Lucene search
K

6045 matches found

CNNVD
CNNVD
added 2024/10/21 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible post-release reuse error in the perfpendingtask function if the perfpendingtask function runs aft...

7.8CVSS6.5AI score0.00253EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a potential post-release reuse issue in the fbdev component pxafb in pxafbtask...

7.8CVSS6.7AI score0.00249EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2024/10/14 12:0 a.m.7 views

The vulnerability of the Passwork password manager lies in the improper implementation of the sequence of actions required for processing tasks. This allows attackers to compromise the integrity of the protected information.

The vulnerability of the Passwork password manager is related to the incorrect implementation of the sequence of actions performed. Exploiting this vulnerability allows a malicious actor, operating remotely, to compromise the integrity of the protected information...

6.8CVSS5.5AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/10/13 12:0 a.m.19 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-43856)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...

5.5CVSS6AI score0.00398EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/09 12:0 a.m.5 views

Fortra Robot Schedule Enterprise Agent 安全漏洞

Fortra Robot Schedule Enterprise Agent is a component of Fortra's Enterprise Task Scheduler software. A security vulnerability exists in Fortra Robot Schedule Enterprise Agent versions prior to 3.05 that stems from FTP username and password information being written to the agent log file when...

5.5CVSS6.6AI score0.0018EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2024/10/08 2:0 p.m.247 views

October 8, 2024—KB5044281 (OS Build 20348.2762)

October 8, 2024—KB5044281 OS Build 20348.2762 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when...

9CVSS8.3AI score0.60954EPSS
Exploits4
Spring Security Advisories
Spring Security Advisories
added 2024/10/07 12:0 a.m.8 views

From Spring Cloud Data Flow 2.11.x to 3.0

Dear Spring Community, With the recent announcement of Spring Framework 7.0 and Spring Boot 4.0, the Spring Cloud Data Flow team is pleased to announce the next major release, SCDF 3.0, to align with both Spring Framework 7.0 and Spring Boot 4.0. This will bring the following SCDF ecosystem of...

7.2AI score
Exploits0
Snyk
Snyk
added 2024/10/01 6:46 a.m.2 views

Race Condition

Overview terra-notebook-utils is an Utilities for the Terra notebook environment. Affected versions of this package are vulnerable to Race Condition in task submission due to improper thread synchronization. The issue could lead to crashes or inconsistent task states when tasks are submitted from...

8.3CVSS6.9AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/10/01 12:0 a.m.15 views

Synology DiskStation Manager OS Command Injection (CVE-2022-22684)

Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in task management component in Synology DiskStation Manager DSM before 6.2.4-25553 allows remote authenticated users to execute arbitrary commands via unspecified vectors. This plugin only work...

8.8CVSS8.4AI score0.01488EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/28 12:0 a.m.4 views

SourceCodester Online Timesheet App 跨站脚本漏洞

SourceCodester Online Timesheet App is a SourceCodester open source web application built with PHP and MySQL designed to simplify time management and task tracking. A cross-site scripting vulnerability exists in version 1.0 of the SourceCodester Online Timesheet App, which stems from a cross-site...

5.4CVSS4.5AI score0.00402EPSS
Exploits1References2
OSV
OSV
added 2024/09/27 7:15 p.m.3 views

CVE-2024-33369

Directory Traversal vulnerability in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary code via the getFileNameFromConnection method in DownloadTask...

8.8CVSS6.1AI score0.01139EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/27 12:0 a.m.5 views

PT-2024-25217 · Unknown · Plasmoapp Rpshare Fabric Mod

Name of the Vulnerable Software and Affected Versions: Plasmoapp RPShare Fabric mod version 1.0.0 Description: The issue allows a remote attacker to execute arbitrary code. This is achieved via the getFileNameFromConnection method in DownloadTask. Recommendations: For Plasmoapp RPShare Fabric mod...

8.8CVSS8AI score0.01139EPSS
Exploits0References5
NVD
NVD
added 2024/09/26 4:15 a.m.33 views

CVE-2022-49039

Out-of-bounds write vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to execute arbitrary commands via unspecified vectors...

6.7CVSS0.00208EPSS
Exploits0References1
OSV
OSV
added 2024/09/26 4:15 a.m.5 views

CVE-2022-49041

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to crash the client via unspecified vectors...

4.4CVSS5.8AI score0.00172EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/26 3:34 a.m.13 views

CVE-2022-49041

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to crash the client via unspecified vectors...

4.4CVSS6.6AI score0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/26 3:33 a.m.23 views

CVE-2022-49039

Out-of-bounds write vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to execute arbitrary commands via unspecified vectors...

6.7CVSS0.00208EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/26 3:33 a.m.13 views

CVE-2022-49039

Out-of-bounds write vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to execute arbitrary commands via unspecified vectors...

6.7CVSS7.5AI score0.00208EPSS
Exploits0References1
CVE
CVE
added 2024/09/26 3:33 a.m.45 views

CVE-2022-49039

Affected software: Synology Drive Client (backup task management). The issue is an out-of-bounds write vulnerability in the backup task management functionality prior to version 3.4.0-15721. Exploitation requires local access with administrator privileges and can allow arbitrary command execution...

6.7CVSS6.8AI score0.00208EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/25 12:0 a.m.4 views

PT-2024-11895 · Synology · Synology Drive Client

Name of the Vulnerable Software and Affected Versions: Synology Drive Client versions prior to 3.4.0-15721 Description: A buffer copy without checking the size of the input, also known as a 'Classic Buffer Overflow', exists in the backup task management functionality. This issue allows local user...

4.4CVSS7.1AI score0.00172EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.3 views

kernel: sched/deadline: Fix task_struct reference leak

A vulnerability was found in the Linux kernel's deadline scheduler in the enqueuetaskdl function, where the reference count is improperly decremented in certain situations, potentially causing a memory leak. This issue can lead to memory exhaustion over time...

5.5CVSS7.2AI score0.00272EPSS
Exploits0References5
Rows per page
Query Builder