Lucene search
K

174 matches found

Lenovo
Lenovo
added 2018/02/22 11:13 a.m.2 views

Enterprise Networking Operating System (ENOS) Authentication Bypass in Lenovo and IBM RackSwitch and BladeCenter Products - Lenovo Support US

No description provided...

7AI score
Exploits0
Lenovo
Lenovo
added 2018/02/22 11:13 a.m.275 views

Enterprise Networking Operating System (ENOS) Authentication Bypass in Lenovo and IBM RackSwitch and BladeCenter Products - US

Lenovo Security Advisory: LEN-16095 Potential Impact: An attacker could gain access to the switch management interface, permitting settings changes that could result in exposing traffic passing through the switch, subtle malfunctions in the attached infrastructure, and partial or complete denial ...

6.2CVSS6.8AI score0.00269EPSS
Exploits0
NVD
NVD
added 2018/01/10 6:29 p.m.20 views

CVE-2017-3765

In Enterprise Networking Operating System ENOS in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when...

7CVSS6.8AI score0.00269EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/01/10 6:0 p.m.18 views

CVE-2017-3765

In Enterprise Networking Operating System ENOS in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when...

6.8AI score0.00269EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/01/04 12:0 a.m.73 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4001)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4001 advisory. - USB: serial: console: fix use-after-free after failed setup Johan Hovold Orabug: 27206830 CVE-2017-16525 - uwb: properly check kthreadrun return...

7.8CVSS6.8AI score0.00398EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2017/12/11 12:0 a.m.92 views

Debian DLA-1200-1 : linux security update (KRACK)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2016-10208 Sergej Schumilo and Ralf Spenneberg discovered that a crafted ext4 filesystem could trigger memory corruption when it is mounted. A user...

7.8CVSS7.5AI score0.02285EPSS
Exploits12References25
Cloud Foundry
Cloud Foundry
added 2017/11/27 12:0 a.m.69 views

USN-3485-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description USN-3485-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.0...

7.8CVSS8AI score0.00962EPSS
Exploits4
BDU FSTEC
BDU FSTEC
added 2017/11/23 12:0 a.m.5 views

The vulnerability of the microprogrammed software of the wireless video camera Lens Peek-a-View lies in the presence of pre-set accounts, which allow a intruder to gain access to the device.

The microprogramming software of the wireless video camera Lens Peek-a-View has vulnerabilities. There are pre-installed user accounts named “admin” with the password “2601hx” for access via UART, and user accounts named “user” and “guest” with passwords “user” and “guest” respectively for access...

10CVSS7.8AI score0.01405EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2017/11/23 12:0 a.m.7 views

The vulnerability of the microprogrammed software of the Philips In.Sight B120/37 wireless video camera lies in the presence of pre-installed accounts, which allow a intruder to gain access to the device.

The vulnerability of the microprogrammed software of the Philips In.Sight B120/37 wireless video camera is related to the presence of preset user accounts for access via Telnet or UART accounts like “root”, “admin”, and “mg3500” with passwords “b120root”, “/ADMIN/”, and “merlin” respectively as...

10CVSS7.7AI score0.01566EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2017/11/22 12:0 a.m.47 views

Ubuntu: Security Advisory (USN-3485-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.00962EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2017/11/22 12:0 a.m.57 views

Ubuntu: Security Advisory (USN-3485-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.00962EPSS
Exploits4References2
OSV
OSV
added 2017/11/21 6:44 p.m.4 views

USN-3485-3 linux-aws vulnerabilities

It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-15265 Eric Biggers discovered that the key...

7.8CVSS7.3AI score0.00962EPSS
Exploits4References14
Ubuntu
Ubuntu
added 2017/11/21 6:44 p.m.121 views

USN-3485-3: Linux kernel (AWS) vulnerabilities

It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-15265 Eric Biggers discovered that the key...

7.8CVSS7.3AI score0.00962EPSS
Exploits4
Ubuntu
Ubuntu
added 2017/11/21 5:59 p.m.81 views

USN-3487-1: Linux kernel vulnerabilities

It was discovered that the KVM subsystem in the Linux kernel did not properly keep track of nested levels in guest page tables. A local attacker in a guest VM could use this to cause a denial of service host OS crash or possibly execute arbitrary code in the host OS. CVE-2017-12188 It was...

7.8CVSS7.5AI score0.01155EPSS
Exploits8
OSV
OSV
added 2017/11/21 6:49 a.m.4 views

USN-3485-2 linux-lts-xenial vulnerabilities

USN-3485-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. It was discovered that a race condition existed in the ALSA subsystem of the Linux...

7.8CVSS7.3AI score0.00962EPSS
Exploits4References14
Ubuntu
Ubuntu
added 2017/11/21 6:49 a.m.71 views

USN-3485-2: Linux kernel (Xenial HWE) vulnerabilities

USN-3485-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. It was discovered that a race condition existed in the ALSA subsystem of the Linux...

7.8CVSS7.4AI score0.00962EPSS
Exploits4
Ubuntu
Ubuntu
added 2017/11/21 5:36 a.m.91 views

USN-3485-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-15265 Eric Biggers discovered that the key...

7.8CVSS7.3AI score0.00962EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2017/11/21 12:0 a.m.40 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3485-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3485-2 advisory. USN-3485-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

7.8CVSS7.6AI score0.00962EPSS
Exploits4References14
Prion
Prion
added 2017/11/04 1:29 a.m.23 views

Design/Logic Flaw

The usbserialconsoledisconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service use-after-free and system crash or possibly have unspecified other impact via a crafted USB device, related to disconnection and failed setup...

7.2CVSS6.7AI score0.00393EPSS
Exploits0References7Affected Software1
Citrix
Citrix
added 2017/10/11 12:0 a.m.11 views

How to configure console access on XenServer or Citrix Hypervisor

This article is for customers running Citrix Hypervisor or XenServer who want to configure serial console access to their XenServer hosts. In some support cases, serial console access to the XenServer host is required for debug purposes. The serial connection is to use with HyperTerminal or simil...

6.8AI score
Exploits0
Rows per page
Query Builder