Lucene search
K

6038 matches found

OSV
OSV
added 2024/12/06 3:23 p.m.4 views

OESA-2024-2513 ansible security update

Ansible is a radically simple model-driven configuration management, multi-node deployment, and remote task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred t...

6.3CVSS6.6AI score0.00269EPSS
Exploits0References3
OSV
OSV
added 2024/12/06 3:23 p.m.4 views

OESA-2024-2510 ansible security update

Ansible is a radically simple model-driven configuration management, multi-node deployment, and remote task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred t...

6.3CVSS6.6AI score0.00269EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/12/05 12:16 a.m.3 views

SUSE CVE-2024-53128

In the Linux kernel, the following vulnerability has been resolved: sched/taskstack: fix objectisonstack for KASAN tagged pointers When CONFIGKASANSWTAGS and CONFIGKASANSTACK are enabled, the objectisonstack function may produce incorrect results due to the presence of tags in the obj pointer,...

5.5CVSS7.7AI score0.00207EPSS
Exploits0References3
Information Security Automation
Information Security Automation
added 2024/12/04 1:21 p.m.28 views

About Elevation of Privilege – Windows Task Scheduler (CVE-2024-49039) vulnerability

About Elevation of Privilege - Windows Task Scheduler CVE-2024-49039 vulnerability. It was released on November Microsoft Patch Tuesday and showed signs of exploitation in the wild right away. To exploit the vulnerability, an authenticated attacker runs a specially crafted application on the targ...

8.8CVSS7.1AI score0.13719EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2024/12/04 12:56 a.m.1 views

kernel: drm/amdgpu: change vm->task_info handling

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: change vm-taskinfo handling This patch changes the handling and lifecycle of vm-taskinfo object. The major changes are: - vm-taskinfo is a dynamically allocated ptr now, and its uasge is reference counted. - introduci...

5.5CVSS6.8AI score0.0018EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/12/04 12:56 a.m.8 views

kernel: fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats

A vulnerability was found in the dotaskstat function in the Linux kernel, where due to excessive lock contention, a potential hard lockup could be created. This can create a performance bottleneck and lead to kernel unresponsiveness...

5.5CVSS7.1AI score0.00213EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/12/04 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the objectisonstack function of the KASAN marker pointer in the sched/taskstack module that may produce incorrec...

5.5CVSS6.6AI score0.00207EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2024/12/03 9:10 a.m.4 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 128.5 fixed: IMAP could crash when reading cached messages fixed: Enabling "Show Folder Size" on Maildir profile could render Thunderbird unusable fixed: Messages corrupted by folder compaction were only fixed by...

9.8CVSS8.3AI score0.00833EPSS
Exploits0References22
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an integer overflow in the pagemapscangetargs function in the fs/proc/taskmmu component...

5.5CVSS6.8AI score0.002EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the allocpagesbulknoprof function in the mm component that triggers a null pointer dereference when tasks...

5.5CVSS6.5AI score0.00248EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/26 12:55 a.m.5 views

kernel: sched/deadline: Fix task_struct reference leak

A vulnerability was found in the Linux kernel's deadline scheduler in the enqueuetaskdl function, where the reference count is improperly decremented in certain situations, potentially causing a memory leak. This issue can lead to memory exhaustion over time...

5.5CVSS7.2AI score0.00272EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/11/22 12:0 a.m.4 views

PT-2024-35462 · Argo Helm · Argo Helm

Name of the Vulnerable Software and Affected Versions: Argo Helm versions prior to 0.45.0 Description: The issue is related to the workflow-role lacking granularity in its privileges, giving unnecessary permissions to workflowtasksets and workflowartifactgctasks for all workflow Pods. This could...

2.8CVSS7.1AI score0.00176EPSS
Exploits0References7
OSV
OSV
added 2024/11/20 12:15 p.m.2 views

CVE-2024-10520

The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the 'check' method of the 'CreateMilestone', 'CreateTaskList', 'CreateTask', and 'DeleteTask' classes in version 2.6.14. This makes it possible for unauthenticated...

5.3CVSS7.3AI score0.00312EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/20 11:33 a.m.10 views

CVE-2024-10520 WP Project Manager <= 2.6.14 - Missing Authorization to Project Milestone and Task Creation/Deletion

The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the 'check' method of the 'CreateMilestone', 'CreateTaskList', 'CreateTask', and 'DeleteTask' classes in version 2.6.14. This makes it possible for unauthenticated...

5.3CVSS6.7AI score0.00312EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/20 12:0 a.m.5 views

WordPress plugin WP Project Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS8.1AI score0.00312EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/20 12:0 a.m.6 views

PT-2024-16339 · WordPress · Wp Project Manager

Name of the Vulnerable Software and Affected Versions: WP Project Manager plugin for WordPress version 2.6.14 Description: The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the check method of the Create Milestone,...

5.3CVSS9.3AI score0.00312EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/11/19 5:19 p.m.17 views

CVE-2024-53054

...

Exploits0
OSV
OSV
added 2024/11/19 7:7 a.m.12 views

BIT-AIRFLOW-2024-45784 Apache Airflow: Sensitive configuration values are not masked in the logs by default

Apache Airflow versions before 2.10.3 contain a vulnerability that could expose sensitive configuration variables in task logs. This vulnerability allows DAG authors to unintentionally or intentionally log sensitive configuration variables. Unauthorized users could access these logs, potentially...

7.5CVSS7.4AI score0.01295EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/11/19 3:48 a.m.3 views

SUSE CVE-2024-50301

In the Linux kernel, the following vulnerability has been resolved: security/keys: fix slab-out-of-bounds in keytaskpermission KASAN reports an out of bounds read: BUG: KASAN: slab-out-of-bounds in kuidval include/linux/uidgid.h:36 BUG: KASAN: slab-out-of-bounds in uideq include/linux/uidgid.h:63...

7.1CVSS6.4AI score0.00272EPSS
Exploits0References64
OSV
OSV
added 2024/11/19 2:16 a.m.4 views

AZL-53648 CVE-2024-50301 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: security/keys: fix slab-out-of-bounds in keytaskpermission KASAN reports an out of bounds read: BUG: KASAN: slab-out-of-bounds in kuidval include/linux/uidgid.h:36 BUG: KASAN: slab-out-of-bounds in uideq include/linux/uidgid.h:63...

7.1CVSS5.6AI score0.00272EPSS
Exploits0References1
Rows per page
Query Builder