933 matches found
GSD-2023-1002401 s390/decompressor: specify __decompress() buf len to avoid overflow
s390/decompressor: specify decompress buf len to avoid overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.232 by commit...
PT-2023-35684 · Git +1 · Wireshark
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A crash occurred due to an unknown read issue. The crash state involves several functions: dissect oran c section, dissect oran, and call dissector work...
PT-2023-17490 · Adsp · Adsp
Name of the Vulnerable Software and Affected Versions: adsp affected versions not specified Description: The issue is related to a logic error that could lead to a local escalation of privilege. This escalation requires System execution privileges and does not need user interaction for...
PT-2023-13823 · Google · Automotive Android Os
Name of the Vulnerable Software and Affected Versions: Automotive Android OS affected versions not specified Description: The issue is related to memory corruption in Automotive Android OS due to improper validation of an array index. This can lead to unspecified consequences. Recommendations: At...
Lucee Authenticated Scheduled Job Code Execution Exploit
This Metasploit module can be used to execute a payload on Lucee servers that have an exposed administrative web interface. It's possible for an administrator to create a scheduled job that queries a remote ColdFusion file, which is then downloaded and executed when accessed. The payload is...
`maligned::align_first` causes incorrect deallocation
maligned::alignfirst manually allocates with an alignment larger than T, and then uses Vec::fromrawparts on that allocation to get a Vec. GlobalAlloc::dealloc requires that the layout argument must be the same layout that was used to allocate that block of memory. When deallocating, Box and Vec m...
PT-2023-10659 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The provided information does not contain details about a specific vulnerability. It appears to be a rejection notice for a candidate number, indicating that it was not...
PT-2023-10780 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The provided information does not contain details about a specific vulnerability. It appears to be a rejection notice for a candidate number, indicating that it was not...
PT-2023-10667 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The provided information does not contain details about a specific vulnerability. It appears to be a rejection notice for a candidate number, indicating that it was not...
PT-2023-10715 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about a specific vulnerability. It appears to be a notification about a rejected candidate...
plugin: Lack of authentication mechanism in Git Plugin webhook
A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit...
PT-2023-36051 · Git +1 · Radare2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read crash. Technical details about the crash include the crash type being a heap-buffer-overflow read of ...
PT-2023-10379 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The provided information does not describe a vulnerability but rather a rejected candidate number. There is no general information about an issue, estimated number of...
PT-2023-10425 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The provided information does not contain details about a specific vulnerability. It appears to be a notification about a rejected candidate number from the National...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. This type of vulnerability is a frequent attack vector for malicious cyber actors and poses a significant risk to the federal enterprise. Note: To view the newly added...
PT-2023-1464 · Microsoft · Windows Fax Service +1
Name of the Vulnerable Software and Affected Versions: Windows Fax Service affected versions not specified Description: The issue is related to insufficient input validation in the Windows Fax Service, which can be exploited by remote attackers to execute arbitrary code on the system. This allows...
PT-2023-1422 · Microsoft · Power Bi Report Server
Name of the Vulnerable Software and Affected Versions: Power BI Report Server affected versions not specified Description: The issue is related to errors in the user interface's representation of information. It may allow a remote attacker to conduct spoofing attacks. Recommendations: At the...
plugin: Lack of authentication mechanism in Git Plugin webhook
A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit...
plugin: missing permission checks in Blue Ocean Plugin
Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server...
plugin: CSRF vulnerability in Blue Ocean Plugin
A cross-site request forgery CSRF vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server...