Lucene search
K

39 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Siemens SIMATIC Devices Improper Locking (CVE-2024-50210)

In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fix unbalanced locking in pcclocksettime If getclockdesc succeeds, it calls fget for the clockid's fd, and get the clk-rwsem read lock, so the error path should release the lock to make the lock balance...

5.5CVSS6.1AI score0.0017EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-31222

Malicious code in bioql PyPI...

8.6CVSS8.2AI score0.01145EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.2 views

Configure Audit Rules for Time Changes

The system time is essential for the normal running of services. The system time can be changed through synchronization with the time server and manual operations of administrators. The latter is prone to attacks because attackers can change the system time to invalidate some protection policies...

7.1AI score
Exploits0References2
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: posix-clock: The missing timespec64 check in pcclocksettime has been fixed. As Andrew pointed out, it makes sense that the PTP core checks the tvsec and tvnsec fields of the timespec64 structure before calling ptp-info-settime64...

5.5CVSS6.2AI score0.00233EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fixed unbalanced locking in pcclocksettime. If getclockdesc succeeds, it calls fget for the fd of the clockid. It also acquires a read lock on clk-rwsem. Therefore, the error path should release the lock...

5.5CVSS6.2AI score0.0017EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/06 3:24 a.m.10 views

CVE-2021-44380

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. SetTime param is not object. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS6.8AI score0.01145EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2024/12/12 8:0 a.m.2 views

posix-clock: Fix missing timespec64 check in pc_clock_settime()

...

5.5CVSS6.8AI score0.00233EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/09 3:48 a.m.3 views

SUSE CVE-2024-50195

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

5.5CVSS7.7AI score0.00233EPSS
Exploits0References24
SUSE CVE
SUSE CVE
added 2024/11/09 3:48 a.m.5 views

SUSE CVE-2024-50210

In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fix unbalanced locking in pcclocksettime If getclockdesc succeeds, it calls fget for the clockid's fd, and get the clk-rwsem read lock, so the error path should release the lock to make the lock balance...

5.5CVSS6.6AI score0.0017EPSS
Exploits0References20
OSV
OSV
added 2024/11/08 6:15 a.m.6 views

AZL-53420 CVE-2024-50195 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/11/08 6:15 a.m.8 views

AZL-53739 CVE-2024-50195 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/11/08 6:15 a.m.1 views

UBUNTU-CVE-2024-50195

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

5.5CVSS6.2AI score0.00233EPSS
Exploits0References57
Vulnrichment
Vulnrichment
added 2024/11/08 6:8 a.m.3 views

CVE-2024-50210 posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()

In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fix unbalanced locking in pcclocksettime If getclockdesc succeeds, it calls fget for the clockid's fd, and get the clk-rwsem read lock, so the error path should release the lock to make the lock balance...

7.6AI score0.0017EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/11/08 5:54 a.m.1 views

CVE-2024-50195 posix-clock: Fix missing timespec64 check in pc_clock_settime()

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

7.6AI score0.00233EPSS
Exploits0References8
NVD
NVD
added 2022/01/28 10:15 p.m.18 views

CVE-2021-44380

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. SetTime param is not object. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS0.01145EPSS
Exploits1References1
CVE
CVE
added 2022/01/28 9:42 p.m.67 views

CVE-2021-44380

The CVE-2021-44380 entry concerns Reolink RLC-410W (v3.0.0.136_20121102) with DoS via cgiserver.cgi JSON command parser. A specially crafted HTTP POST (JSON array) can trigger reboot when the parser mishandles SetTime (and related) parameters not being objects, leading to the camera process heart...

8.6CVSS7.4AI score0.01145EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/07/02 5:29 p.m.3 views

DEBIAN-CVE-2018-12896

An issue was discovered in the Linux kernel through 4.17.3. An Integer Overflow in kernel/time/posix-timers.c in the POSIX timer code is caused by the way the overrun accounting works. Depending on interval and expiry time values, the overrun can be larger than INTMAX, but the accounting is int...

5.5CVSS7.1AI score0.00639EPSS
Exploits1References1
Mageia
Mageia
added 2017/07/25 10:7 p.m.11 views

Updated cinnamon-settings-daemon packages fix security vulnerability

It was found that csd-datetime-setting SetDate DBUS function does not check the polkit authorization for the caller, Unlike SetTime...

2.1AI score
Exploits0References3
CNVD
CNVD
added 2016/11/01 12:0 a.m.1 views

Command Execution Vulnerability in Call Center System Year Parameter of Tibus Communications

The core of Tibco's call center system is a communication-based system for internal and external corporate communication. A command execution vulnerability exists in the year parameter of the Setset Time Communication Call Center System. The vulnerability file: /sysmaint/settime.php allows...

7.7AI score
Exploits0References1
Rows per page
Query Builder