CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2022/09/14 12:0 a.m.•22 views

Siemens Simcenter Femap and Parasolid Out-of-Bounds Reading Vulnerability (CNVD-2022-62989)

7.8CVSS2.1AI score0.00062EPSS

CNVD•added 2022/09/14 12:0 a.m.•25 views

Siemens Simcenter Femap and Parasolid Out-of-Bounds Writing Vulnerability (CNVD-2022-62979)

7.8CVSS2.2AI score0.00062EPSS

BDU FSTEC•added 2022/09/07 12:0 a.m.•1 views

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model, allowing a perpetrator to gain access to read data and modify it.

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify...

6.6CVSS6.9AI score0.00676EPSS

BDU FSTEC•added 2022/09/07 12:0 a.m.•1 views

6.8CVSS6.9AI score0.01331EPSS

The Hacker News•added 2022/09/05 2:29 p.m.•19 views

What Is Your Security Team Profile? Prevention, Detection, or Risk Management

Not all security teams are born equal. Each organization has a different objective. In cybersecurity, adopting a proactive approach is not just a buzzword. It actually is what makes the difference between staying behind attackers and getting ahead of them. And the solutions to do that do exist!...

0.2AI score

NVD•added 2022/08/31 4:15 p.m.•18 views

CVE-2022-1975

There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space...

5.5CVSS0.00023EPSS

OSV•added 2022/08/31 4:15 p.m.•1 views

DEBIAN-CVE-2022-1975

There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space...

5.5CVSS6.2AI score0.00023EPSS

Debian CVE•added 2022/08/31 3:32 p.m.•35 views

CVE-2022-1975

There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space...

5.5CVSS5.4AI score0.00023EPSS

BDU FSTEC•added 2022/08/31 12:0 a.m.•1 views

6.6CVSS6.9AI score0.01466EPSS

BDU FSTEC•added 2022/08/31 12:0 a.m.•1 views

6.6CVSS6.9AI score0.01466EPSS

OSV•added 2022/08/29 3:15 p.m.•2 views

AZL-10792 CVE-2022-1199 affecting package kernel for versions less than 5.15.67.1-4

A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability...

7.5CVSS6.7AI score0.00419EPSS

OSV•added 2022/08/29 3:15 p.m.•2 views

DEBIAN-CVE-2022-1199

7.5CVSS6.6AI score0.00419EPSS

OSV•added 2022/08/29 3:15 p.m.•30 views

CVE-2022-1199

7.5CVSS7.8AI score0.00419EPSS

Exploits0References7

Prion•added 2022/08/29 3:15 p.m.•20 views

Design/Logic Flaw

A use-after-free vulnerabilitity was discovered in drivers/net/hamradio/6pack.c of linux that allows an attacker to crash linux kernel by simulating ax25 device using 6pack driver from user space...

1.7CVSS6AI score0.00134EPSS

Exploits1References4Affected Software2

The Hacker News•added 2022/08/18 9:20 a.m.•61 views

Hackers Using Bumblebee Loader to Compromise Active Directory Services

The malware loader known as Bumblebee is being increasingly co-opted by threat actors associated with BazarLoader, TrickBot, and IcedID in their campaigns to breach target networks for post-exploitation activities. "Bumblebee operators conduct intensive reconnaissance activities and redirect the...

1.1AI score

BDU FSTEC•added 2022/08/10 12:0 a.m.•3 views

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system, an imitation modeling solution for Oracle Financial Services Applications, relates to code errors that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model application relates to code errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of...

7.1CVSS7.3AI score0.01358EPSS

BDU FSTEC•added 2022/08/02 12:0 a.m.•1 views

7.3CVSS6.9AI score0.01377EPSS

Hive Pro Threat Advisories•added 2022/07/29 5:56 a.m.•20 views

Hive Pro Welcomes Pierre Noel as New Chief Information Security Officer

New CISO to Support Growth Milpitas, California, July 28, 2022 -- Hive Pro, a cyber security company specializing in Cyber Threat Exposure Management, has appointed Pierre Noel as its new Chief Information Security Officer CISO. He has been hired with the vision of supporting growth in the compan...

0.1AI score

The Hacker News•added 2022/07/26 4:1 p.m.•35 views

4 Steps the Financial Industry Can Take to Cope With Their Growing Attack Surface

The financial services industry has always been at the forefront of technology adoption, but the 2020 pandemic accelerated the widespread use of mobile banking apps, chat-based customer service, and other digital tools. Adobe's 2022 FIS Trends Report, for instance, found that more than half of th...

0.2AI score