Lucene search
+L

616 matches found

GithubExploit
GithubExploit
added 2025/04/18 5:49 p.m.290 views

Exploit for Out-of-bounds Write in Fortinet Fortiproxy

fgt-cve-2023-27997-exploit FortiGate SSL‑VPN CVE‑2023‑279...

9.8CVSS10AI score0.85689EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.22 views

Linux Distros Unpatched Vulnerability : CVE-2022-48994

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel contr...

5.5CVSS6.4AI score0.00235EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.15 views

EulerOS 2.0 SP12 : pam (EulerOS-SA-2025-1194)

According to the versions of the pam package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in pamaccess, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers ...

7.4CVSS6.8AI score0.00798EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/01/16 2:45 p.m.309 views

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

PoC exploit for CVE-2025-0282, a remote unauthenticated stack-ba...

9CVSS8.7AI score0.99971EPSS
Exploits13
RedHat Linux
RedHat Linux
added 2024/12/17 8:25 p.m.7 views

pam: libpam: Libpam vulnerable to read hashed password

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS7.4AI score0.00265EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2024/11/24 7:20 a.m.570 views

Exploit for Out-of-bounds Write in Fortinet Fortiproxy

cve-2024-21762-poc CVE-2024-21762 is a critical vulnerability...

9.8CVSS8.1AI score0.83428EPSS
Exploits12
SUSE CVE
SUSE CVE
added 2024/10/24 11:31 a.m.4 views

SUSE CVE-2024-10041

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS9.2AI score0.00265EPSS
Exploits0References18
NVD
NVD
added 2024/10/23 2:15 p.m.26 views

CVE-2024-10041

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS0.00265EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2024/10/23 2:15 p.m.3 views

CVE-2024-10041

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References6Affected Software5
OSV
OSV
added 2024/10/23 2:15 p.m.7 views

AZL-51693 CVE-2024-10041 affecting package pam for versions less than 1.5.1-7

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS7AI score0.00265EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/23 1:46 p.m.24 views

CVE-2024-10041 Pam: libpam: libpam vulnerable to read hashed password

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS6.5AI score0.00265EPSS
Exploits0References5
CVE
CVE
added 2024/10/23 1:46 p.m.344 views

CVE-2024-10041

CVE-2024-10041 describes a PAM vulnerability where secret information is kept in memory and can be leaked during authentication by triggering speculative execution via stdin, potentially exposing passwords (e.g., in /etc/shadow). Connected advisories confirm PAM updates and patches across distrib...

4.7CVSS4.8AI score0.00265EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2024/10/23 1:46 p.m.15 views

CVE-2024-10041

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS6.1AI score0.00265EPSS
Exploits0
Cvelist
Cvelist
added 2024/10/23 1:46 p.m.25 views

CVE-2024-10041 Pam: libpam: libpam vulnerable to read hashed password

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS0.00265EPSS
Exploits0References5
OSV
OSV
added 2024/10/23 1:46 p.m.17 views

CVE-2024-10041 Pam: libpam: libpam vulnerable to read hashed password

A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input stdin. As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This fla...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2024/10/22 7:38 a.m.24 views

CVE-2022-48994

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References4
NVD
NVD
added 2024/10/21 8:15 p.m.72 views

CVE-2022-48994

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

5.5CVSS0.00235EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/10/21 8:6 p.m.26 views

CVE-2022-48994 ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

6.8AI score0.00235EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/10/21 8:6 p.m.33 views

CVE-2022-48994 ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

0.00235EPSS
Exploits0References8
CVE
CVE
added 2024/10/21 8:6 p.m.113 views

CVE-2022-48994

CVE-2022-48994 affects the Linux kernel ALSA sequencing path. The issue arises from a prototype mismatch: seq_copy_in_user() and seq_copy_in_kernel() did not match snd_seq_dump_func_t, leading to -Wcast-function-type-strict checks with Clang. The patch fixes the function prototypes and removes ca...

5.5CVSS5.1AI score0.00235EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder