Lucene search
+L

477 matches found

Tenable Nessus
Tenable Nessus
added 2020/10/26 12:0 a.m.41 views

openSUSE Security Update : opera (openSUSE-2020-1713)

This update for opera fixes the following issues : opera was updated to version 71.0.3770.228 - DNA-87466 Hide extensions icon is black in dark theme - DNA-88580 Implement searchintabs telemetry benchmark - DNA-88591 Allow to scroll down the Keyboards Shortcuts section with URL - DNA-88693 Random...

9.6CVSS6.8AI score0.03291EPSS
Exploits6References14
Fedora
Fedora
added 2020/09/28 12:15 a.m.41 views

[SECURITY] Fedora 33 Update: f2fs-tools-1.14.0-1.fc33

NAND flash memory-based storage devices, such as SSD, and SD cards, have been widely being used for ranging from mobile to server systems. Since they are known to have different characteristics from the conventional rotational disks,a file system, an upper layer to the storage device, should adap...

7.8CVSS0.5AI score0.0173EPSS
Exploits1
NVD
NVD
added 2020/09/24 6:15 p.m.21 views

CVE-2020-3396

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive SSD for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability...

7.2CVSS0.00324EPSS
Exploits0References1
Prion
Prion
added 2020/09/24 6:15 p.m.19 views

Design/Logic Flaw

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive SSD for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability...

6.9CVSS6.7AI score0.00324EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/24 6:2 p.m.26 views

CVE-2020-3396 Cisco IOS XE Software IOx Guest Shell USB SSD Namespace Protection Privilege Escalation Vulnerability

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive SSD for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability...

6.8CVSS6.8AI score0.00324EPSS
Exploits0References1
CVE
CVE
added 2020/09/24 6:2 p.m.67 views

CVE-2020-3396

The CVE-2020-3396 issue affects Cisco IOS XE Software IOx Guest Shell running on pluggable USB 3.0 SSDs. The root cause is that USB SSD control data is not stored on the device’s internal boot flash, enabling a physical attacker to remove the USB drive, alter or delete files, then reinsert it to ...

7.2CVSS6.6AI score0.00324EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/09/24 6:2 p.m.8 views

CVE-2020-3396 Cisco IOS XE Software IOx Guest Shell USB SSD Namespace Protection Privilege Escalation Vulnerability

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive SSD for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability...

6.8CVSS6.4AI score0.00324EPSS
Exploits0References1
Cisco
Cisco
added 2020/09/24 4:0 p.m.54 views

Cisco IOS XE Software IOx Guest Shell USB SSD Namespace Protection Privilege Escalation Vulnerability

A vulnerability in the file system on the pluggable USB 3.0 Solid State Drive SSD for Cisco IOS XE Software could allow an authenticated, physical attacker to remove the USB 3.0 SSD and modify sensitive areas of the file system, including the namespace container protections. The vulnerability...

6.8CVSS6.6AI score0.00324EPSS
Exploits0References1
0day.today
0day.today
added 2020/09/22 12:0 a.m.61 views

Jenkins 2.56 CLI Deserialization / Code Execution Exploit

An unauthenticated Java object deserialization vulnerability exists in the CLI component for Jenkins versions 2.56 and below. The readFrom method within the Command class in the Jenkins CLI remoting component deserializes objects received from clients without first checking / sanitizing the data...

4.5CVSS0.3AI score0.99679EPSS
Exploits46
NVD
NVD
added 2020/08/13 3:15 a.m.16 views

CVE-2020-8759

Improper access control in the installer for IntelR SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS6.7AI score0.00346EPSS
Exploits0References1
OSV
OSV
added 2020/08/13 3:15 a.m.5 views

CVE-2020-8759

Improper access control in the installer for IntelR SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS6.6AI score0.00346EPSS
Exploits0References1
Prion
Prion
added 2020/08/13 3:15 a.m.14 views

Improper access control

Improper access control in the installer for IntelR SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access...

4.6CVSS6.6AI score0.00346EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/08/13 2:9 a.m.23 views

CVE-2020-8759

Improper access control in the installer for IntelR SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7AI score0.00346EPSS
Exploits0References1
CVE
CVE
added 2020/08/13 2:9 a.m.46 views

CVE-2020-8759

CVE-2020-8759 : The Intel® SSD Data Center Tool (DCT) installer contains an improper access control vulnerability that could allow a privileged local user to escalate privileges. The issue affects Intel® SSD DCT before version 3.0.23. Intel’s advisory recommends updating to version 3.0.23 or late...

6.7CVSS6.6AI score0.00346EPSS
Exploits0References1Affected Software1
Intel
Intel
added 2020/08/11 12:0 a.m.23 views

Intel® SSD DCT Advisory

Summary: A potential security vulnerability in the Intel® SSD Data Center Tool DCT may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2020-8759 Description: Improper access control in the installer for...

6.7CVSS6.7AI score0.00346EPSS
Exploits0
NVD
NVD
added 2020/06/15 2:15 p.m.26 views

CVE-2020-0527

Insufficient control flow management in firmware for some IntelR Data Center SSDs may allow a privileged user to potentially enable information disclosure via local access...

4.4CVSS0.00331EPSS
Exploits0References1
CVE
CVE
added 2020/06/15 1:52 p.m.74 views

CVE-2020-0527

CVE-2020-0527 concerns firmware in Intel® Data Center SSDs with insufficient control flow management, enabling potential information disclosure by a privileged user with local access. Connected Intel advisory INTEL-SA-00266 lists affected products: Intel® SSD D3-S4510 Series; Intel® SSD DC P4510 ...

4.4CVSS4.1AI score0.00331EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/15 1:52 p.m.30 views

CVE-2020-0527

Insufficient control flow management in firmware for some IntelR Data Center SSDs may allow a privileged user to potentially enable information disclosure via local access...

4.6AI score0.00331EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2020/06/10 6:37 p.m.435 views

Critical Intel Flaws Fixed in Active Management Technology

Intel has released its June security updates, which address two critical vulnerabilities that, if exploited, can give unauthenticated attackers elevated privileges. The critical flaws exist in Intel’s Active Management Technology AMT, which is used for remote out-of-band management of personal...

7.5CVSS8.5AI score0.0552EPSS
Exploits1References29
Intel
Intel
added 2020/06/09 12:0 a.m.33 views

2020.1 IPU – Intel® SSD Advisory

Summary: A potential security vulnerability in Intel® Solid State Drive SSD products may allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVE ID: CVE-2020-0527 Description: Insufficient control flow management in...

4.4CVSS4.1AI score0.00331EPSS
Exploits0
Rows per page
Query Builder