Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

618 matches found

OSV
OSVadded 2019/05/08 5:29 p.m.6 views

CVE-2019-2054

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.5AI score
Exploits0References5
NVD
NVDadded 2019/05/08 5:29 p.m.22 views

CVE-2019-2054

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.7AI score0.00632EPSS
Exploits0References5
Prion
Prionadded 2019/05/08 5:29 p.m.19 views

Design/Logic Flaw

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4.6CVSS7.5AI score0.00632EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2019/05/08 4:32 p.m.23 views

CVE-2019-2054

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.7AI score0.00632EPSS
Exploits0References5
CVE
CVEadded 2019/05/08 4:32 p.m.130 views

CVE-2019-2054

CVE-2019-2054 involves a seccomp bypass in the Android/Linux kernel prior to 4.8, where seccomp policies allow ptrace usage. This could enable local privilege escalation without additional execution privileges and without user interaction. The core issue is that certain seccomp policies permit pt...

7.8CVSS7.5AI score0.00632EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVEadded 2019/05/08 4:32 p.m.25 views

CVE-2019-2054

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.7AI score0.00632EPSS
Exploits0
OSV
OSVadded 2019/05/08 12:0 a.m.0 views

UBUNTU-CVE-2019-2054

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.2AI score0.00632EPSS
Exploits0References7
UbuntuCve
UbuntuCveadded 2019/05/08 12:0 a.m.32 views

CVE-2019-2054

In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.1AI score0.00632EPSS
Exploits0References6
CNVD
CNVDadded 2019/05/07 12:0 a.m.4 views

Google Android seccomp elevation of privilege vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android Kernel component seccomp. An attacker can exploit this vulnerability to bypass seccomp and elevate privileges...

7.8CVSS7.2AI score0.00632EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2019/05/02 12:0 a.m.12 views

Fedora 30 : flatpak (2019-2fd70709a5)

Update to 1.2.4 - seccomp: Only compare the low 32bit of the TIOCSTI ioctl args. - Support multiple nvidia cards on the machine - Fix support for systems where XDGRUNTIMEDIR is /var/run which is a symlink like gentoo. - Fix potential crash when updating apps. - flatpak list --arch now works...

5.5AI score
Exploits0References1
UbuntuCve
UbuntuCveadded 2019/04/24 9:29 p.m.18 views

CVE-2017-18367

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...

7.5CVSS6.8AI score0.0245EPSS
Exploits0References4
OSV
OSVadded 2019/04/24 9:29 p.m.23 views

CVE-2017-18367

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...

7.5CVSS6.7AI score
Exploits0References7
Prion
Prionadded 2019/04/24 9:29 p.m.23 views

Design/Logic Flaw

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...

5CVSS7.4AI score0.0245EPSS
Exploits0References7Affected Software1
OSV
OSVadded 2019/04/24 9:29 p.m.2 views

DEBIAN-CVE-2017-18367

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...

7.5CVSS6.9AI score0.0245EPSS
Exploits0References1
Cvelist
Cvelistadded 2019/04/24 8:2 p.m.20 views

CVE-2017-18367

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...

6.9AI score0.0245EPSS
Exploits0References7
Debian CVE
Debian CVEadded 2019/04/24 8:2 p.m.21 views

CVE-2017-18367

libseccomp-golang 0.9.0 and earlier incorrectly generates BPFs that OR multiple arguments rather than ANDing them. A process running under a restrictive seccomp filter that specified multiple syscall arguments could bypass intended access restrictions by specifying a single matching argument...

7.5CVSS7.1AI score0.0245EPSS
Exploits0
OSV
OSVadded 2019/04/23 4:29 p.m.15 views

CVE-2019-7303

A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to match 64-bit ioctl2 commands on a 64-bit platform; however, the Linux kernel only uses the lower 32...

7.5CVSS6.7AI score
Exploits0References2
OSV
OSVadded 2019/04/23 4:29 p.m.3 views

DEBIAN-CVE-2019-7303

A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to match 64-bit ioctl2 commands on a 64-bit platform; however, the Linux kernel only uses the lower 32...

7.5CVSS5.5AI score0.037EPSS
Exploits3References1
NVD
NVDadded 2019/04/23 4:29 p.m.13 views

CVE-2019-7303

A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to match 64-bit ioctl2 commands on a 64-bit platform; however, the Linux kernel only uses the lower 32...

7.5CVSS6.2AI score0.037EPSS
Exploits3References2
Snyk
Snykadded 2019/04/23 4:29 p.m.4 views

Function Call with Incorrectly Specified Arguments

Overview Affected versions of this package are vulnerable to Function Call with Incorrectly Specified Arguments. A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were...

7.5CVSS5.6AI score0.037EPSS
Exploits3References2
Rows per page
Query Builder