Lucene search
K

41 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.38 views

RHEL 9 : go-git (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - go-git: Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients...

8AI score0.01523EPSS
Exploits0References2
Prion
Prion
added 2024/01/12 11:15 a.m.32 views

Path traversal

A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the ChrootO...

7.5CVSS7.7AI score0.01523EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/02/13 5:35 p.m.11 views

GSD-2023-1002041 squashfs: harden sanity check in squashfs_read_xattr_id_table

squashfs: harden sanity check in squashfsreadxattridtable This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.93 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/01/17 6:49 p.m.17 views

GSD-2023-1001180 drm/amdgpu/powerplay/psm: Fix memory leak in power state init

drm/amdgpu/powerplay/psm: Fix memory leak in power state init This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/12/08 2:48 a.m.7 views

GSD-2022-1007945 dmaengine: ti: k3-udma-glue: fix memory leak when register device fail

dmaengine: ti: k3-udma-glue: fix memory leak when register device fail This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.79 by commit...

7.1AI score
Exploits0
OSV
OSV
added 2022/12/08 2:34 a.m.6 views

GSD-2022-1007797 phy: ralink: mt7621-pci: add sentinel to quirks table

phy: ralink: mt7621-pci: add sentinel to quirks table This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.9 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/12/08 2:33 a.m.9 views

GSD-2022-1007787 dmaengine: ti: k3-udma-glue: fix memory leak when register device fail

dmaengine: ti: k3-udma-glue: fix memory leak when register device fail This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.9 by commit...

7.1AI score
Exploits0
OSV
OSV
added 2022/11/14 7:1 p.m.9 views

GSD-2022-1007057 clk: imx: scu: fix memleak on platform_device_add() fails

clk: imx: scu: fix memleak on platformdeviceadd fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/10/09 10:45 p.m.7 views

GSD-2022-1006526 scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts()

scsi: qla2xxx: Fix memory leak in qlt24xxhandleabts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.12 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:1 a.m.12 views

GSD-2022-1005504 net: qrtr: start MHI channel after endpoit creation

net: qrtr: start MHI channel after endpoit creation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2022/06/29 12:25 p.m.29 views

CVE-2022-33037

A binary hijack in Orwell-Dev-Cpp v5.11 allows attackers to execute arbitrary code via a crafted .exe file...

8AI score0.00391EPSS
Exploits1References1
CVE
CVE
added 2022/06/29 12:25 p.m.91 views

CVE-2022-33037

CVE-2022-33037 affects Orwell-Dev-Cpp v5.11, where a binary hijack allows an attacker to execute arbitrary code by processing a crafted .exe file. The vulnerability is documented across multiple sources (e.g., NVD, Red Hat, CNVD) with the described impact being code execution on local access. The...

7.8CVSS7.7AI score0.00391EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/06/28 7:16 p.m.7 views

GSD-2022-1003454 netfilter: nf_tables: double hook unregistration in netns path

netfilter: nftables: double hook unregistration in netns path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.45 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 6:38 p.m.10 views

GSD-2022-1003027 iommu/arm-smmu-v3-sva: Fix mm use-after-free

iommu/arm-smmu-v3-sva: Fix mm use-after-free This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/04/24 9:53 p.m.9 views

GSD-2022-1001904 PM: domains: Fix sleep-in-atomic bug caused by genpd_debug_remove()

PM: domains: Fix sleep-in-atomic bug caused by genpddebugremove This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/04/24 9:48 p.m.5 views

GSD-2022-1001857 drm/bridge: anx7625: Fix overflow issue on reading EDID

drm/bridge: anx7625: Fix overflow issue on reading EDID This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...

7.5AI score
Exploits0
OSV
OSV
added 2022/04/24 9:27 p.m.13 views

GSD-2022-1001599 PM: domains: Fix sleep-in-atomic bug caused by genpd_debug_remove()

PM: domains: Fix sleep-in-atomic bug caused by genpddebugremove This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/04/24 9:12 p.m.11 views

GSD-2022-1001428 block: Fix the maximum minor value is blk_alloc_ext_minor()

block: Fix the maximum minor value is blkallocextminor This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/04/24 8:51 p.m.8 views

GSD-2022-1001179 clk: Fix clk_hw_get_clk() when dev is NULL

clk: Fix clkhwgetclk when dev is NULL This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit 23f89fe005b105f0dcc55034c13eb89f9b570fac...

7.2AI score
Exploits0
OSV
OSV
added 2022/04/24 8:36 p.m.9 views

GSD-2022-1000981 net/smc: use memcpy instead of snprintf to avoid out of bounds read

net/smc: use memcpy instead of snprintf to avoid out of bounds read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder