10 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the possibility that specially crafted file system images may contain forged lengths, potentially leading to...
Acronis Snap Deploy 代码问题漏洞
Acronis Snap Deploy is a platform for bulk deployment of system images from Acronis Singapore. A security vulnerability exists in Acronis Snap Deploy versions prior to 3900. An attacker could exploit the vulnerability to elevate privileges...
CVE-2022-3088
UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12, UC-2100-W System Image: Versions v1.0 to v 1.12, UC-3100 System Image: Versions v1.0 to v1.6, UC-5100 System Image: Versions v1.0 to v1.4, UC-8100 System Image: Versions v3.0 to v3.5, UC-8100-ME-T...
CVE-2022-3088
UC-8100A-ME-T System Image: Versions v1.0 to v1.6, UC-2100 System Image: Versions v1.0 to v1.12, UC-2100-W System Image: Versions v1.0 to v 1.12, UC-3100 System Image: Versions v1.0 to v1.6, UC-5100 System Image: Versions v1.0 to v1.4, UC-8100 System Image: Versions v3.0 to v3.5, UC-8100-ME-T...
PT-2022-21184 · Siemens · Sinema Remote Connect Server
Name of the Vulnerable Software and Affected Versions: SINEMA Remote Connect Server versions prior to V3.1 Description: A vulnerability has been identified where system images for installation or update of the affected application contain unit test scripts with sensitive information. An attacker...
Acronis Snap Deploy Elevation of Privilege Vulnerability
Acronis Snap Deploy is a platform for bulk deployment of system images from Acronis. Acronis Snap Deploy is vulnerable to an elevation of privilege vulnerability that could be exploited by an attacker to cause a local elevation of privilege...
Acronis Snap Deploy DLL hijacking vulnerability
Acronis Snap Deploy is an Acronis platform for bulk deployment of system images. Acronis Snap Deploy is vulnerable to a DLL hijacking vulnerability, which originates when a process attempts to load a DLL without specifying the absolute path to the DLL, and can be exploited by an attacker to cause...
ntfs-3g: NULL pointer dereference in ntfs_extent_inode_open()
The ntfs3g package is susceptible to an input validation attack. When processing a crafted NTFS image there is an improper check. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
ntfs-3g: Out-of-bounds read ntfs_attr_find_in_attrdef() triggered by an invalid attribute
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
Company Offers Tool To Break iPhone Encryption
ElcomSoft, a Russian security firm, claims that a new encryption cracking tool can decode data encrypted on mobile devices running Apple’s iOS operating system. Elcomsoft says it has developed the first ever commercially available password and encryption cracking tool. The company has made a phon...