Lucene search
+L

30 matches found

Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.28 views

PT-2025-41062

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to the BTRFS file system. Specifically, the issue involves the handling of reloc trees, which are used for managing shared tree blocks between...

7.8CVSS6.2AI score0.08942EPSS
Exploits4References990
RedhatCVE
RedhatCVE
added 2025/05/22 11:1 p.m.18 views

CVE-2022-3347

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

7.5CVSS6.8AI score0.00242EPSS
Exploits0References1
GoogleProjectZero
GoogleProjectZero
added 2024/10/25 12:0 a.m.63 views

The Windows Registry Adventure #4: Hives and the registry layout

Posted by Mateusz Jurczyk, Google Project Zero To a normal user or even a Win32 application developer, the registry layout may seem simple: there are five root keys that we know from Regedit abbreviated as HKCR, HKLM, HKCU, HKU and HKCC, and each of them contains a nested tree structure that serv...

7.8CVSS6.4AI score0.08698EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/10/23 12:0 a.m.6 views

PT-2023-29855 · Sbt +1 · Sbt +1

Name of the Vulnerable Software and Affected Versions: sbt versions prior to 1.9.7 Description: The issue allows writing of arbitrary files given a specially crafted zip or JAR file, utilizing IO.unzip. This could potentially overwrite /root/.ssh/authorized keys. Within sbt's main code, IO.unzip ...

7.1CVSS6.9AI score0.0034EPSS
Exploits1References22
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.6 views

SUSE CVE-2011-3590

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH private keys within a vmcore file, which allows context-dependent attackers to obtain sensitive...

5.7CVSS6.2AI score0.00568EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/12/27 9:17 p.m.7 views

CVE-2022-3347 Incorrect validation of root DNSSEC public keys in github.com/peterzen/goresolver

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

7.7AI score0.00242EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/09/29 12:0 a.m.8 views

PT-2022-21781 · Unknown · Go-Resolver

Name of the Vulnerable Software and Affected Versions: go-resolver affected versions not specified Description: The issue is related to incorrect DNSSEC validation. An attacker can cause the package to report successful validation for invalid, attacker-controlled records. Specifically, root DNSSE...

7.7CVSS7.2AI score0.00242EPSS
Exploits0References8
Schneier on Security
Schneier on Security
added 2021/11/10 12:17 p.m.14 views

Hacking the Sony Playstation 5

I just dont think its possible to create a hack-proof computer system, especially when the system is physically in the hands of the hackers. The Sony Playstation 5 is the latest example: Hackers may have just made some big strides towards possibly jailbreaking the PlayStation 5 over the weekend,...

7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2012/02/21 2:20 a.m.9 views

kexec-tools: Multiple security flaws by management of kdump core files and ramdisk images

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH private keys within a vmcore file, which allows context-dependent attackers to obtain sensitive...

5.7CVSS5.8AI score0.00568EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/12/05 7:54 p.m.5 views

kexec-tools: Multiple security flaws by management of kdump core files and ramdisk images

The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, uses world-readable permissions for vmcore files, which allows local users to obtain sensitive information by inspecting the file...

5.7CVSS5.8AI score0.00543EPSS
Exploits1References4
Rows per page
Query Builder