Lucene search
K

208 matches found

CNNVD
CNNVD
added 2024/09/27 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from kernel.randomizevaspace double read...

5.5CVSS6.3AI score0.00248EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/08/15 12:0 a.m.27 views

SolarWinds Web Help Desk < 12.8.3 HF 1 Deserialization RCE

The version of SolarWinds Web Help Desk installed on the remote host is prior to 12.8.3 HF1. It is, therefore, affected by a remote code execution vulnerability, that, if exploited, would allow an attacker to run commands on the host machine. Note that Nessus has not tested for these issues but h...

9.8CVSS7AI score0.84628EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/07/30 7:45 a.m.15 views

CVE-2023-52888 media: mediatek: vcodec: Only free buffer VA that is not NULL

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Only free buffer VA that is not NULL In the MediaTek vcodec driver, while mtkvcodecmemfree is mostly called only when the buffer to free exists, there are some instances that didn't do the check and...

7AI score0.00241EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/30 7:45 a.m.21 views

CVE-2023-52888 media: mediatek: vcodec: Only free buffer VA that is not NULL

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Only free buffer VA that is not NULL In the MediaTek vcodec driver, while mtkvcodecmemfree is mostly called only when the buffer to free exists, there are some instances that didn't do the check and...

0.00241EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/07/30 7:45 a.m.15 views

CVE-2023-52888

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Only free buffer VA that is not NULL In the MediaTek vcodec driver, while mtkvcodecmemfree is mostly called only when the buffer to free exists, there are some instances that didn't do the check and...

5.5CVSS5.4AI score0.00241EPSS
Exploits0
CVE
CVE
added 2024/07/30 7:45 a.m.126 views

CVE-2023-52888

CVE-2023-52888 is a Linux kernel vulnerability affecting the MediaTek vcodec driver, where vcodec memory free operations may attempt to free a NULL VA without proper checks. The root cause is an unguarded path in mtk_vcodec_mem_free() that can trigger warnings and, in practice, exposes a potentia...

5.5CVSS6.8AI score0.00241EPSS
Exploits0References3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/28 6:0 p.m.43 views

Security Bulletin: Multiple Security Vulnerabilities have been fixed in the IBM Directory Server and IBM Directory Suite products (CVE-2022-22473. CVE-2021-38951)

Summary Multiple Security Vulnerabilities in the IBM WebSphere Application Server product as shipped with the IBM Directory Server and IBM Directory Suite products have been fixed. Vulnerability Details CVEID:CVE-2022-22473 DESCRIPTION: IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 coul...

7.5CVSS6.4AI score0.01521EPSS
Exploits0Affected Software3
Openbugbounty
Openbugbounty
added 2024/02/27 6:37 a.m.11 views

smilebydesignva.com Improper Access Control vulnerability OBB-3860466

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/02/16 11:23 a.m.11 views

mechanicsville-va.findstoragefast.com Cross Site Scripting vulnerability OBB-3853506

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/21 11:38 p.m.11 views

rehab.research.va.gov Cross Site Scripting vulnerability OBB-3839863

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/19 7:56 p.m.7 views

lyon.onvasortir.com Cross Site Scripting vulnerability OBB-3785534

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.3AI score
Exploits0
Fedora
Fedora
added 2023/11/19 1:26 a.m.40 views

[SECURITY] Fedora 39 Update: gstreamer1-vaapi-1.22.7-1.fc39

A collection of GStreamer plugins to let you make use of VA API video acceleration from GStreamer applications. Includes elements for video decoding, display, encoding and post-processing using VA API subject to hardware limitations...

8.8CVSS6.5AI score0.02189EPSS
Exploits0
hivepro
hivepro
added 2023/10/13 5:9 p.m.14 views

Hive Pro Unveils Revolutionary Platform Uni5 Xposure, Elevating the Potential of Threat Exposure Management

HERNDON, VA., Oct. 10, 2023 - Hive Pro®, a pioneer vendor in Threat Exposure Management today announced the highly-anticipated release of their new platform Uni5 Xposure, which debuts live at the GITEX GLOBAL trade show in Dubai, UAE and at Triangle InfoSec Conference in North Carolina, USA. Uni5...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/08/17 9:39 p.m.12 views

va-studiodesign.com Cross Site Scripting vulnerability OBB-3588456

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/07/20 8:39 a.m.17 views

niel.n-va.be Cross Site Scripting vulnerability OBB-3531721

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/07/09 10:18 a.m.17 views

citrixaccesseast.va.gov Cross Site Scripting vulnerability OBB-3494085

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
CNVD
CNVD
added 2023/06/21 12:0 a.m.9 views

IBM Security Directory Suite VA File Upload Vulnerability

IBM Security Directory Suite is a scalable, standards-based identity platform from International Business Machines IBM that simplifies identity and directory management. A file upload vulnerability exists in IBM Security Directory Suite VA, which can be exploited by an attacker to upload maliciou...

7.2CVSS6.5AI score0.00787EPSS
Exploits0References1
OSV
OSV
added 2023/06/15 3:15 a.m.5 views

CVE-2022-33166

IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 could allow a privileged user to upload malicious files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 228586...

7.2CVSS5.8AI score0.00787EPSS
Exploits0References2
Prion
Prion
added 2023/06/15 3:15 a.m.13 views

Design/Logic Flaw

IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 could allow a privileged user to upload malicious files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 228586...

5.8CVSS7AI score0.00787EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/06/15 2:57 a.m.49 views

CVE-2022-32752

CVE-2022-32752 affects IBM Security Directory Suite VA 8.0.1 through 8.0.1.19. A remote authenticated attacker can execute arbitrary commands on the system by sending a specially crafted request. IBM’s advisory and related sources identify the affected product and provide a fix: update to IBM Sec...

8.8CVSS7.5AI score0.01361EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder