Lucene search
K

18 matches found

Patchstack
Patchstack
added 2026/05/18 7:2 p.m.19 views

NPM: ws: Uninitialized memory disclosure

NPM: ws: Uninitialized memory disclosure vulnerability discovered by ? in WordPress Npm ws versions = 8.0.0, 8.20.1...

7.5CVSS5.8AI score0.00717EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 2:53 p.m.11 views

CVE-2026-45736 ws: Uninitialized memory disclosure

ws is an open source WebSocket client and server for Node.js. Prior to 8.20.1, the websocket.close implementation is vulnerable to uninitialized memory disclosure when a TypedArray is passed as the reason argument. This vulnerability is fixed in 8.20.1...

4.4CVSS5.8AI score0.00717EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/06/22 12:0 a.m.1597 views

PHP 8.0.x < 8.0.29

The version of PHP installed on the remote host is prior to 8.0.29. It is, therefore, affected by a vulnerability as referenced in the Version 8.0.29 advisory. - In PHP versions 8.0. before 8.0.29, 8.1. before 8.1.20, 8.2. before 8.2.7 when using SOAP HTTP Digest Authentication, random value...

4.3CVSS7AI score0.00709EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/05/19 3:52 p.m.21 views

CVE-2020-10030

An issue has been found in PowerDNS Recursor 4.1.0 up to and including 4.3.0. It allows an attacker with enough privileges to change the system's hostname to cause disclosure of uninitialized memory content via a stack-based out-of-bounds read. It only occurs on systems where gethostname does not...

9.1AI score0.23889EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2020/05/19 12:0 a.m.69 views

powerdns-recursor -- multiple vulnerabilities

PowerDNS Team reports: CVE-2020-10995: An issue in the DNS protocol has been found that allow malicious parties to use recursive DNS services to attack third party authoritative name servers. The attack uses a crafted reply by an authoritative name server to amplify the resulting traffic between...

8.8CVSS3.4AI score0.23889EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/09 9:36 a.m.40 views

CVE-2017-1000380

It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting in an uninitialized memory disclosure to user space. A local user could use this flaw to read information belonging to other users...

5.5CVSS1.6AI score0.00721EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.41 views

NewStart CGSL MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2019-0007)

The remote NewStart CGSL host, running version MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting...

5.6CVSS7.1AI score0.93838EPSS
Exploits13References5
Veracode
Veracode
added 2019/01/15 9:20 a.m.24 views

Information Disclosure

Linxu kernel is vulnerable to information disclosure. It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting in an uninitialized memory disclosure to user space. A local user could use this...

5.5CVSS5.4AI score0.00721EPSS
Exploits0References4Affected Software1
Exploit DB
Exploit DB
added 2018/04/16 12:0 a.m.31 views

Microsoft Windows - &#039;nt!NtQueryFullAttributesFile&#039; Kernel Stack Memory Disclosure

/ We have discovered that the nt!NtQueryFullAttributesFile system call invoked with paths of certain kernel objects discloses uninitialized kernel stack memory to user-mode clients. The vulnerability affects Windows 7 to 10, 32/64-bit. The paths that we have observed to trigger the leak in our te...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/12/07 12:0 a.m.127 views

CentOS 7 : kernel (CESA-2017:3315)

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

5.5CVSS6.1AI score0.00721EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/07 12:0 a.m.111 views

CentOS Update for kernel CESA-2017:3315 centos7

Check the version of kernel SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882810";...

5.5CVSS6.7AI score0.00721EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/12/04 12:0 a.m.276 views

RHEL 6 : kernel-rt (RHSA-2017:3295)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3295 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Securi...

5.5CVSS6.2AI score0.00721EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2017/12/01 12:44 a.m.85 views

Moderate: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

5.5CVSS6.4AI score0.00721EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2017/11/30 3:18 p.m.88 views

Moderate: Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

5.5CVSS6.5AI score0.00721EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2017/11/30 1:14 p.m.63 views

Moderate: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise MRG 2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.5CVSS6.5AI score0.00721EPSS
Exploits0References4
Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.41 views

Microsoft Windows - &#039;nt!NtQueryObject (ObjectNameInformation)&#039; Kernel Pool Memory Disclosure

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1303&desc=2 We have discovered that the nt!NtQueryObject syscall handler discloses portions of uninitialized pool memory to user-mode clients when the following conditions are met: a It is invoked with the ObjectNameInformation...

7.4AI score
Exploits0
Veracode
Veracode
added 2017/07/19 2:42 a.m.13 views

Uninitialized Memory Disclosure

openwhisk is vulnerable to uninitialized memory disclosure. The library initializes a buffer by providing a numeric value to the Buffer class, resulting in a buffer being created with non zero-ed out memory. This can lead to information on the uninitialized memory being disclosed...

6.5AI score
Exploits0
exploitpack
exploitpack
added 2017/06/22 12:0 a.m.26 views

Microsoft Windows - win32k!NtGdiGetTextMetricsW Kernel Stack Memory Disclosure

Microsoft Windows - win32k!NtGdiGetTextMetricsW Kernel Stack Memory Disclosure / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1180 We have discovered that it is possible to disclose portions of uninitialized kernel stack memory to user-mode applications in Windows 7 other...

7.4AI score
Exploits0
Rows per page
Query Builder