Lucene search
K

152 matches found

BDU FSTEC
BDU FSTEC
added 2022/04/13 12:0 a.m.9 views

The vulnerability of Adobe Premiere Elements software-related video editing programs lies in the creation of temporary files with insecure resolutions, which allows attackers to escalate their privileges.

The vulnerability of Adobe Premiere Elements software-related video editing programs lies in the creation of temporary files with insecure resolutions. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.2CVSS6.4AI score0.00476EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/07 12:0 a.m.8 views

The vulnerability of the Adobe Creative Cloud Desktop Application, related to the creation of temporary files with insecure resolutions, allows a hacker to trigger a service failure.

The vulnerability of the Adobe Creative Cloud Desktop Application relates to the creation of temporary files with insecure resolutions. Exploiting this vulnerability could allow a hacker to cause a service failure...

4.6CVSS6.2AI score0.01134EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/17 12:0 a.m.9 views

The vulnerability of the Adobe Lightroom Classic graphic editor lies in the creation of temporary files with unsafe resolutions, which allows a violator to increase their privileges.

The vulnerability of Adobe Lightroom Classic lies in the creation of temporary files with insecure resolutions. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...

9.3CVSS6.7AI score0.0052EPSS
Exploits0References2Affected Software1
Huntr
Huntr
added 2021/11/10 4:0 a.m.11 views

Cross-site Scripting (XSS) - Stored in eventum/eventum

Description Multiple Stored XSS in Administration at eventum 3.10.8 Proof of Concept // PoC.payload " Step to Reproduct Goto Administration Areas and choose to feature below Manage News Input payload into fieldTitle Manage Status Input payload into fieldTitle Manage Projects Input payload into...

6AI score
Exploits0References1
OSV
OSV
added 2021/11/09 4:28 p.m.17 views

OPENSUSE-SU-2021:3641-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3772: Fixed sctp vtag check in sctpsfootb bsc1190351. - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have...

8.8CVSS7.3AI score0.01476EPSS
Exploits6References70
OSV
OSV
added 2021/11/09 4:28 p.m.9 views

SUSE-SU-2021:3640-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3772: Fixed sctp vtag check in sctpsfootb bsc1190351. - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have...

7.8CVSS7.5AI score0.01476EPSS
Exploits5References58
The Hacker News
The Hacker News
added 2021/10/21 1:7 p.m.15 views

Product Overview: Cynet SaaS Security Posture Management (SSPM)

Software-as-a-service SaaS applications have gone from novelty to business necessity in a few short years, and its positive impact on organizations is clear. It's safe to say that most industries today run on SaaS applications, which is undoubtedly positive, but it does introduce some critical ne...

0.1AI score
Exploits0
Fedora
Fedora
added 2021/09/24 8:40 p.m.32 views

[SECURITY] Fedora 35 Update: python-pycares-4.0.0-5.fc35

pycares is a Python module which provides an interface to c-ares. c-ares is a C library that performs DNS requests and name resolutions asynchronously...

6.8CVSS2.2AI score0.02617EPSS
Exploits1
OSV
OSV
added 2021/08/25 10:5 p.m.7 views

OPENSUSE-SU-2021:1199-1 Security update for go1.16

This update for go1.16 fixes the following issues: Update to go1.16.7: - go47473 net/http: panic due to racy read of persistConn after handler panic CVE-2021-36221 bsc1189162 - go47348 cmd/go: 'go list -f '.Stale'' stack overflow with cyclic imports - go47332 time: Timer reset broken under heavy...

5.9CVSS6.2AI score0.03128EPSS
Exploits0References4
OSV
OSV
added 2021/07/10 8:0 p.m.8 views

MGASA-2021-0339 Updated avahi packages fix a security vulnerability

A flaw was found in avahi 0.8-5. A reachable assertion is present in avahishostnameresolverstart function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this...

5.5CVSS5.2AI score0.00374EPSS
Exploits1References3
OSV
OSV
added 2021/05/12 3:2 p.m.6 views

OPENSUSE-SU-2021:0715-1 Security update for nagios

This update for nagios fixes the following issues: - new nagios-exec-start-post script to fix boo1003362 - fix nagiosupgrade.sh writing to log file in user controlled directory boo1182398. The nagiosupgrade.sh script writes the logfile directly below /var/log/ nagios was updated to 4.4.6: Fixed M...

6.1CVSS7AI score0.02726EPSS
Exploits1References8
UbuntuCve
UbuntuCve
added 2021/05/07 12:15 p.m.32 views

CVE-2021-3502

A flaw was found in avahi 0.8-5. A reachable assertion is present in avahishostnameresolverstart function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this...

5.5CVSS6.8AI score0.00374EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2021/02/23 12:0 a.m.7 views

The vulnerability of Intel Ethernet I210 controller’s microprogramming software, related to errors in the use of standard resolutions, allows a perpetrator to trigger a service failure.

The vulnerability of Intel Ethernet I210 controller’s microprogramming software is related to errors in the use of standard resolutions. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.2CVSS5.9AI score0.00211EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/01/12 6:16 p.m.10 views

SUSE-SU-2021:0097-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-20934: Fixed a use-after-free in shownumastats because NUMA fault statistics were inappropriately freed, aka CID-16d51a590a8c bsc1179663. -...

9.8CVSS8.1AI score0.01672EPSS
Exploits9References114
RedHat Linux
RedHat Linux
added 2020/10/26 7:4 p.m.7 views

Important: Red Hat Bug Fix Advisory: Satellite 6.7.5 Async Bug Fix Update

Updated Satellite 6.7 packages that fix several bugs are now available for Red Hat Satellite. Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other clien...

7.5CVSS7.3AI score0.00789EPSS
Exploits0References11
Virtuozzo
Virtuozzo
added 2020/10/06 12:0 a.m.94 views

Product release: Virtuozzo Hybrid Infrastructure 4.0 (4.0.0-734)

In this release, Virtuozzo Hybrid Infrastructure provides a wide range of new features that enhance the end-user experience and service providers' interoperability. The improvements cover networking, storage core, appliance, object storage, monitoring, performance charts, and localization...

0.4AI score
Exploits0
Oracle linux
Oracle linux
added 2020/05/12 12:0 a.m.43 views

squid:4 security update

squid 7:4.4-8.1 - Resolves: 1828368 - CVE-2019-12519 squid: improper check for new member in ESIExpression::Evaluate allows for stack buffer overflow - Resolves: 1828367 - CVE-2020-11945 squid: improper access restriction upon Digest Authentication nonce replay could lead to remote code execution...

9.8CVSS5AI score0.27246EPSS
Exploits0
Oracle linux
Oracle linux
added 2020/05/05 12:0 a.m.63 views

glibc security, bug fix, and enhancement update

2.28-101.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...

3.3CVSS5.6AI score0.00409EPSS
Exploits0
OSV
OSV
added 2020/03/25 10:15 p.m.2 views

DEBIAN-CVE-2020-6806

By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.6, Firefox 74, Firefox ESR68.6...

8.8CVSS8.7AI score0.02543EPSS
Exploits0References1
Prion
Prion
added 2020/03/25 10:15 p.m.21 views

Design/Logic Flaw

By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.6, Firefox 74, Firefox ESR68.6...

6.8CVSS8.8AI score0.02543EPSS
Exploits0References7Affected Software4
Rows per page
Query Builder