Lucene search
+L

270 matches found

NVD
NVD
added 2023/03/21 1:15 p.m.18 views

CVE-2022-42331

x86: speculative vulnerability in 32bit SYSCALL path Due to an oversight in the very original Spectre/Meltdown security work XSA-254, one entrypath performs its speculation-safety actions too late. In some configurations, there is an unprotected RET instruction which can be attacked with a variet...

5.5CVSS6.1AI score0.00273EPSS
Exploits0References7
AlpineLinux
AlpineLinux
added 2023/03/21 1:15 p.m.44 views

CVE-2022-42331

x86: speculative vulnerability in 32bit SYSCALL path Due to an oversight in the very original Spectre/Meltdown security work XSA-254, one entrypath performs its speculation-safety actions too late. In some configurations, there is an unprotected RET instruction which can be attacked with a variet...

5.5CVSS6.7AI score0.00273EPSS
Exploits0
Cvelist
Cvelist
added 2023/03/21 12:0 a.m.43 views

CVE-2022-42331

x86: speculative vulnerability in 32bit SYSCALL path Due to an oversight in the very original Spectre/Meltdown security work XSA-254, one entrypath performs its speculation-safety actions too late. In some configurations, there is an unprotected RET instruction which can be attacked with a variet...

6.9AI score0.00273EPSS
Exploits0References7
CVE
CVE
added 2023/03/21 12:0 a.m.110 views

CVE-2022-42331

CVE-2022-42331 describes a Xen hypervisor SPECULATIVE execution vulnerability on the x86 32-bit SYSCALL path. Root cause: an oversight in the original Spectre/Meltdown work (XSA-254) leads to an entrypath performing its speculation-safety actions too late, leaving an unprotected RET instruction i...

5.5CVSS6.5AI score0.00273EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2023/03/21 12:0 a.m.54 views

CVE-2022-42331

x86: speculative vulnerability in 32bit SYSCALL path Due to an oversight in the very original Spectre/Meltdown security work XSA-254, one entrypath performs its speculation-safety actions too late. In some configurations, there is an unprotected RET instruction which can be attacked with a variet...

5.5CVSS6.6AI score0.00273EPSS
Exploits0
0day.today
0day.today
added 2023/01/22 12:0 a.m.291 views

NetChess 2.1 Buffer Overflow Exploit

Exploit Title: NetChess2.1 Buffer Overflow SEH Exploit Author: Ugur Eminli Vendor Homepage: https://sourceforge.net/projects/avmnetchess/ Software Link: https://sourceforge.net/projects/avmnetchess/ Version: 2.1 Tested on: WinXP SP2 Build 2600 !/usr/bin/perl my $file= "exploit.pgn"; my $junk=...

0.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2022/11/15 11:38 a.m.5 views

hw: cpu: AMD: Branch Type Confusion (non-retbleed)

A flaw was found in hw. Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type, potentially leading to information disclosure...

6.5CVSS6.2AI score0.00785EPSS
Exploits0References5
Amd
Amd
added 2022/11/08 12:0 a.m.89 views

IBPB and Return Stack Buffer Interactions

Bulletin ID: AMD-SB-1040 Potential Impact: Information Disclosure Severity: Medium Summary AMD is aware of a potential vulnerability affecting AMD CPUs where the OS relies on IBPB to flush the return address predictor. This may allow for CVE-2017-5715 previously known as Spectre Variant 2 attacks...

5.5CVSS6.4AI score0.00586EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2022/10/25 8:45 a.m.3 views

hw: cpu: AMD: Branch Type Confusion (non-retbleed)

A flaw was found in hw. Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type, potentially leading to information disclosure...

6.5CVSS6.2AI score0.00785EPSS
Exploits0References5
OSV
OSV
added 2022/07/31 2:4 p.m.19 views

GSD-2022-1004370 efi/x86: use naked RET on mixed mode call wrapper

efi/x86: use naked RET on mixed mode call wrapper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.57 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/07/31 1:46 p.m.10 views

GSD-2022-1004148 efi/x86: use naked RET on mixed mode call wrapper

efi/x86: use naked RET on mixed mode call wrapper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.14 by commit...

7.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/07/15 12:0 a.m.7 views

The vulnerability of microprogramming software for Intel and AMD processors allows attackers to extract sensitive information from the kernel’s memory or launch attacks on host systems from virtual machines.

