Lucene search
K

146 matches found

CVE
CVE
added 2023/07/06 12:53 p.m.45 views

CVE-2022-48518

CVE-2022-48518 concerns Huawei HarmonyOS’ iaware startup trustlist. The connected records describe a vulnerability where the signature verification service is initialized later than system broadcasts, allowing manipulation that could cause malicious apps to start at power-on by spoofing package n...

5.5CVSS5.3AI score0.00131EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/07/06 12:53 p.m.26 views

CVE-2022-48518

Vulnerability of signature verification in the iaware system being initialized later than the time when the system broadcasts are sent. Successful exploitation of this vulnerability may cause malicious apps to start upon power-on by spoofing the package names of apps in the startup trustlist, whi...

5.6AI score0.00131EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/06 12:53 p.m.13 views

CVE-2022-48518

Vulnerability of signature verification in the iaware system being initialized later than the time when the system broadcasts are sent. Successful exploitation of this vulnerability may cause malicious apps to start upon power-on by spoofing the package names of apps in the startup trustlist, whi...

6.7AI score0.00131EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/06/07 12:0 a.m.11 views

Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-2049)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.01096EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2023/05/08 6:21 p.m.37 views

K000134496: Jettison vulnerability CVE-2022-45685

Security Advisory Description A stack overflow in Jettison before v1.5.2 allows attackers to cause a Denial of Service DoS via crafted JSON data. CVE-2022-45685 Impact System performance degradation can occur until the process is forced to restart. This vulnerability allows an attacker to cause a...

7.5CVSS8.2AI score0.01395EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2023/03/16 12:0 a.m.28 views

Siemens Tecnomatix Plant Simulation Memory Corruption Vulnerability

Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. Using the function of discrete event simulation for production volume analysis and optimization, and thus improve the manufacturing system performance. A memory corruption vulnerability exists in versions...

7.8CVSS7.8AI score0.00223EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.45 views

K22505850: BIG-IP and BIG-IQ iControl REST vulnerability CVE-2022-41770

Security Advisory Description An authenticated iControl REST user can cause an increase in memory resource utilization, through undisclosed requests. CVE-2022-41770 Impact BIG-IP and BIG-IQ System performance degradation can occur until the process is either forced to restart or manually restarte...

6.5CVSS6.4AI score0.00595EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
added 2023/02/21 7:59 p.m.42 views

K99123750: BIG-IP Stream profile vulnerability CVE-2022-28701

Security Advisory Description When the stream profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization.CVE-2022-28701 Impact System performance can degrade until the Traffic Management Microkernel TMM process is either forced to restart ...

7.5CVSS7.3AI score0.00868EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.65 views

K43024307: BIG-IP iRules vulnerability CVE-2022-41624

Security Advisory Description When a sideband iRule is configured on a virtual server, undisclosed traffic can cause an increase in memory resource utilization. CVE-2022-41624 Impact System performance can degrade until the Traffic Management Microkernel TMM process is either forced to restart or...

7.5CVSS7.5AI score0.00616EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:54 p.m.65 views

K29146534: SSB Variant 4 vulnerability CVE-2018-3639

Security Advisory Description Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel...

5.5CVSS6.8AI score0.60631EPSS
Exploits2Affected Software19
F5 Networks
F5 Networks
added 2023/02/21 6:55 p.m.51 views

K23454411: DNS profile vulnerability CVE-2022-26372

Security Advisory Description When a DNS listener is configured on a virtual server with DNS queueing default, undisclosed requests can cause an increase in memory resource utilization. CVE-2022-26372 Impact System performance can degrade until the Traffic Management Microkernel TMM process is...

7.5CVSS7.4AI score0.00843EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.50 views

K54252492: Side-channel processor vulnerability CVE-2018-3693

Security Advisory Description Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis. CVE-2018-3693 also known as Spectre ...

5.6CVSS6.9AI score0.08416EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:35 p.m.46 views

K11742742: iControl REST vulnerability CVE-2022-23023

Security Advisory Description Undisclosed requests by an authenticated iControl REST user can cause an increase in memory resource utilization. CVE-2022-23023 Impact System performance can degrade until the process is either forced to restart or is manually restarted. This vulnerability allows an...

6.5CVSS6.4AI score0.00895EPSS
Exploits0Affected Software14
OpenVAS
OpenVAS
added 2023/02/10 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for sysstat (EulerOS-SA-2023-1401)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.01096EPSS
Exploits1References2
Malwarebytes
Malwarebytes
added 2023/02/01 12:0 p.m.23 views

Malwarebytes earns AV-TEST Top Product awards for fifth consecutive quarter

AV-TEST, a leading independent tester of cybersecurity solutions, has just ranked Malwarebytes as a Top Product for consumers and businesses for the fifth quarter in a row. Every two months, experts at AV-Test evaluate Windows antivirus software across three categories: Protection against malware...

7.3AI score
Exploits0
F5 Networks
F5 Networks
added 2023/01/09 9:47 a.m.27 views

K56412001: BIG-IP SSL OCSP Authentication profile vulnerability CVE-2023-22323

Security Advisory Description When OCSP authentication profile is configured on a virtual server, undisclosed requests can cause an increase in CPU resource utilization. CVE-2023-22323 Impact System performance can degrade until the Traffic Management Microkernel TMM process is either forced to...

7.5CVSS7.7AI score0.00663EPSS
Exploits0Affected Software13
Oracle linux
Oracle linux
added 2023/01/09 12:0 a.m.60 views

Unbreakable Enterprise kernel security update

5.4.17-2136.315.5 - Revert 'xfs: Lower CIL flush limit for large logs' Sherry Yang Orabug: 34917369 - Revert 'xfs: Throttle commits on delayed background CIL push' Sherry Yang Orabug: 34917369 - Revert 'xfs: fix use-after-free on CIL context on shutdown' Sherry Yang Orabug: 34917369...

7.8CVSS8.2AI score0.00428EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/12/23 12:0 a.m.16 views

Fedora 36 : sysstat (2022-dbe48a4bc7)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-dbe48a4bc7 advisory. Security fix for CVE-2022-39377 - arithmetic overflow in allocatestructures on 32 bit systems Tenable has extracted the preceding description block directly...

7.8CVSS7.2AI score0.01096EPSS
Exploits1References2
Prion
Prion
added 2022/12/13 4:15 a.m.34 views

Open redirect

An unauthenticated attacker over the network can attach to an open interface exposed through JNDI by the User Defined Search UDS of SAP NetWeaver Process Integration PI - version 7.50 and make use of an open naming and directory API to access services which can be used to perform unauthorized...

7.5CVSS8.2AI score0.0102EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/13 3:5 a.m.5 views

CVE-2022-41272

An unauthenticated attacker over the network can attach to an open interface exposed through JNDI by the User Defined Search UDS of SAP NetWeaver Process Integration PI - version 7.50 and make use of an open naming and directory API to access services which can be used to perform unauthorized...

9.9CVSS9.2AI score0.0102EPSS
Exploits0References2
Rows per page
Query Builder