Lucene search
K

13 matches found

CNNVD
CNNVD
added 2026/03/18 12:0 a.m.7 views

HTSlib 缓冲区错误漏洞

HTSlib is a C-language library file developed by samtools. Versions of HTSlib prior to 1.23.1, 1.22.2, and 1.21.1 contain a buffer error vulnerability. This vulnerability stems from a single-bit error in the crambytearraystopdecodechar function, which may lead to a heap buffer overflow...

8.1CVSS6.1AI score0.00336EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/05/14 12:0 a.m.3 views

CANTXSec: a Deterministic Intrusion Detection and Prevention System for CAN Bus Monitoring ECU Activations

Despite being a legacy protocol with various known security issues, Controller Area Network CAN still represents the de-facto standard for communications within vehicles, ships, and industrial control systems. Many research works have designed Intrusion Detection Systems IDSs to identify attacks ...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.6 views

The vulnerability of the ep93xx_div_recalc_rate() function in the arch/arm/mach-ep93xx/clock.c module of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the ep93xxdivrecalcrate function in the arch/arm/mach-ep93xx/clock.c module of the Linux operating system is related to a single-bit offset error. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protected...

7.1CVSS7.2AI score0.00244EPSS
Exploits0References20Affected Software6
Tenable Nessus
Tenable Nessus
added 2024/05/30 12:0 a.m.21 views

EulerOS 2.0 SP12 : sudo (EulerOS-SA-2024-1755)

According to the versions of the sudo package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on n...

7CVSS6.7AI score0.00541EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/02/29 12:0 a.m.116 views

OpenBSD OpenSSH <= 9.6 Authentication Bypass Vulnerability

OpenBSD OpenSSH is prone to an authentication bypass vulnerability. Note: This VT has been deprecated and is therefore no longer functional. Please see the solution tag for more information. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced...

7CVSS6.3AI score0.00661EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2023/12/27 8:0 a.m.5 views

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value) and because the values do not resist flips of a single bit.

...

7CVSS7AI score0.00541EPSS
Exploits1
OSV
OSV
added 2023/12/24 7:15 a.m.2 views

UBUNTU-CVE-2023-51767

OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks for authentication bypass because the integer value of authenticated in mmanswerauthpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim...

7CVSS6.8AI score0.00661EPSS
Exploits0References3
OSV
OSV
added 2023/12/22 4:15 p.m.53 views

CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...

7CVSS7.5AI score
Exploits0References13
NVD
NVD
added 2023/12/22 4:15 p.m.28 views

CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...

7CVSS0.00541EPSS
Exploits1References13
Debian CVE
Debian CVE
added 2023/12/22 12:0 a.m.233 views

CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...

7CVSS6.8AI score0.00541EPSS
Exploits1
Cvelist
Cvelist
added 2023/12/22 12:0 a.m.30 views

CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...

7.5AI score0.00541EPSS
Exploits1References9
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.5 views

The vulnerability in the kernel/bpf/verifier.c file of the Linux operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability in the kernel/bpf/verifier.c file of the Linux operating system is related to a single-bit offset error. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

6.2CVSS7AI score0.00577EPSS
Exploits0References32Affected Software6
OSV
OSV
added 2014/06/05 12:0 a.m.3 views

UBUNTU-CVE-2014-3917

kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIGAUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel memory or cause a denial of service OOPS via a large value of a syscall number...

3.3CVSS6.4AI score0.0036EPSS
Exploits0References13
Rows per page
Query Builder