Lucene search
K

112 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.42 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in libTIFF

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in libTIFF. Vulnerability Details CVEID: CVE-2018-18661 DESCRIPTION: LibTIFF is vulnerable to a denial of service, caused by a NULL pointer dereference in the LZWDecode function in tiflzw.c. By persuading ...

9.8CVSS1.6AI score0.25183EPSS
Exploits7Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.38 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in procps

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in procps. Vulnerability Details CVEID: CVE-2018-1126 DESCRIPTION: procps-ng procps is vulnerable to a buffer overflow, caused by improper bounds checking. By sending a specially-crafted request, a remote...

9.8CVSS1.7AI score0.09081EPSS
Exploits9Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.30 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerability GNU C Library (CVE-2018-16429)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2018-16429 DESCRIPTION: GNOME GLib is vulnerable to a denial of service, caused by an out-of-bounds read in gmarkupparsecontextparse in gmarkup.c. By...

7.5CVSS0.8AI score0.03532EPSS
Exploits1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.53 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in OpenSSL (CVE-2018-0732 CVE-2018-0737)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in OpenSSL. Vulnerability Details CVEID: CVE-2018-0732 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by the sending of a very large prime value to the client by a malicious server durin...

7.5CVSS1AI score0.49268EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.41 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerability GNU C Library (CVE-2018-11236)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerability in GNU C Library. Vulnerability Details CVEID: CVE-2018-11236 DESCRIPTION: GNU glibc is vulnerable to a stack-based buffer overflow, caused by improper bounds of checking by the pathname arguments in the...

9.8CVSS2.2AI score0.074EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.44 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerability in cURL (CVE-2018-14618)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerability in cURL. Vulnerability Details CVEID: CVE-2018-14618 DESCRIPTION: cURL libcurl is vulnerable to a buffer overflow, caused by an integer overflow flaw in the Curlntlmcoremknthash internal function in the NTLM...

10CVSS2.3AI score0.11115EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.50 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in GNU C Library (CVE-2017-15804 CVE-2017-15670 CVE-2015-5180)

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in GNU C Library. Vulnerability Details CVEID: CVE-2017-15804 DESCRIPTION: GNU C Library aka glibc or libc6 is vulnerable to a buffer overflow, caused by improper bounds checking by glob function in glob.c...

9.8CVSS1.4AI score0.0627EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:31 p.m.37 views

Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in cURL, DHCP and GNU C Library

Summary IBM Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities in cURL, DHCP and GNU C Library: Vulnerability Details CVEID: CVE-2017-1000100 DESCRIPTION: cURL could allow a remote attacker with complete network control to obtain sensitive information, caused by a TFT...

9.8CVSS1.2AI score0.72724EPSS
Exploits23Affected Software2
CNNVD
CNNVD
added 2023/09/13 12:0 a.m.13 views

Cisco IOS XR Data Forgery Issue Vulnerability

Cisco IOS XR is an operating system developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR, which originates from a security hole in the iPXE boot feature that can be exploited by an authenticated attacker to install an unauthenticated software image on an...

7.8CVSS6.7AI score0.00095EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.5 views

SUSE CVE-2013-3706

Directory traversal vulnerability in the PreBoot service in Novell ZENworks Configuration Management ZCM 11.2 allows remote attackers to read arbitrary files via a .. dot dot in a preboot update pathname, aka ZDI-CAN-1595...

5CVSS6.8AI score0.07615EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/02/07 12:0 a.m.6 views

CVE-2022-22566

Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access DMA vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device...

7.2CVSS7.5AI score0.00257EPSS
Exploits0References2
OSV
OSV
added 2021/06/14 7:15 p.m.3 views

CVE-2021-21556

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a stack-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Servic...

6.7CVSS6.3AI score0.00306EPSS
Exploits0References1
NVD
NVD
added 2021/06/14 7:15 p.m.20 views

CVE-2021-21555

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a heap-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Service...

7.2CVSS0.00314EPSS
Exploits0References1
NVD
NVD
added 2021/06/14 7:15 p.m.19 views

CVE-2021-21554

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and, Dell Precision 7920 Rack Workstation BIOS contain a stack-based buffer overflow vulnerability in systems with Intel Optane DC Persistent Memory installed. A local malicious user with high privileges may potentially exploi...

7.2CVSS0.00335EPSS
Exploits0References1
Prion
Prion
added 2021/06/14 7:15 p.m.16 views

Stack overflow

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a stack-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Servic...

7.2CVSS6.8AI score0.00306EPSS
Exploits0References1Affected Software9
Prion
Prion
added 2021/06/14 7:15 p.m.13 views

Stack overflow

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and, Dell Precision 7920 Rack Workstation BIOS contain a stack-based buffer overflow vulnerability in systems with Intel Optane DC Persistent Memory installed. A local malicious user with high privileges may potentially exploi...

7.2CVSS6.8AI score0.00335EPSS
Exploits0References1Affected Software8
BDU FSTEC
BDU FSTEC
added 2020/11/17 12:0 a.m.6 views

The vulnerability of the Preboot eXecution Environment (PXE) of the Cisco IOS XR operating system allows a hacker to execute arbitrary code.

The vulnerability of the Preboot eXecution Environment PXE of the Cisco IOS XR operating system is related to access control deficiencies. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS7.8AI score0.02767EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2020/11/06 6:16 p.m.8 views

CVE-2020-3284 Cisco IOS XR Software Enhanced Preboot eXecution Environment Unsigned Code Execution Vulnerability

A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...

8.1CVSS7.3AI score0.02767EPSS
Exploits0References1
CNVD
CNVD
added 2020/11/05 12:0 a.m.2 views

Cisco IOS XR -bit Preboot eXecution Environment Access Control Error Vulnerability

Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. A security vulnerability exists in the Cisco IOS XR 64-bit Preboot eXecution Environment, which can be exploited by an attacker to bypass restrictions via the Cisco IOS XR 64-bit...

9.8CVSS6.9AI score0.02767EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 8:47 a.m.64 views

Security Bulletin: IBM ToolsCenter Dynamic System Analysis (DSA) Preboot is affected by multiple vulnerabilities.

Summary IBM ToolsCenter Dynamic System Analysis DSA Preboot has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2019-3863 DESCRIPTION: A flaw was found in libssh2 before 1.8.1. A server could send a multiple keyboard interactive response messages whose total length are...

9.3CVSS0.9AI score0.09219EPSS
Exploits3Affected Software1
Rows per page
Query Builder