336 matches found
IBM AIX Information Disclosure Vulnerability (CNVD-2021-91419)
IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture. IBM AIX has an information disclosure vulnerability that stems from a problem with IBM AIX's handling of user privileges, which can be exploited by a non-privileged local attacker to gain...
HPESBUX04198 rev.1 - HPE HP-UX Web Server Suite Software using PHP, Remote Null Pointer Dereference
Potential Security Impact: Remote: Null pointer dereference SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HP-UX Web Server Suite Software HP-UX PHP 7.4.7.1.1 and earlier CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2021-21702 |...
IBM AIX Denial of Service Vulnerability (CNVD-2021-88194)
IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture. A denial of service vulnerability exists in IBM AIX version 7.1, 7.2, and VIOS version 3.1. A local attacker could exploit this vulnerability to cause a denial of service...
IBM AIX Privilege Permission and Access Control Issue Vulnerability (CNVD-2021-71526)
IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture by the U.S. company IBM. There is a privilege permission and access control issue vulnerability in several IBM applications. The vulnerability stems from the lack of effective privilege permission an...
GHSA-HC92-9H3M-C39J vulnerabilities
Vulnerabilities for packages: buck2...
CVE-2019-4588
IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks...
CVE-2012-1156
Moodle before 2.2.2 has users' private files included in course backups Versions 2.2 to 2.2.1+, 2.1 to 2.1.4+, 2.0 to 2.0.7+ are affected...
Moderate: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
vdsm: privilege escalation to root via systemd_run
A vulnerability was discovered in vdsm, version 4.19 through 4.30.3 and 4.30.5 through 4.30.8. The systemdrun function exposed to the vdsm system user could be abused to execute arbitrary commands as root...
IBM DB2 Buffer Error Vulnerability
IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A buffer overflow vulnerability exists in db2pdcfg in IBM Db2, which stems from the program's failure ...
CVE-2019-11005
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer overflow in the function SVGStartElement of coders/svg.c, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a quoted font family value...
Tcpreplay Design Error Vulnerability (CNVD-2019-34847)
Tcpreplay is a set of open source utilities for editing and replaying network traffic for UNIX based operating systems. Tcpreplay suffers from a design error vulnerability. An attacker could exploit this vulnerability to cause a denial of service or other attack...
Microsoft Windows 10: Create symbolic links
This user right determines if users can create a symbolic link from the device they are logged on to. A symbolic link is a file-system object that points to another file-system object. The object that is pointed to is called the target. Symbolic links are transparent to users. The links appear as...
Oracle Sun Solaris has an unspecified vulnerability (CNVD-2018-09049)
Oracle Sun Solaris is a Unix operating system originally developed by Sun Microsystems. An unspecified vulnerability exists in the Python modules component of Oracle Sun Solaris. An attacker could exploit this vulnerability to compromise confidentiality and integrity...
CVE-2017-2642
Moodle 3.x has user fullname disclosure on the user preferences page...
CVE-2017-10965
An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer...
CVE-2016-1516
OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code...
Default Weak Password Vulnerability in Multiple Prologix Trango Products
Prologix Trango Apex Lynx and others are products of Prologix UAE.Apex Lynx is an outdoor microwave backhaul system.Apex Orion is a full-duplex point-to-point radio link for use in the Apex Lynx.The Apex Orion is a full-duplex point-to-point radio link for use in... A security vulnerability exist...
IBM AIX Remote Denial of Service Vulnerability
IBM AIX Advanced Interactive eXecutive is a UNIX operating system developed by IBM. A remote denial of service vulnerability exists in IBM AIX. An attacker could exploit this vulnerability to cause a denial of service...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which...