Lucene search
K

130 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:31 p.m.15 views

K10417: BIG-IP ASM and PSM remote buffer overflow exploit

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

7AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:28 p.m.59 views

K8939: SNMPv3 HMAC verification vulnerability CVE-2008-0960 - VU#878044

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

10CVSS6.7AI score0.6879EPSS
Exploits7
F5 Networks
F5 Networks
added 2023/02/21 7:27 p.m.37 views

K12650: PHP vulnerability CVE-2010-4645

Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...

5CVSS9AI score0.15103EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 6:30 p.m.36 views

K16882: OpenLDAP vulnerability CVE-2013-4449

Security Advisory Description Description The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service slapd crash by unbinding immediately after a search request, which triggers rwmconndestroy to free the...

4.3CVSS5.3AI score0.10913EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 6:11 p.m.25 views

K15746: Linux kernel vulnerability CVE-2012-4542

Security Advisory Description Description block/scsiioctl.c in the Linux kernel through 3.8 does not properly consider the SCSI device class during authorization of SCSI commands, which allows local users to bypass intended access restrictions via an SGIO ioctl call that leverages overlapping...

4.6CVSS8AI score0.00349EPSS
Exploits0Affected Software17
F5 Networks
F5 Networks
added 2023/02/21 6:10 p.m.34 views

K16318: OpenSSL vulnerability CVE-2015-0287

Security Advisory Description The ASN1itemexd2i function in crypto/asn1/tasndec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service invalid wri...

5CVSS6.8AI score0.0837EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.4 views

SUSE CVE-2017-5848

The gstpsdemuxparsepsm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service invalid memory read and crash via vectors involving PSM parsing...

7.5CVSS6.8AI score0.04426EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2023/01/04 4:53 p.m.212 views

K14317: OpenSSH J-PAKE vulnerability CVE-2010-4478

OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate. F5 products do not include J-PAKE in the OpenSSH programs a...

9.8CVSS6.6AI score0.04242EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/01/04 12:50 a.m.36 views

K19784568: TMM vulnerability CVE-2016-5023

Security Advisory Description Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 through 11.5.4, 11.6.0 HF5 through HF7, and 12.0.0, when configured with a TCP profile, allow remote attackers to cause a denial of service Traffic Management Microkernel...

7.5CVSS7.5AI score0.03046EPSS
Exploits0Affected Software14
Openbugbounty
Openbugbounty
added 2022/11/15 5:55 p.m.6 views

psm-surgut.ru Cross Site Scripting vulnerability OBB-3057383

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 11:13 p.m.27 views

Security Bulletin: Buffer Overflow Vulnerability in IBM DB2 SQL/PSM Stored Procedure Infrastructure (CVE-2012-4826).

Abstract Vulnerability in IBM DB2 could allow an authenticated user to cause a stack-based buffer overflow and possibly attain remote code execution. Content VULNERABILITY DETAILS CVE ID: CVE-2012-4826 DESCRIPTION: The IBM DB2 products listed below contain a security vulnerability that could allo...

8.5CVSS6.7AI score0.04908EPSS
Exploits0Affected Software3
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-361-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.1AI score0.0747EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2021/04/27 12:0 a.m.6 views

The vulnerability in the implementation of the Resource Manager PSM Service Extension (PsmServiceExtHost.dll) on Microsoft Windows operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the Resource Manager PSM Service Extension PsmServiceExtHost.dll implementation on Microsoft Windows operating systems is related to incorrect access control. Exploiting this vulnerability could allow an attacker to increase their privileges...

7.8CVSS7.2AI score0.0055EPSS
Exploits0References2
CNVD
CNVD
added 2021/04/14 12:0 a.m.7 views

Microsoft Windows and Windows Server Elevation of Privilege Vulnerability (CNVD-2021-34482)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the Explorer PSM Service Extension in...

7.8CVSS6.6AI score0.0055EPSS
Exploits0References1
NVD
NVD
added 2021/04/13 8:15 p.m.18 views

CVE-2021-28320

Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability...

7.8CVSS0.0055EPSS
Exploits0References1
Prion
Prion
added 2021/04/13 8:15 p.m.22 views

Privilege escalation

Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability...

4.6CVSS7.7AI score0.0055EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/04/13 7:32 p.m.23 views

CVE-2021-28320 Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability

...

7.8CVSS8.3AI score0.0055EPSS
Exploits0References1
CVE
CVE
added 2021/04/13 7:32 p.m.108 views

CVE-2021-28320

Technical details about CVE-2021-28320 (affected components, exploitability, or fixes) are not provided in the supplied documents. Monitor for updates from official advisories (MSRC/Microsoft security guides) for specifics and remediation.

7.8CVSS8.1AI score0.0055EPSS
Exploits0References1Affected Software3
Microsoft CVE
Microsoft CVE
added 2021/04/13 7:0 a.m.45 views

Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.0055EPSS
Exploits0
Kaspersky
Kaspersky
added 2021/04/13 12:0 a.m.68 views

KLA12139 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of...

9.8CVSS9.8AI score0.61648EPSS
Exploits4References104
Rows per page
Query Builder