Lucene search
+L

76 matches found

OSV
OSV
added 2024/05/01 1:15 p.m.10 views

UBUNTU-CVE-2024-27065

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: do not compare internal table flags on updates Restore skipping transaction if table update does not modify flags...

7.8CVSS6.1AI score0.00263EPSS
Exploits0References31
Debian CVE
Debian CVE
added 2024/05/01 1:4 p.m.15 views

CVE-2024-27065

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: do not compare internal table flags on updates Restore skipping transaction if table update does not modify flags...

7.8CVSS7.3AI score0.00263EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/04/04 12:33 a.m.40 views

CVE-2024-26759

In the Linux kernel, the following vulnerability has been resolved: mm/swap: fix race when skipping swapcache When skipping swapcache for SWPSYNCHRONOUSIO, if two or more threads swapin the same entry at the same time, they get different pages A, B. Before one thread T0 finishes the swapin and...

5.5CVSS7AI score0.00252EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/02/16 7:52 p.m.85 views

CVE-2023-52160

A flaw was found in wpasupplicant's implementation of PEAP. This issue may allow an attacker to skip the second phase of authentication when the target device has not been properly configured to verify the authentication server. By skipping the second phase of authentication, it’s easier for an...

6.5CVSS6.5AI score0.01177EPSS
Exploits0References4
CVE
CVE
added 2023/09/01 10:30 a.m.2601 views

CVE-2023-4647

GitLab CVE-2023-4647 affects all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 before 16.2.5, and all versions starting from 16.3 before 16.3.1, where the projects API pagination can be skipped, potentially causing DoS on affected instances. Root cause: flaw in handli...

7.5CVSS5.8AI score0.00612EPSS
Exploits0References1Affected Software1
Redos
Redos
added 2023/06/19 12:0 a.m.25 views

ROS-20230619-04

A vulnerability in the OpenSSL cryptographic library is related to ignoring invalid policy certificates in leaf certificates that are skipped for this certificate. Exploitation of the of the vulnerability could allow an attacker to intentionally assert invalid certificate policies to completely...

5.3CVSS6.7AI score0.01583EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:51 a.m.4 views

SUSE CVE-2011-2929

The template selection functionality in actionpack/lib/actionview/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.10 and 3.1.x before 3.1.0.rc6 does not properly handle glob characters, which allows remote attackers to render arbitrary views via a crafted URL, related to a "filter skipping...

5CVSS6.6AI score0.01813EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.4 views

SUSE CVE-2015-2318

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

8.1CVSS6.7AI score0.0197EPSS
Exploits0References3
Wired Threat Level
Wired Threat Level
added 2022/12/24 2:0 p.m.18 views

Russians Hacked JFK Airport Taxi Dispatch in Line-Skipping Scheme

Plus: An offensive US hacking operation, swatters hacking Ring cameras, a Netflix password-sharing crackdown, and more...

4.2AI score
Exploits0
Jake Archibald's Blog
Jake Archibald's Blog
added 2022/12/19 1:0 a.m.13 views

Getting the correct HTML codecs parameter for an AV1 video

This post is mostly for my own reference, but I couldn't find a good guide elsewhere, so here we go! I wanted to embed a screencast in a web page, and I wanted it to be as efficient as possible. To achieve this, I created two version of the video, and embedded it like this: The MP4 version uses t...

6.7AI score
Exploits0
OSV
OSV
added 2022/11/25 1:0 p.m.11 views

OSV-2022-1209 Heap-buffer-overflow in OT::hb_ot_apply_context_t::skipping_iterator_t::next

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53714 Crash type: Heap-buffer-overflow READ 4 Crash state: OT::hbotapplycontextt::skippingiteratort::next OT::Layout::GSUBimpl::Ligature::apply bool OT::hbacceleratesubtablescontextt::applytoOT::Layout::GSUBimpl::Liga...

7.2AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/01/25 2:15 p.m.22 views

CVE-2022-23035

Insufficient cleanup of passed-through device IRQs The management of IRQs associated with physical devices exposed to x86 HVM guests involves an iterative operation in particular when cleaning up after the guest's use of the device. In the case where an interrupt is not quiescent yet at the time...

4.7CVSS6.6AI score0.00352EPSS
Exploits0References3
OSV
OSV
added 2022/01/13 8:54 p.m.37 views

GO-2021-0264 Panic when opening certain archives in archive/zip

Previously, opening a zip with Reader.Open could result in a panic if the zip contained a file whose name was exclusively made up of slash characters or ".." path elements. Open could also panic if passed the empty string directly as an argument. Now, any files in the zip whose name could not be...

7.5CVSS7.6AI score0.03051EPSS
Exploits0References4
Code423n4
Code423n4
added 2021/08/25 12:0 a.m.9 views

getMarketInfo skipResults does not work

Handle cmichel Vulnerability details The RCFactory.getMarketInfo function uses the same counter resultNumber for the result arrays' index. This counter is increased if skipResults is set, and the arrays are therefore not indexed at zero. if resultNumber skipResults // @audit increases the array...

6.8AI score
Exploits0
OpenVAS
OpenVAS
added 2021/07/21 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2021:2404-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.1AI score0.0865EPSS
Exploits2References2
Hacker One
Hacker One
added 2020/05/24 6:37 p.m.14 views

ownCloud: File System Monitoring Queue Overflow

in the source code "owncloud/client" in the file "src/gui/folderwatcherlinux.cpp" in the function "void FolderWatcherPrivate :: inotifyRegisterPath const QString & path" by calling "inotifyaddwatch" the file paths are set for monitoring cpp int wd = inotifyaddwatchfd, path.toUtf8.constData,...

0.9AI score
Exploits0
NVD
NVD
added 2020/01/29 10:15 p.m.13 views

CVE-2013-3316

Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass due to the server skipping checks for URLs containing a ".jpg"...

10CVSS9.5AI score0.04769EPSS
Exploits1References1
Veeam
Veeam
added 2018/09/19 12:0 a.m.22 views

Dell PowerPath - Veeam Agent for Linux Limitations

Challenge If a Linux server has Dell PowerPath devices attached, all the underlying block devices representing the network paths to the server are skipped from processing. This will result in the error "No objects to backup" or PowerPath devices missing from the backup. If non-PowerPath devices a...

6.8AI score
Exploits0Affected Software1
Prion
Prion
added 2018/01/08 7:29 p.m.20 views

Design/Logic Flaw

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

6.8CVSS6.7AI score0.0197EPSS
Exploits0References8Affected Software2
OSV
OSV
added 2018/01/08 7:29 p.m.2 views

DEBIAN-CVE-2015-2318

The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue...

8.1CVSS8.4AI score0.0197EPSS
Exploits0References1
Rows per page
Query Builder