Lucene search
+L

10 matches found

CNNVD
CNNVD
added 2026/05/05 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, caused by a type confusion in the l2capecredreconfrsp function. This vulnerability may lead to valid packets being...

7.1CVSS5.8AI score0.00215EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : httpd24-nghttp2-1.7.1-7.el7, httpd24-curl-7.61.1-1.el7, httpd24-httpd-2.4.34-7.el7 (AXSA:2019-3739:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3739:01 advisory. httpd: Improper handling of headers in modsession can allow a remote user to modify session data for CGI applications CVE-2018-1283 httpd: Out of...

10CVSS6.7AI score0.86006EPSS
Exploits0References39
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a page error in Apple firmware code when reading db and dbx efi variables on Apple T2 Macs...

5.5CVSS6.1AI score0.00158EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-1172 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can...

6.8CVSS9.2AI score0.00744EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/11/08 12:0 a.m.6 views

The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the netfilter component in the Linux operating system’s kernel is related to errors in boundary-filling reading in the decodeseq function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.0024EPSS
Exploits0References46Affected Software7
RedHat Linux
RedHat Linux
added 2023/02/21 9:35 a.m.5 views

httpd: mod_proxy: HTTP response splitting

A flaw was found in the modproxy module of httpd. A malicious backend can cause the response headers to be truncated because they are not cleaned when an error is found while reading them, resulting in some headers being incorporated into the response body and not being interpreted by a client...

5.3CVSS7AI score0.57941EPSS
Exploits0References5
NVD
NVD
added 2022/06/11 3:15 p.m.32 views

CVE-2022-30780

Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service CPU consumption from stuck connections because connectionreadheadermore in connections.c has a typo that disrupts use of multiple read operations on large headers...

7.5CVSS0.56418EPSS
Exploits3References4
Positive Technologies
Positive Technologies
added 2022/05/25 12:0 a.m.3 views

PT-2022-3459 · Pillow · Pillow

Name of the Vulnerable Software and Affected Versions: Pillow version 9.1.0 Description: The issue is related to a heap buffer overflow in the processing of invalid TGA image files. This can be exploited by a remote attacker to impact the confidentiality, integrity, and availability of protected...

10CVSS8AI score0.03399EPSS
Exploits1References29
BDU FSTEC
BDU FSTEC
added 2021/09/02 12:0 a.m.9 views

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System (IGSS) allows a intruder to perform arbitrary actions.

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System IGSS relates to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a attacker to execute arbitrary code...

7.8CVSS7.8AI score0.02395EPSS
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2003/04/05 12:0 a.m.29 views

abyss.txt

Application: Abyss Webserver http://www.aprelium.com Versions: X1 v 1.1.2 Platform: Windows and Linux Bug: Crash caused by the reading of an unreacheable memory zone Risk: Remote crash Author: Auriemma Luigi e-mail: [email protected] web: http://www.pivx.com/luigi/ 1 Introduction 2 Bug 3 The Code 4...

7.4AI score
Exploits0
Rows per page
Query Builder