CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2021/11/04 4:47 p.m.•0 views

Mozilla: Use-after-free in HTTP2 Session object

8.8CVSS7.4AI score0.01186EPSS

RedHat Linux•added 2021/11/03 7:52 p.m.•1 views

Mozilla: Use-after-free in HTTP2 Session object

8.8CVSS7.4AI score0.01186EPSS

Fortinet•added 2021/11/02 12:0 a.m.•30 views

FortiPortal - Improper thread synchronization for database operations

A concurrent execution using shared resource with improper Synchronization vulnerability 'Race Condition'Â CWE-362Â in the customer database interface of FortiPortal may allow an authenticated, low-privilegeÂ user to bring the underlying database data into an inconsistent state viaÂ specific...

3.5CVSS5AI score0.00295EPSS

Exploits0Affected Software1

OpenVAS•added 2021/11/01 12:0 a.m.•29 views

Python 3.2.x < 3.2.6, 3.3.x < 3.3.6, 3.4.x < 3.4.1 os.makedirs() not thread-safe (bpo-21082) - Linux

Python is prone to a local security bypass vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...

3.3CVSS7.5AI score0.0006EPSS

Exploits0References2

Kitploit•added 2021/10/24 8:30 p.m.•388 views

ThreadStackSpoofer - PoC For An Advanced In-Memory Evasion Technique Allowing To Better Hide Injected Shellcode'S Memory Allocation From Scanners And Analysts

A PoC implementation for an advanced in-memory evasion technique that spoofs Thread Call Stack. This technique allows to bypass thread-based memory examination rules and better hide shellcodes while in-process memory. Intro This is an example implementation for Thread Stack Spoofing technique...

7.2AI score

Exploits0References11

OSV•added 2021/10/22 2:15 p.m.•1 views

CVE-2021-0652

In VectorDrawable::VectorDrawable of VectorDrawable.java, there is a possible way to introduce a memory corruption due to sharing of not thread-safe objects. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.2AI score0.0002EPSS

Exploits0References1

OSV•added 2021/10/19 4:34 p.m.•25 views

UVI-2021-1001746 xen/balloon: use a kernel thread instead a workqueue

xen/balloon: use a kernel thread instead a workqueue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.9 by commit...

OSV•added 2021/10/19 4:30 p.m.•8 views

UVI-2021-1001665 xen/balloon: use a kernel thread instead a workqueue

OSV•added 2021/10/19 4:28 p.m.•10 views

GSD-2021-1001608 xen/balloon: use a kernel thread instead a workqueue

OSV•added 2021/10/19 4:24 p.m.•10 views

GSD-2021-1001571 xen/balloon: use a kernel thread instead a workqueue

OSV•added 2021/10/19 4:24 p.m.•10 views

UVI-2021-1001571 xen/balloon: use a kernel thread instead a workqueue

OSV•added 2021/10/19 4:23 p.m.•10 views

UVI-2021-1001543 xen/balloon: use a kernel thread instead a workqueue

OSV•added 2021/10/12 2:15 p.m.•1 views

CVE-2021-21941

A use-after-free vulnerability exists in the pushMuxer CreatePushThread functionality of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network packets can lead to remote code execution...

9CVSS6.1AI score0.01646EPSS

Exploits1References1

Tenable Nessus•added 2021/10/07 12:0 a.m.•45 views

SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2021:3290-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3290-1 advisory. - The mqnotify function in the GNU C Library aka glibc versions 2.32 and 2.33 has a use-after-free. It may use the notification...

9.8CVSS6.9AI score0.0013EPSS

Exploits1References4

Tenable Nessus•added 2021/10/04 12:0 a.m.•25 views

Jetty 9.4.27 < 9.4.30 Buffer Overflow

The version of Jetty installed on the remote host when handling too large response headers throws an exception to produce an HTTP 431 error. When this happens, the ByteBuffer containing the HTTP response headers is released back to the ByteBufferPool twice. Because of this double release, two...

9.4CVSS9.6AI score0.30928EPSS

Exploits0References2

OSV•added 2021/09/30 8:45 a.m.•7 views

SUSE-RU-2021:14818-1 Recommended update for mozilla-nspr, mozilla-nss

This update for mozilla-nspr fixes the following issues: mozilla-nspr was updated to version 4.32: implement new socket option PRSockOptDontFrag support larger DNS records by increasing the default buffer size for DNS queries Lock access to PRCallOnceType members in PRCallOnce for thread safety...

9.1CVSS7.2AI score0.0072EPSS

Exploits0References12

Kitploit•added 2021/09/28 8:30 p.m.•34 views

LittleCorporal - A C# Automated Maldoc Generator

LittleCorporal: A C Automated Maldoc Generator C:\LittleCorporal\bin\ReleaseLittleCorporal.exe C:\beacon.bin explorer.exe . . . . | | ||/ |/ || | \ \ | | | | | \ \ \ | / / \ / / \ \ \ / \ \ \ | | | || || | | | | |\ /\ \ | / | | // | | | ||| || |/\ \ //|| | / /|| // / / / || / / \ / o\ /...

7.6AI score

Huntr•added 2021/09/26 1:48 a.m.•15 views

Heap-based Buffer Overflow in mruby/mruby

Description Heap buffer overflow on mrb-vm-exec Proof of Concept // poc.rb 1.timesuntil% ;break Result ./mruby poc.rb ================================================================= ==1451==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6020000023d9 at pc 0x55b2fc3f1046 bp...

0day.today•added 2021/09/24 12:0 a.m.•261 views

Microsoft Windows cmd.exe - Stack Buffer Overflow Vulnerability

Title: Microsoft Windows cmd.exe - Stack Buffer Overflow Author: John Page aka hyp3rlinx Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-CMD.EXE-STACK-BUFFER-OVERFLOW.txt ISR: ApparitionSec Vendor www.microsoft.com Product cmd.exe is the default command-line interpreter for t...

7.4AI score