Lucene search
K

4004 matches found

Cvelist
Cvelist
added 2021/04/09 5:39 p.m.24 views

CVE-2021-25376

An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in certain mailbox in plain text when STARTTLS negotiation is failed...

3.1CVSS5.5AI score0.00786EPSS
Exploits0References2
CVE
CVE
added 2021/04/09 5:39 p.m.65 views

CVE-2021-25376

CVE-2021-25376 affects Samsung Email prior to version 6.1.41.0 due to an improper synchronization logic, which can cause leakage of messages in plaintext in certain mailboxes when STARTTLS negotiation fails. The vulnerability is described in multiple sources as a leak in plaintext under a failed ...

5.3CVSS5.2AI score0.00786EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2021/04/06 8:15 p.m.25 views

CVE-2021-21404

Syncthing is a continuous file synchronization program. In Syncthing before version 1.15.0, the relay server strelaysrv can be caused to crash and exit by sending a relay message with a negative length field. Similarly, Syncthing itself can crash for the same reason if given a malformed message...

7.5CVSS7AI score0.0197EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2021/04/06 1:32 p.m.15 views

sanlock bug fix and enhancement update

The sanlock packages provide a shared storage lock manager. Hosts with shared access to a block device or a file can use sanlock to synchronize their activities. VDSM and libvirt use sanlock to synchronize access to shared devices or files. Bug Fixes and Enhancements: Support 50 concurrent...

0.7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.6 views

The vulnerability of the get_old_root file in the fs/btrfs/ctree.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the getoldroot file in the fs/btrfs/ctree.c module of the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.5AI score0.00267EPSS
Exploits0References33Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.5 views

The vulnerability in the implementation of the usbip_sockfd_store function in Linux kernel allows a hacker to induce a service failure.

The vulnerability in the implementation of the usbipsockfdstore function in Linux operating system kernels is related to the use of a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause service failures...

4.7CVSS6.6AI score0.00258EPSS
Exploits0References25Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/04/06 12:0 a.m.5 views

The vulnerability in the fs/io_uring.c file of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the fs/iouring.c file in the Linux operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00279EPSS
Exploits0References20Affected Software5
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.8 views

The vulnerability of the lock_fdc() function in Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the lockfdc function in Linux operating systems is related to the use of a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.6CVSS6.7AI score0.00227EPSS
Exploits0References13Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.9 views

The vulnerability of the X server component of the SDDM screen manager, related to simultaneous execution using a shared resource with incorrect synchronization, allows attackers to gain access to confidential data and compromise its integrity.

The vulnerability of the X server component of the SDDM screen manager is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to access confidential data and compromise its integrity...

6.3CVSS6.9AI score0.00415EPSS
Exploits1References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.7 views

The vulnerability of the Mojo messaging library in Google Chrome browsers allows attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the Mojo messaging library in Google Chrome browsers is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause...

5.1CVSS7.9AI score0.01365EPSS
Exploits0References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.5 views

The vulnerability of the GPU Display Driver’s driver lies in the simultaneous execution using shared resources with improper synchronization, allowing a hacker to cause service failure.

The vulnerability of the GPU Display Driver’s driver lies in the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.5AI score0.00272EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.7 views

The vulnerability of the touch_pmd() function in Linux operating systems allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the touchpmd function in Linux operating systems is related to the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failur...

7CVSS6.8AI score0.02841EPSS
Exploits9References36Affected Software2
OPENSUSE Linux
OPENSUSE Linux
added 2021/03/20 12:0 a.m.27 views

Security update for connman (moderate)

openSUSE Security Update: Security update for connman Announcement ID: openSUSE-SU-2021:0452-1 Rating: moderate References: 1181751 Cross-References: CVE-2021-26675 CVE-2021-26676 CVSS scores: CVE-2021-26675 NVD : 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-26676 NVD : 6.5...

8.8CVSS8.4AI score0.01301EPSS
Exploits0References1
OSV
OSV
added 2021/03/19 3:18 p.m.11 views

SUSE-SU-2021:0906-1 Security update for SUSE Manager Server 4.1

This update fixes the following issues: cobbler: - Fix string replacement for @@xyz@@ - Better performing string replacements grafana-formula: - Set supported to false for unsupported systems bsc1182001 - Add SLES 15 SP3 and openSUSE Leap 15.3 to supported versions mgr-libmod: - Fix 'listmodules'...

9.3CVSS7.8AI score0.85001EPSS
Exploits12References34
Positive Technologies
Positive Technologies
added 2021/03/15 12:0 a.m.11 views

PT-2021-2611 · Linux +8 · Linux Kernel +8

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.11.11 Description: The issue is related to errors in synchronization within the netfilter subsystem of the Linux kernel. Exploitation of this issue can allow an attacker to cause a denial of service, leading t...

9.8CVSS7.4AI score0.88106EPSS
Exploits233References1444
BDU FSTEC
BDU FSTEC
added 2021/03/15 12:0 a.m.4 views

The vulnerability of the device driver update application, Intel Driver and Support Assistant, arises due to synchronization errors when using a shared resource, allowing an attacker to cause a service failure.

The vulnerability of the device driver update application, Intel Driver and Support Assistant, arises due to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to cause service failure...

5.9CVSS5.5AI score0.00356EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/03/05 12:0 a.m.5 views

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in internment crate before 0.4.2 for Rust, which stems from an unconditional implementation of Sync that results in memory-corrupted data contention. No detailed vulnerability...

9.8CVSS5.5AI score0.01167EPSS
Exploits0References1
Fedora
Fedora
added 2021/03/04 8:11 p.m.68 views

[SECURITY] Fedora 33 Update: isync-1.4.1-1.fc33

mbsync is a command line application which synchronizes mailboxes. Currently Maildir and IMAP4 mailboxes are supported. New messages, message deletions and flag changes can be propagated both ways. mbsync is suitable for use in IMAP-disconnected mode...

7.4CVSS1.2AI score0.0188EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2021/03/04 12:0 a.m.6 views

The vulnerability in the socket implementation with address mapping AF_VSOCK in Linux kernel allows attackers to escalate their privileges.

The vulnerability in the socket implementation with AFVSOCK addressing net/vmwvsock/afvsock.c in the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7CVSS6.5AI score0.01602EPSS
Exploits1References21Affected Software6
Citrix
Citrix
added 2021/03/03 12:0 a.m.7 views

High Availability Synchronization on NetScaler Appliance

This article contains information about synchronization between appliances that are part of a high availability setup. Background High availability synchronization is the process by which configurations are kept identical between the appliances. It is not the process that runs individual commands...

7AI score
Exploits0
Rows per page
Query Builder