The vulnerability of microprogramming software for Intel and AMD processors lies in errors during the processing of the “ret” instruction, which retrieves an address for transitioning from the stack. Exploiting this vulnerability can allow attackers to extract protected information from the...

6.5CVSS6.8AI score0.03764EPSS
Exploits0References43Affected Software13
BDU FSTEC
BDU FSTEC
added 2022/07/15 12:0 a.m.7 views

The vulnerability of microprogramming software for Intel and AMD processors allows attackers to extract sensitive information from the kernel’s memory or launch attacks on host systems from virtual machines.

The vulnerability of microprogramming software for Intel and AMD processors lies in errors during the processing of the “ret” instruction, which extracts an address to move from the stack. Exploiting this vulnerability can allow attackers to extract protected information from the kernel’s memory ...

5.6CVSS6.8AI score0.04831EPSS
Exploits0References49Affected Software12
ATTACKERKB
ATTACKERKB
added 2022/07/12 2:15 p.m.7 views

CVE-2022-33704

Improper validation vulnerability in ucmRetParcelable of KnoxSDK prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities...

8.5CVSS5.8AI score0.00106EPSS
Exploits0References2
0day.today
0day.today
added 2022/03/09 12:0 a.m.237 views

Audio Conversion Wizard v2.01 - Buffer Overflow Exploit

Exploit Title: Audio Conversion Wizard v2.01 - Buffer Overflow Exploit Author: Hejap Zairy Software Link: https://www.litexmedia.com/acwizard.exe Tested Version: v2.01 Tested on: Windows 10 64bit 1.- Run python code : 0day-HejapZairy.py 2.- Open 0dayHejap.txt and copy All content to Clipboard 3.-...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/11/20 12:0 a.m.697 views

Free MP3 CD Ripper 2.8 Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Free MP3 CD Ripper 2.6 %q This module exploits a buffer overflow in Free MP3 CD Ripper versions 2.6 and 2.8. By constructing a specially crafted...

6.8CVSS1AI score0.07991EPSS
Exploits4
0day.today
0day.today
added 2020/08/03 12:0 a.m.271 views

CloudMe 1.11.2 SEH Buffer Overflow Exploit

import socket import sys target = "127.0.0.1" Written by : lutzenfried Clement Cruchet Exploiting CloudMe 1.11.2 Publisher : CloudMe AB Windows x64 10.0.18362 Build 18362 Buffer Overflow using SEH overwritten technic POP POP RET Exploit for CVE-2018-6892 Technical information used for exploit...

9.8CVSS0.4AI score0.93597EPSS
Exploits29
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.34 views

openSUSE Security Update : nasm (openSUSE-2020-954)

This update for nasm fixes the following issues : nasm was updated to version 2.14.02. This allows building of Mozilla Firefox 78ESR and also contains lots of bugfixes, security fixes and improvements. - Fix crash due to multiple errors or warnings during the code generation pass if a list file i...

7.8CVSS6.5AI score0.05166EPSS
Exploits14References27
Exploit DB
Exploit DB
added 2020/04/21 12:0 a.m.259 views

Oracle Solaris Common Desktop Environment 1.6 - Local Privilege Escalation

Title: Oracle Solaris Common Desktop Environment 1.6 - Local Privilege Escalation Date: 2020-04-21 Author: Marco Ivaldi Vendor: www.oracle.com CVE: CVE-2020-2944 / raptorsdtcmconv.c - CDE sdtcmconvert LPE for Solaris/Intel Copyright c 2019-2020 Marco Ivaldi A buffer overflow in the SanityCheck...

8.8CVSS8.8AI score0.01802EPSS
Exploits5
0day.today
0day.today
added 2020/04/20 12:0 a.m.57 views

Nsauditor 3.2.1.0 - Buffer Overflow (SEH+ASLR bypass (3 bytes overwrite)) Exploit

Exploit Title: Nsauditor 3.2.1.0 - Buffer Overflow SEH+ASLR bypass 3 bytes overwrite Exploit Author: Cervoise Vendor Homepage: https://www.nsauditor.com/ Software Link: https://www.nsauditor.com/downloads/nsauditorsetup.exe Version: 3.2.1.0 and 3.0.28 Tested on: Windows 10.0.18363.778 x86 Pro EN...

1.1AI score
Exploits0
Rows per page
Query Builder