CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1349 matches found

UbuntuCve•added 2017/10/09 12:0 a.m.•23 views

CVE-2017-13721

In X.Org Server aka xserver and xorg-server before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session...

4.7CVSS6.8AI score0.00357EPSS

Exploits0References3

OSV•added 2017/10/09 12:0 a.m.•1 views

UBUNTU-CVE-2017-13721

4.7CVSS6.7AI score0.00357EPSS

Exploits0References4

Broadcom•added 2017/08/25 12:0 a.m.•7 views

BSA-2017-374

Security Advisory ID : BSA-2017-374 Component : Linux Kernel Revision : 2.0: Interim The doanonymouspage function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the hea...

7.2CVSS7.5AI score0.00716EPSS

Exploits1

CNVD•added 2017/08/17 12:0 a.m.•1 views

FreeBSD Jails Shared Memory Handling Local Security Bypass Vulnerability

FreeBSD is a type of UNIX operating system, an important branch of Unix that evolved from BSD, 386BSD and 4.4BSD. FreeBSD suffers from a local security bypass vulnerability that can be exploited by an attacker to bypass certain security restrictions and perform unauthorized operations. This may...

6.6AI score

Exploits0References1

Tenable Nessus•added 2017/08/08 12:0 a.m.•43 views

EulerOS 2.0 SP1 : openssh (EulerOS-SA-2017-1138)

According to the version of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is...

7.8CVSS7.1AI score0.01281EPSS

Exploits1References2

Oracle linux•added 2017/08/07 12:0 a.m.•26 views

tigervnc and fltk security, bug fix, and enhancement update

fltk 1.3.4-1 - Re-base to 1.3.4 + sync with Fedora tigervnc 1.8.0-1 - Update to 1.8.0 Resolves: bz1388620 1.7.90-2 - Make RandR callbacks optional Resolves: bz1444948 1.7.90-1 - Update to 1.7.90 Resolves: bz1388620 1.7.1-3 - Delete underlying ssecurity in SSecurityVeNCrypt CCVE-2017-7392 Resolves...

9.8CVSS8AI score0.04247EPSS

Exploits1

0day.today•added 2017/08/01 12:0 a.m.•121 views

iOS / macOS - xpc_data Objects Sandbox Escape Privelege Escalation Exploit

Exploit for multiple platform in category local exploits Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1247 When XPC serializes large xpcdata objects it creates mach memory entry ports to represent the memory region then transfers that region to the receiving process by sendin...

6.8CVSS8.7AI score0.06726EPSS

Exploits4

Fedora•added 2017/07/12 1:54 a.m.•13 views

[SECURITY] Fedora 24 Update: libdb-5.3.28-24.fc24

The Berkeley Database Berkeley DB is a programmatic toolkit that provides embedded database support for both traditional and client/server applications. The Berkeley DB includes B+tree, Extended Linear Hashing, Fixed and Variable-length record access methods, transactions, locking, logging, share...

0.9AI score

Exploits0

myhack58•added 2017/06/28 12:0 a.m.•90 views

Analysis Firefox the shared array buffer of the UAF exploit-vulnerability warning-the black bar safety net

This article explores the structured cloning algorithm to handle the shared array buffer occurs when a reference leakage problems. While the lack of overflow checking, can be exploited to execute arbitrary code. Is divided into the following sections: Background, vulnerability, summary We exploit...

0.6AI score

Exploits0

CNVD•added 2017/05/24 12:0 a.m.•3 views

Google Android Qualcomm Shared Memory Driver Elevation of Privilege Vulnerability

Google Android is a Linux-based open source operating system developed by Google and the Open Handset Alliance OHA, and the Qualcomm Shared Memory Driver is a Qualcomm-developed shared memory driver that is used in the... The Qualcomm Shared Memory Driver is a Qualcomm-developed shared memory...

7.6CVSS8AI score0.01795EPSS

Exploits0References1

Broadcom•added 2017/05/17 12:0 a.m.•4 views

BSA-2017-275

Security Advisory ID : BSA-2017-275 Component : OpenSSH Revision : 2.0: Final The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges ...

7.8CVSS9.1AI score0.01281EPSS

Exploits1

NVD•added 2017/05/12 3:29 p.m.•24 views

CVE-2016-10290

An elevation of privilege vulnerability in the Qualcomm shared memory driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...

7.6CVSS6.4AI score0.01795EPSS

Exploits0References2

NVD•added 2017/05/12 3:29 p.m.•15 views

CVE-2016-10296

An information disclosure vulnerability in the Qualcomm shared memory driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions:...

4.7CVSS3.7AI score0.00864EPSS

Exploits0References1

OSV•added 2017/05/12 3:29 p.m.•1 views

CVE-2016-10296

4.7CVSS5.8AI score

Exploits0References1

OSV•added 2017/05/12 3:29 p.m.•1 views

CVE-2016-10290

7CVSS6.1AI score0.01795EPSS

Exploits0References2

CVE•added 2017/05/12 3:0 p.m.•45 views

CVE-2016-10290

CVE-2016-10290 is an elevation-of-privilege issue in the Qualcomm Shared Memory Driver used on Android. The vulnerability could allow a local malicious application to execute arbitrary code in the kernel context by exploiting the shared memory driver. The entry specifies that exploitation is loca...

7.6CVSS6.6AI score0.01795EPSS

Exploits0References2Affected Software1