3037 matches found
Warpgate Data Forgery Issue Vulnerability
Warpgate is an intelligent SSH, HTTPS and MySQL bastion host for Linux from the warp-tech project. A data forgery issue vulnerability exists in Warpgate versions prior to 0.8.0, which stems from the ability to bypass a user's SSH key authentication by sending unsigned SSH key offers...
PT-2023-31898 · Zephyr · Zephyr Ipm Drivers
Name of the Vulnerable Software and Affected Versions: Zephyr IPM drivers affected versions not specified Description: The issue involves two potential signed to unsigned conversion errors and buffer overflow vulnerabilities in the Zephyr IPM drivers. Recommendations: At the moment, there is no...
The vulnerability of the IOCTL component of the AMD uProf software profiling tool allows a hacker to load an unsigned driver and execute arbitrary code.
The vulnerability of the IOCTL component of the AMD uProf software profiling tool is related to insufficient verification of data authenticity. Exploiting this vulnerability could allow an attacker to load unsigned drivers and execute arbitrary code...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2738)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2769)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-38486
A vulnerability in the secure boot implementation on affected Aruba 9200 and 9000 Series Controllers and Gateways allows an attacker to bypass security controls which would normally prohibit unsigned kernel images from executing. An attacker can use this vulnerability to execute arbitrary...
CVE-2023-38486
A vulnerability in the secure boot implementation on affected Aruba 9200 and 9000 Series Controllers and Gateways allows an attacker to bypass security controls which would normally prohibit unsigned kernel images from executing. An attacker can use this vulnerability to execute arbitrary...
Security feature bypass
A vulnerability in the secure boot implementation on affected Aruba 9200 and 9000 Series Controllers and Gateways allows an attacker to bypass security controls which would normally prohibit unsigned kernel images from executing. An attacker can use this vulnerability to execute arbitrary...
CVE-2023-38486 Hardware Root of Trust Bypass in 9200 and 9000 Series Controllers and Gateways
A vulnerability in the secure boot implementation on affected Aruba 9200 and 9000 Series Controllers and Gateways allows an attacker to bypass security controls which would normally prohibit unsigned kernel images from executing. An attacker can use this vulnerability to execute arbitrary...
CVE-2023-38486
The CVE-2023-38486 entry describes a flaw in the secure boot implementation on Aruba 9200 and 9000 Series Controllers and Gateways. The issue allows bypassing the secure-boot protections that normally prohibit unsigned kernel images from executing, enabling an attacker to run arbitrary runtime op...
CVE-2023-38486 Hardware Root of Trust Bypass in 9200 and 9000 Series Controllers and Gateways
A vulnerability in the secure boot implementation on affected Aruba 9200 and 9000 Series Controllers and Gateways allows an attacker to bypass security controls which would normally prohibit unsigned kernel images from executing. An attacker can use this vulnerability to execute arbitrary...
PT-2023-26466 · Aruba · Aruba 9000 Series Gateways +3
Name of the Vulnerable Software and Affected Versions: Aruba 9200 and 9000 Series Controllers and Gateways affected versions not specified Description: A vulnerability in the secure boot implementation allows an attacker to bypass security controls, which would normally prohibit unsigned kernel...
Aruba Networks Aruba 9200 and 9000 Security Vulnerabilities
The Aruba Networks Aruba 9200 and Aruba Networks Aruba 9000 are a family of security gateways from Aruba Networks, Inc. A security vulnerability exists in the Aruba Networks Aruba 9200 and 9000 that stems from a flaw in the secure boot implementation, which can be exploited to bypass security...
Delinea Secret Server Data Forgery Issue Vulnerability
Delinea Secret Server is a powerful PAM in the cloud or locally from Delinea USA. A security vulnerability exists in Delinea Secret Server version v10.9.000002, which originates from the fact that an attacker with an administrator account can perform a software update without a proper integrity...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2662)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2704)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-41744
Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Agent macOS before build 30600, Acronis Cyber Protect 15 macOS before build 35979...
Privilege escalation
Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Agent macOS before build 30600, Acronis Cyber Protect 15 macOS before build 35979...
CVE-2023-41744
Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Agent macOS before build 30600, Acronis Cyber Protect 15 macOS before build 35979...
CVE-2023-41744
CVE-2023-41744 : Local privilege escalation due to unrestricted loading of unsigned libraries. Affected on macOS: Acronis Agent before build 30600, and Acronis Cyber Protect 15 before build 35979. Root cause: unsigned libraries loaded without restriction. Impact: local attacker could escalate pri...