3037 matches found
Acronis Agent和Acronis Cyber Protect 数据伪造问题漏洞
Acronis Agent and Acronis Cyber Protect are both products of Acronis Singapore.Acronis Agent is an agent software.Acronis Cyber Protect is an all-in-one cyber protection solution for business and enterprise. Combining backup, anti-malware, network security and endpoint management capabilities suc...
CVE-2023-20562
Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...
CVE-2023-20562
Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...
Input validation
Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...
CVE-2023-20562
Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver, potentially leading to arbitrary kernel execution. Mitigation Please contact AMD support for updates...
CVE-2023-20562
CVE-2023-20562 involves AMD μProf (AMD uProf) where there is insufficient validation in the IOCTL input buffer. The impact described across sources is that an authenticated user may load an unsigned driver, potentially enabling arbitrary kernel execution. Connected materials explicitly discuss ex...
AMD μProf Security Vulnerability
AMD μProf is a software analysis tool from Ultra Micro Semiconductor AMD. AMD μProf suffers from a security vulnerability that stems from insufficient validation of the IOCTL input buffer, which allows an attacker to load an unsigned driver, leading to arbitrary kernel execution...
PT-2023-5023 · Amd · Amd Uprof
Name of the Vulnerable Software and Affected Versions: AMD uProf affected versions not specified Description: Insufficient validation in the IOCTL input buffer in AMD uProf may allow an authenticated user to load an unsigned driver, potentially leading to arbitrary kernel execution. The issue can...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2567)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2548)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.10.0 : protobuf-c (EulerOS-SA-2023-2567)
According to the versions of the protobuf-c package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember. CVE-2022-48468 Note that Tenable Network...
EulerOS Virtualization 2.10.1 : protobuf-c (EulerOS-SA-2023-2548)
According to the versions of the protobuf-c package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember. CVE-2022-48468 Note that Tenable Network...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2516)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for protobuf-c (EulerOS-SA-2023-2529)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.9.0 : protobuf-c (EulerOS-SA-2023-2529)
According to the versions of the protobuf-c package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember. CVE-2022-48468 Note that Tenable Network...
EulerOS Virtualization 2.9.1 : protobuf-c (EulerOS-SA-2023-2516)
According to the versions of the protobuf-c package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember. CVE-2022-48468 Note that Tenable Network...
Cisco NX-OS CLI Command Software Image Signature Verification (CVE-2019-1811)
A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital signatures are not...
AZL-40910 CVE-2022-28737 affecting package shim-unsigned-aarch64 for versions less than 15.8-3
There's a possible overflow in handleimage when shim tries to load and execute crafted EFI executables; The handleimage function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code...
AZL-41063 CVE-2022-28737 affecting package shim-unsigned-x64 for versions less than 15.8-3
There's a possible overflow in handleimage when shim tries to load and execute crafted EFI executables; The handleimage function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code...
Amazon Linux 2 : protobuf-c (ALAS-2023-2142)
The version of protobuf-c installed on the remote host is prior to 1.0.2-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2142 advisory. protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember. CVE-2022-48468 Tenable has extracted the...