Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

Azure Linux 3.0 Security Update: glibc (CVE-2023-4911)

The version of glibc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4911 advisory. - A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLE...

7.8CVSS7.4AI score0.81422EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.37 views

EulerOS Virtualization 2.11.1 : glibc (EulerOS-SA-2024-1398)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulti...

7.8CVSS7.3AI score0.81422EPSS
Exploits28References5
Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.39 views

CentOS 8 : glibc (CESA-2023:5455)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:5455 advisory. - A flaw was found in glibc. When the getaddrinfo function is called with the AFUNSPEC address family and the system is configured with no-aaaa mode vi...

7.8CVSS7.3AI score0.81422EPSS
Exploits29References5
Broadcom
Broadcom
added 2024/01/17 12:0 a.m.38 views

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS7.6AI score0.81422EPSS
Exploits28
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.32 views

RHEL 8 : Red Hat Virtualization Host 4.4.z SP 1 (RHSA-2024:0033)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0033 advisory. The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-nod...

7.8CVSS7AI score0.81422EPSS
Exploits28References5
Metasploit
Metasploit
added 2023/12/20 7:49 p.m.545 views

Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)

A buffer overflow exists in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue allows an local attacker to use maliciously crafted GLIBCTUNABLES when launching binaries with SUID permission to execute code in the context of the root user...

7.8CVSS7.2AI score0.81422EPSS
Exploits28
Mageia
Mageia
added 2023/10/11 9:4 p.m.63 views

Updated glibc packages fix a security vulnerability

The updated packages fix a security vulnerability: A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when...

7.8CVSS7.4AI score0.81422EPSS
Exploits28References3
Tenable Nessus
Tenable Nessus
added 2023/10/10 12:0 a.m.55 views

Oracle Linux 8 : glibc (ELSA-2023-5455)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-5455 advisory. - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode. - CVE-2023-4813: potential use-after-free in gaihinet RHEL-2435. Tenable has...

7.8CVSS7AI score0.81422EPSS
Exploits29References5
Tenable Nessus
Tenable Nessus
added 2023/10/06 12:0 a.m.52 views

Oracle Linux 9 : glibc (ELSA-2023-12854)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12854 advisory. 2.34-60.0.3 - CVE-2023-4911: tunables: Terminate immediately if end of input is reached Reviewed by: Jose E. Marchesi Tenable has extracted the preceding...

7.8CVSS6.9AI score0.81422EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
added 2023/10/06 12:0 a.m.113 views

Rocky Linux 8 : glibc (RLSA-2023:5455)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:5455 advisory. - A flaw was found in glibc. When the getaddrinfo function is called with the AFUNSPEC address family and the system is configured with no-aaaa mode via...

7.8CVSS7.3AI score0.81422EPSS
Exploits29References9
Tenable Nessus
Tenable Nessus
added 2023/10/05 12:0 a.m.51 views

Oracle Linux 9 : glibc (ELSA-2023-12850)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12850 advisory. 2.34-60.0.3 - CVE-2023-4911: tunables: Terminate immediately if end of input is reached Reviewed by: Jose E. Marchesi Tenable has extracted the preceding...

7.8CVSS6.9AI score0.81422EPSS
Exploits28References2
Tenable Nessus
Tenable Nessus
added 2023/10/04 12:0 a.m.47 views

GLSA-202310-03 : glibc: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202310-03 glibc: Multiple vulnerabilities - An issue was discovered in the GNU C Library glibc 2.36. When the syslog function is passed a crafted input string larger than 1024 bytes, it reads uninitialized memory from the heap and...

7.8CVSS7.3AI score0.81422EPSS
Exploits32References8
NVD
NVD
added 2023/10/03 6:15 p.m.26 views

CVE-2023-4911

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8AI score0.81422EPSS
Exploits28References30
Prion
Prion
added 2023/10/03 6:15 p.m.34 views

Buffer overflow

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

4.3CVSS8AI score0.81422EPSS
Exploits28References25Affected Software15
Vulnrichment
Vulnrichment
added 2023/10/03 5:25 p.m.13 views

CVE-2023-4911 Glibc: buffer overflow in ld.so leading to privilege escalation

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8AI score0.81422EPSS
Exploits28References9
OSV
OSV
added 2023/10/03 5:25 p.m.44 views

CVE-2023-4911 Glibc: buffer overflow in ld.so leading to privilege escalation

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS7.2AI score0.81422EPSS
Exploits28References34
Cvelist
Cvelist
added 2023/10/03 5:25 p.m.40 views

CVE-2023-4911 Glibc: buffer overflow in ld.so leading to privilege escalation

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8.1AI score0.81422EPSS
Exploits28References9
RedhatCVE
RedhatCVE
added 2023/10/03 5:24 p.m.191 views

CVE-2023-4911

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

7.8CVSS8AI score0.81422EPSS
Exploits28References6
exploitpack
exploitpack
added 2014/05/16 12:0 a.m.26 views

Nagios Plugins check_dhcp 2.0.1 - Arbitrary Option File Read

Nagios Plugins checkdhcp 2.0.1 - Arbitrary Option File Read ============================================= - Release date: 15.05.2014 - Discovered by: Dawid Golunski - Severity: Moderate ============================================= I. VULNERABILITY ------------------------- checkdhcp - Nagios...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/05/19 12:0 a.m.32 views

dqs 3.2.7 local root exploit.

Subject: dqs 3.2.7 local root exploit. Hello. DESCRIPTION: I found a buffer overflow vunerability on the /usr/bin/dsh dqs 3.2.7 package. I really don't know if this bug was discovered already. if thats right, then sorry =. If a long line on the first argument is gived, the program gives a SIGSEGV...

0.1AI score
Exploits0
Rows per page
Query Builder