Lucene search
K

36 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:24 p.m.4 views

CVE-2020-11199

HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice ...

5.5CVSS5.7AI score0.00202EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2026-4947

Name of the Vulnerable Software and Affected Versions xrdp versions prior to 0.10.5 Description xrdp contains an unauthenticated stack-based buffer overflow. The issue occurs during the pre-authentication Secure Settings Exchange via Client Info PDU T1210 due to improper bounds checking in the xr...

9.8CVSS8.2AI score0.01318EPSS
Exploits0References74
BDU FSTEC
BDU FSTEC
added 2024/07/12 12:0 a.m.7 views

The vulnerability of the microprogrammed software of the biometric terminals ZkTeco ProFace X, Smartec ST-FR043, and Smartec ST-FR041ME lies in buffer overflow attacks on the glass components, allowing intruders to execute arbitrary codes.

The vulnerability of microprogrammed software in biometric terminals ZkTeco ProFace X, Smartec ST-FR043, and Smartec ST-FR041ME stems from buffer overflows in the stack due to the absence of protection mechanisms like Canary and PIE. Exploiting this vulnerability allows an attacker operating...

10CVSS6.4AI score0.00949EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/04/17 12:0 a.m.13 views

PT-2025-40198

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to the handling of stack protectors during the boot process. Specifically, the issue arises from discrepancies in the stack canary values when...

5.5CVSS5.5AI score0.00133EPSS
Exploits0
GithubExploit
GithubExploit
added 2023/04/14 3:41 p.m.6 views

Exploit for CVE-2023-28615

CVE-2023-29929: Remote "Instakill" DoS in Kemp LoadMaster via...

7.5CVSS9.9AI score0.00672EPSS
Exploits2
NVD
NVD
added 2021/03/17 6:15 a.m.23 views

CVE-2020-11199

HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice ...

5.5CVSS0.00202EPSS
Exploits0References1
Prion
Prion
added 2021/03/17 6:15 a.m.25 views

Improper access control

HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice ...

2.1CVSS5.6AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2021/03/17 6:0 a.m.96 views

CVE-2020-11199

CVE-2020-11199 is linked to Qualcomm’s HLOS component and involves an information-disclosure vulnerability caused by improper access control. The issue allows a local attacker to access the EL3 stack canary by simply mapping the imem region, leading to exposure of sensitive information across mul...

5.5CVSS5.5AI score0.00202EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/03/17 6:0 a.m.33 views

CVE-2020-11199

HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice ...

5.6AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2019/10/29 7:15 p.m.29 views

CVE-2019-15683

TurboVNC server code contains stack buffer overflow vulnerability in commit prior to cea98166008301e614e0d36776bf9435a536136e. This could possibly result into remote code execution, since stack frame is not protected with stack canary. This attack appear to be exploitable via network connectivity...

9.8CVSS10AI score0.19387EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/05/22 7:29 p.m.365 views

CVE-2018-12886

stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection GCC 4.1 through 8 under certain circumstances generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the...

8.1CVSS7.2AI score0.02171EPSS
Exploits1References2
OSV
OSV
added 2019/05/22 7:29 p.m.35 views

CVE-2018-12886

stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection GCC 4.1 through 8 under certain circumstances generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the...

8.1CVSS7.1AI score
Exploits0References2
Cvelist
Cvelist
added 2019/05/22 6:42 p.m.38 views

CVE-2018-12886

stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection GCC 4.1 through 8 under certain circumstances generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the...

7.8AI score0.02171EPSS
Exploits1References2
OSV
OSV
added 2017/12/07 7:29 p.m.3 views

DEBIAN-CVE-2017-1000410

The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse messages. This info leak is a result of uninitialized stack variables that may be returned to an attacker in their uninitialized state. B...

7.5CVSS8AI score0.04252EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2015/01/13 12:0 a.m.17 views

Apple Mac OSX 10.10 - BlueTooth BlueToothHCIChangeLocalName Crash (PoC)

/ crash-issue2.c: Written for Mac OS X Yosemite 10.10 by @rpaleari and @joystick. Triggers a panic overwriting a stackcanary. gcc -Wall -o crash-issue2,.c -framework IOKit / include include include include include include struct BluetoothCall uint64t args7; uint64t sizes7; uint64t index; ; int...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

NovaSTOR NovaNET <= 12.0 remote SYSTEM exploit

No description provided by source. source: http://www.securityfocus.com/bid/39693/info NovaStor NovaNET is prone to code-execution, denial-of-service, and information-disclosure vulnerabilities. An attacker can exploit these issues to execute arbitrary code, access sensitive information, or crash...

7.1AI score
Exploits0
Rows per page
Query Builder