Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

NVD
NVDadded 2023/10/23 2:15 p.m.15 views

CVE-2021-26737

The Zscaler Client Connector for macOS prior to 3.6 did not sufficiently validate RPC clients. A local adversary without sufficient privileges may be able to shutdown the Zscaler tunnel by exploiting a race condition...

5.5CVSS5.2AI score0.00106EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/10/23 1:22 p.m.10 views

CVE-2021-26737 Privilege Escalation Using PID Reuse in ZCC macOS

The Zscaler Client Connector for macOS prior to 3.6 did not sufficiently validate RPC clients. A local adversary without sufficient privileges may be able to shutdown the Zscaler tunnel by exploiting a race condition...

5.5CVSS6.5AI score0.00106EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2021/03/12 9:33 p.m.75 views

Uncontrolled Resource Consumption in Apache Thrift

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service...

7.5CVSS2.8AI score0.06779EPSS
Exploits0References111Affected Software1
CNVD
CNVDadded 2021/02/21 12:0 a.m.2 views

Apache Thrift Denial of Service Vulnerability

Apache Thrift is a scalable cross-language service development framework. A denial of service vulnerability exists in Apache Thrift that allows malicious RPC clients to send ultra-short messages, allocate extremely large memory allocations, and can crash applications. No detailed vulnerability...

7.5CVSS6.4AI score0.06779EPSS
Exploits0References1
OSV
OSVadded 2021/02/16 8:15 p.m.2 views

CVE-2020-11635

The Zscaler Client Connector prior to 3.1.0 did not sufficiently validate RPC clients, which allows a local adversary to execute code with system privileges or perform limited actions for which they did not have privileges...

7.8CVSS5.9AI score0.00429EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2021/02/12 7:39 p.m.31 views

CVE-2020-13949

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service...

7.5CVSS6.3AI score0.06779EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2021/02/12 7:39 p.m.40 views

CVE-2020-13949

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service...

7.5CVSS7.4AI score0.06779EPSS
Exploits0
GitLab Advisory Database
GitLab Advisory Databaseadded 2021/02/12 12:0 a.m.26 views

Uncontrolled Resource Consumption

In Apache Thrift to, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service...

7.5CVSS2.5AI score0.06779EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVASadded 2018/08/07 12:0 a.m.233 views

Microsoft Windows: Restrict Unauthenticated RPC clients

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winunauthrpcclient.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Restrict Unauthenticated RPC clients Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program ...

7.3AI score
Exploits0
Microsoft KB
Microsoft KBadded 1970/01/01 12:0 a.m.101 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder