 Improvements and fixes This update includes quality improvements. Key changes include: Addresses an issue that may prevent access to some gov.uk websites that don’t support HTTP Strict Transport Security HSTS when using Internet Explorer 11 or Microsoft...

June 11, 2019—KB4503293 (OS Build 18362.175)

June 11, 2019—KB4503293 OS Build 18362.175 Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard. Notes: This release also contains updates for Microsoft HoloLens OS Build 18362.1020 released June 11, 2019. Microsoft will release an update...

June 11, 2019—KB4503285 (Monthly Rollup)

June 11, 2019—KB4503285 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4499145 released May 23, 2019 and addresses the following issues: Addresses a security vulnerability by intentionally preventing connections between...

June 11, 2019—KB4503290 (Security-only update)

June 11, 2019—KB4503290 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Addresses an issue that may prevent the Preboot Execution Environment PXE from starting a device from a Windows Deployment Services WDS server configured to...

May 14, 2019—KB4499151 (Monthly Rollup)

May 14, 2019—KB4499151 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4493443 released April 25, 2019 and addresses the following issues: Provides protections against a new subclass of speculative execution side-channel...

April 9, 2019—KB4493450 (Security-only update)

April 9, 2019—KB4493450 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Addresses an issue that may cause applications that use MSXML6 to stop responding if an exception was thrown during node operations. Addresses an issue that...

April 9, 2019—KB4493467 (Security-only update)

April 9, 2019—KB4493467 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Provides protections against Spectre Variant 2 CVE-2017-5715 and Meltdown CVE-2017-5754 for VIA-based computers. These protections are enabled by default fo...

March 12, 2019—KB4489881 (Monthly Rollup)

March 12, 2019—KB4489881 Monthly Rollup Applications that do not have a manifest that indicates the correct Windows version of 6.3 may receive the scripting error, “Intl is not available”. Ensure that the applications have a manifest with the appropriate Windows version. For more information, see...

PXE client computers freeze during multithread network transfers in Windows Server 2012 R2

PXE client computers freeze during multithread network transfers in Windows Server 2012 R2 Symptoms When you deploy Windows Server 2012 R2 through Windows Deployment Services WDS Pre-Boot Execution Environment PXE, the server CPU usage spikes to 100%. In this situation, client computers may freez...

Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK

Overview Products that use the Preboot Execution Environment PXE SDK sample code provided by Intel contain multiple vulnerabilities. Products that use the PXE SDK sample code provided by Intel contain directory traversal and buffer overflow vulnerabilities. Nobuyuki Kanaya of Fujitsu Laboratories...

CVE-2002-0835

The CVE-2002-0835 issue affects the PXE (Preboot eXecution Environment) server component used on Linux-like systems (e.g., Red Hat Advanced Server) and SCO OpenLinux. Description across connected sources states that the PXE server can be crashed, causing a denial of service, when processing certa...

CVE-2002-0835

Preboot eXecution Environment PXE server allows remote attackers to cause a denial of service crash via certain DHCP packets from Voice-Over-IP VOIP phones...