197 matches found
CVE-2023-33915
In LTE protocol stack, there is a possible missing permission check. This could lead to remote information disclosure no additional execution privileges needed...
Information disclosure
In LTE protocol stack, there is a possible missing permission check. This could lead to remote information disclosure no additional execution privileges needed...
CVE-2023-33915
CVE-2023-33915 concerns the LTE protocol stack where a missing permission check may enable remote information disclosure without extra execution privileges. The vulnerability is described across multiple sources (e.g., UNISOC-related entries and Red Hat/NVD records) with root cause as a missing p...
CVE-2023-33915
In LTE protocol stack, there is a possible missing permission check. This could lead to remote information disclosure no additional execution privileges needed...
PT-2023-24566 · Unknown · Lte Protocol Stack
Name of the Vulnerable Software and Affected Versions: LTE protocol stack affected versions not specified Description: The issue is related to a possible missing permission check in the LTE protocol stack, which could lead to remote information disclosure without requiring additional execution...
UNISOC Chipsets Security Vulnerability
UNISOC Chipsets is a chipset from China's Ziguang Zhanrui UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a possible lack of privilege checking in the LTE protocol stack...
SUSE SLES15 Security Update : bluez (SUSE-SU-2023:3240-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2023:3240-1 advisory. - BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdpcstateallocbuf which allocates memory which will...
Microsoft Windows Multiple Vulnerabilities (KB5023706)
This host is missing an important security update according to Microsoft KB5023706 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Windows 10 v21H1 - HTTP Protocol Stack Remote Code Execution Exploit
Title: Windows 10 v21H1 - HTTP Protocol Stack Remote Code Execution Author: nu11secur1ty Date: 01.14.2022 Vendor: https://www.microsoft.com/ Software: https://www.microsoft.com/en-us/download/details.aspx?id=48264 Reference: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-219...
Windows 10 v21H1 - HTTP Protocol Stack Remote Code Execution
Title: Windows 10 v21H1 - HTTP Protocol Stack Remote Code Execution Author: nu11secur1ty Date: 01.14.2022 Vendor: https://www.microsoft.com/ Software: https://www.microsoft.com/en-us/download/details.aspx?id=48264 Reference: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-219...
Microsoft Patch Tuesday for March 2023 — Snort rules and prominent vulnerabilities
Microsoft released its monthly security update Tuesday, disclosing 83 vulnerabilities across the companys hardware and software line, including two issues that are actively being exploited in the wild, continuing a trend of zero-days appearing in Patch Tuesdays over the past few months. Two of th...
CVE-2023-23392
HTTP Protocol Stack Remote Code Execution Vulnerability...
CVE-2023-23392
HTTP Protocol Stack Remote Code Execution Vulnerability...
CVE-2023-23392
HTTP Protocol Stack Remote Code Execution Vulnerability...
CVE-2023-23392
CVE-2023-23392 is a remotely exploitable security flaw in the Windows HTTP Protocol Stack that enables remote code execution when HTTP/3 with buffered I/O is enabled. Multiple connected sources confirm affected products as Windows 11 and Windows Server 2022, with successful exploitation possible ...
CVE-2023-23392 HTTP Protocol Stack Remote Code Execution Vulnerability
...
PT-2023-1868 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows versions prior to the fixed version Description: The issue is related to insufficient input validation in the HTTP protocol stack implementation, specifically in the http.sys component of Windows operating systems. This can be exploit...
KLA48553 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface, cause denial of service, bypass security restrictions. Below is a complete list of...
SUSE CVE-2016-7039
The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service stack consumption and panic or possibly have unspecified other impact by triggering use of the GRO path for large crafted packets, as demonstrated by packets that contain only VLAN headers, a relat...
SUSE CVE-2020-11903
The Treck TCP/IP stack before 6.0.1.28 has a DHCP Out-of-bounds Read...