Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Github Security Blog
Github Security Blogadded 2024/04/28 12:30 a.m.19 views

mdanter/ecc affected by timing vulnerability in cryptographic side-channels

phpecc, as used in all versions of mdanter/ecc, as well as paragonie/ecc before 2.0.1, has a branch-based timing leak in Point addition. This Composer package is also known as phpecc/phpecc on GitHub, previously known as the Matyas Danter ECC library. Paragon Initiative Enterprises hard-forked...

4.3CVSS7.1AI score0.00119EPSS
Exploits0References6Affected Software2
Friends Of PHP
Friends Of PHPadded 2024/04/24 12:2 p.m.18 views

mdanter/ecc affected by timing vulnerability in cryptographic side-channels

phpecc, as used in all versions of mdanter/ecc, as well as paragonie/ecc before 2.0.1, has a branch-based timing leak in Point addition. This Composer package is also known as phpecc/phpecc on GitHub, previously known as the Matyas Danter ECC library. Paragon Initiative Enterprises hard-forked...

4.3CVSS4.5AI score0.00119EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVEadded 2024/02/28 4:2 a.m.1 views

SUSE CVE-2021-46917

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon erratum workaround where wq reset does not clear WQCFG registers was leaked into upstream code. Use wq reset command instead of blasting the MMIO region. Th...

3.4CVSS7.8AI score0.00026EPSS
Exploits0References5
OSV
OSVadded 2024/02/27 7:15 a.m.4 views

CVE-2021-46917

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon erratum workaround where wq reset does not clear WQCFG registers was leaked into upstream code. Use wq reset command instead of blasting the MMIO region. Th...

5.5CVSS7.5AI score
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/02/27 6:53 a.m.19 views

CVE-2021-46917 dmaengine: idxd: fix wq cleanup of WQCFG registers

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix wq cleanup of WQCFG registers A pre-release silicon erratum workaround where wq reset does not clear WQCFG registers was leaked into upstream code. Use wq reset command instead of blasting the MMIO region. Th...

6.9AI score0.00026EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/02/27 12:0 a.m.2 views

PT-2024-2975 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the idxd component of the Linux kernel, where a pre-release silicon erratum workaround was leaked into upstream code, causing the WQCFG registers not to be...

7.8CVSS6.7AI score0.00223EPSS
Exploits7References806
Tenable Nessus
Tenable Nessusadded 2012/11/28 12:0 a.m.17 views

Debian DSA-2578-1 : rssh - insufficient filtering of rsync command line

James Clawson discovered that rssh, a restricted shell for OpenSSH to be used with scp, sftp, rdist and cvs, was not correctly filtering command line options. This could be used to force the execution of a remote script and thus allow arbitrary command execution. Two CVE were assigned : -...

4.4CVSS5.8AI score0.0006EPSS
Exploits2References6
Rows per page
Query Builder