CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-24033

Malware in sbrugna...

5.1CVSS6.6AI score0.00024EPSS

Exploits0References5

Prion•added 2024/02/15 5:15 a.m.•13 views

Design/Logic Flaw

The jail2 system call has not limited a visiblity of allocated TTYs the kern.ttys sysctl. This gives rise to an information leak about processes outside the current jail. Attacker can get information about TTYs allocated on the host or in other jails. Effectively, the information printed by "psta...

6.6AI score0.00093EPSS

Exploits0References1

Cvelist•added 2024/02/15 4:27 a.m.•13 views

CVE-2024-25941 jail(2) information leak

6.3AI score0.00093EPSS

Exploits0References2

Vulnrichment•added 2024/02/15 4:27 a.m.•13 views

CVE-2024-25941 jail(2) information leak

6.4AI score0.00093EPSS

Exploits0References2

CVE•added 2024/02/15 4:27 a.m.•89 views

CVE-2024-25941

The CVE-2024-25941 issue affects FreeBSD jail(2): the kern.ttys visibility is not limited, enabling an information leak of TTYs from the host or other jails. Exploitation details in the FreeBSD SA-24:02.tty advisory describe the vulnerability and its impact, with attackers potentially reading how...

3.3CVSS3.5AI score0.00093EPSS

Exploits0References2Affected Software1

FreeBSD Advisory•added 2024/02/14 12:0 a.m.•8 views

FreeBSD-SA-24:02.tty

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-24:02.tty Security Advisory The FreeBSD Project Topic: jail2 information leak Category: core Module: jail Announced: 2024-02-14 Credits: Pawel Jakub Dawidek...

3.3CVSS5.9AI score0.00093EPSS

Exploits0

FreeBSD•added 2024/02/14 12:0 a.m.•22 views

FreeBSD -- jail(2) information leak

Problem Description: The jail2 system call has not limited a visiblity of allocated TTYs the kern.ttys sysctl. This gives rise to an information leak about processes outside the current jail. Impact: Attacker can get information about TTYs allocated on the host or in other jails. Effectively, the...

3.3CVSS6.8AI score0.00093EPSS

Exploits0

Broadcom•added 2023/08/01 12:0 a.m.•32 views

Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing opening of ttys could lead to a use-after-free

Linux kernel before 5.6.2 between the VTDISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free...

5.1CVSS4.9AI score0.00024EPSS

Exploits0

SUSE CVE•added 2023/02/15 5:15 a.m.•3 views

SUSE CVE-2015-6565

sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service terminal disruption or possibly have unspecified other impact by writing to a device, as demonstrated by writing an escape sequence...

7.2CVSS8.4AI score0.00344EPSS

Exploits4References6

UbuntuCve•added 2022/07/21 4:15 a.m.•26 views

CVE-2020-36557

A race condition in the Linux kernel before 5.6.2 between the VTDISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free...

5.1CVSS6.8AI score0.00024EPSS

Exploits0References3

OSV•added 2022/07/21 4:15 a.m.•0 views

UBUNTU-CVE-2020-36557

A race condition in the Linux kernel before 5.6.2 between the VTDISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free...

5.1CVSS6.7AI score0.00024EPSS

Exploits0References4

Prion•added 2022/07/21 4:15 a.m.•19 views

Race condition

A race condition in the Linux kernel before 5.6.2 between the VTDISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free...

1.2CVSS4.8AI score0.00024EPSS

Exploits0References2Affected Software1

NVD•added 2019/08/07 1:15 p.m.•12 views

CVE-2016-10811

In cPanel before 57.9999.54, /scripts/unsuspendacct exposed TTYs SEC-116...

9CVSS8.7AI score0.00511EPSS

Exploits0References2

NVD•added 2019/08/07 1:15 p.m.•10 views

CVE-2016-10812

In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs SEC-117...

9CVSS8.7AI score0.00587EPSS

Exploits0References1

Prion•added 2019/08/07 1:15 p.m.•8 views

Code injection

In cPanel before 57.9999.54, /scripts/addpop and /scripts/delpop exposed TTYs SEC-113...

9CVSS7.2AI score0.00587EPSS

Exploits0References1Affected Software1

Prion•added 2019/08/07 1:15 p.m.•9 views

Design/Logic Flaw

In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs SEC-117...

9CVSS7.1AI score0.00587EPSS

Exploits0References1Affected Software1

CVE•added 2019/08/07 12:33 p.m.•38 views

CVE-2016-10812

In CVE-2016-10812, cPanel versions before 57.9999.54 have a vulnerable component where /scripts/enablefileprotect exposes TTYs (SEC-117). Public references across multiple sources (NVD/NVD-derived and Red Hat/CVEs) confirm this exposure; CVSS metrics indicate high impact with network attack vecto...

9CVSS8.6AI score0.00587EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/07 12:33 p.m.•10 views

CVE-2016-10812

In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs SEC-117...

8.8AI score0.00587EPSS

Exploits0References1

CVE•added 2019/08/07 12:32 p.m.•48 views

CVE-2016-10811

CVE-2016-10811 affects cPanel prior to 57.9999.54, where the script /scripts/unsuspendacct exposes TTYs (SEC-116). The public description confirms the vulnerability is tied to this script, with high impact in both confidentiality, integrity, and availability (CVSSv3 8.8). Red Hat and CNVD referen...

9CVSS8.6AI score0.00511EPSS

Exploits0References2Affected Software1

CVE•added 2019/08/07 12:29 p.m.•33 views

CVE-2016-10808

CVE-2016-10808 affects cPanel prior to 57.9999.54. The endpoints /scripts/addpop and /scripts/delpop expose TTYs (SEC-113), enabling potential attacker access with high impact on confidentiality, integrity, and availability (CVSSv3 base score 8.8). No remediation details are provided in the suppl...

9CVSS8.6AI score0.00587EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by