7454 matches found
CVE-2021-2246
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Work Provider Site Level Administration. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromis...
CVE-2021-2246
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Work Provider Site Level Administration. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromis...
CVE-2021-0229
An uncontrolled resource consumption vulnerability in Message Queue Telemetry Transport MQTT server of Juniper Networks Junos OS allows an attacker to cause MQTT server to crash and restart leading to a Denial of Service DoS by sending a stream of specific packets. A Juniper Extension Toolkit JET...
Command injection
A Data Processing vulnerability in the Multi-Service process multi-svcs on the FPC of Juniper Networks Junos OS on the PTX Series routers may lead to the process becoming unresponsive, ultimately affecting traffic forwarding, allowing an attacker to cause a Denial of Service DoS condition . The...
CVE-2021-31571
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in queue.c for queue creation...
CVE-2021-31571
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in queue.c for queue creation...
Integer overflow
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in queue.c for queue creation...
CVE-2021-31571
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in queue.c for queue creation...
PT-2024-11082 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A potential use after free issue in the MHI send functionality of the Linux kernel has been resolved. The MHI ul callback may be invoked immediately after the skb is queued for...
Oracle E-Business Suite 安全漏洞
Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is a seamless integration of a management suite.Oracle Universal...
PT-2024-11067 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the TX queue lookup in TX flush done handling in the Linux kernel. Specifically, the problem arises because the code starts from a TXQ instance number 'qid', no...
PT-2024-11066 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the sfc driver in the Linux kernel, specifically with the farch module. The problem arises from using a TXQ label instead of a TXQ type, making the efx channel...
PT-2021-8268 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a memory leak in the Linux kernel when closing a socket. Specifically, the vsock/virtio component fails to free queued packets, leading to a memory leak. This w...
SUSE: Security Advisory (SUSE-SU-2019:1243-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4907-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4907-1 advisory. Wen Xu discovered that the xfs file system implementation in the Linux kernel did not properly validate the number of extents in an inode. An...
Denial Of Service (DoS)
qemu is vulnerable to denial of service. A use-after-free flaw in the MegaRAID emulator allows an attacker to crash the QEMU process due to an error while processing SCSI I/O requests in the case of an error mptsasfreerequest that does not dequeue the request object req from a pending requests...
Cross-site-scripting (XSS)
sidekiq is vulnerable to cross-site-scripting. An attacker is able to inject and execute malicious code via the queue name of the live-poll feature when Internet Explorer is used...
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the queue name of the live-poll feature when Internet Explorer is used. Details Cross-site scripting or XSS is a code vulnerability that occurs when an attacker “injects” a malicious script into an otherwise...
Mike Perham sidekiq 跨站脚本漏洞
Mike Perham sidekiq is a Mike Perham open source application. Use threads to process many jobs simultaneously in the same process A cross-site scripting vulnerability exists in Mike Perham Sidekiq version 5.1.3 and earlier and 6.x series version 6.2.0 and earlier, which can be exploited by an...
PT-2021-18635
Name of the Vulnerable Software and Affected Versions Sidekiq versions 5.1.3 and earlier Sidekiq versions 6.x through 6.2.0 Description The issue allows for XSS via the queue name of the live-poll feature, specifically when Internet Explorer is used. Recommendations For Sidekiq versions 5.1.3 and...