Lucene search
K

95 matches found

OpenVAS
OpenVAS
added 2022/05/16 12:0 a.m.22 views

PostgreSQL 10.x < 10.21, 11.x < 11.16, 12.x < 12.11, 13.x < 13.7, 14.x < 14.3 Privilege Escalation Vulnerability - Windows

PostgreSQL is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS9.2AI score0.12403EPSS
Exploits0References2
Fedora
Fedora
added 2022/03/17 6:37 p.m.27 views

[SECURITY] Fedora 36 Update: gcc-12.0.1-0.12.fc36

The gcc package contains the GNU Compiler Collection version 12. You'll need this package in order to compile C code...

3.9AI score
Exploits0
CNNVD
CNNVD
added 2022/01/10 12:0 a.m.7 views

Markdown-It 资源管理错误漏洞

Markdown-It is a Markdown parser. A security vulnerability exists in Markdown-It, which originates from Markdown-It is a Markdown parser. Prior to version 1.3.2, special patterns greater than 50,000 characters in length significantly slowed down the parser. Users should upgrade to version 12.3.2 ...

5.3CVSS6.4AI score0.02152EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.16 views

Mozilla Firefox Security Advisory (MFSA2012-22) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

10CVSS9.5AI score0.0743EPSS
Exploits0References3
CNVD
CNVD
added 2021/11/02 12:0 a.m.16 views

Google Android System Information Disclosure Vulnerability (CNVD-2021-101431)

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA for short. an information disclosure vulnerability exists in the System component of Google Android version 12. No detailed vulnerability details are available...

7.8CVSS2.3AI score0.00956EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/02 12:0 a.m.21 views

Google Android Framework Elevation of Privilege Vulnerability (CNVD-2021-101443)

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA for short. an elevation of privilege vulnerability exists in the Framework component of Google Android version 12. No detailed vulnerability details are available...

7.8CVSS5AI score0.0011EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/10/11 12:0 a.m.28 views

PostgreSQL 11.x < 11.12, 12.x < 12.7, 13.x < 13.3 Information Disclosure Vulnerability - Windows

PostgreSQL is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS7.5AI score0.01398EPSS
Exploits0References1
Prion
Prion
added 2021/09/27 11:15 a.m.17 views

Cross site scripting

On version 16.x before 16.1.0, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and 11.6.x, a reflected cross-site scripting XSS vulnerability exists in the resource information page for authenticated users when a full webtop is configured on the BIG-IP APM system...

4.3CVSS5.9AI score0.00562EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/08/19 12:0 a.m.56 views

PostgreSQL 11.x < 11.13 / 12.x < 12.8 / 13.x < 13.4 Memory Disclosure

The version of PostgreSQL installed on the remote host is 11 prior to 11.13, 12 prior to 12.8, or 13 prior to 13.4. As such, it is potentially affected by a memory disclosure vulnerability: - A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration, any...

6.5CVSS7.3AI score0.0142EPSS
Exploits0References3
NVD
NVD
added 2021/07/22 7:15 p.m.19 views

CVE-2020-7390

Sage X3 Stored XSS Vulnerability on ‘Edit’ Page of User Profile. An authenticated user can pass XSS strings the "First Name," "Last Name," and "Email Address" fields of this web application component. Updates are available for on-premises versions of Version 12 components shipped with Syracuse...

5.4CVSS0.00597EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/07/22 6:27 p.m.32 views

CVE-2020-7388 Sage X3 AdxAdmin Unauthenticated Command Execution Bypass by Spoofing

Sage X3 Unauthenticated Remote Command Execution RCE as SYSTEM in AdxDSrv.exe component. By editing the client side authentication request, an attacker can bypass credential validation. While exploiting this does require knowledge of the installation path, that information can be learned by...

10CVSS6AI score0.70268EPSS
Exploits4References2
NVD
NVD
added 2021/07/21 3:15 a.m.21 views

CVE-2021-1099

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin that could allow an attacker to cause stack-based buffer overflow and put a customized ROP gadget on the stack. Such an attack may lead to information disclosure, data tampering, or denial of service. This affect...

7.8CVSS0.00218EPSS
Exploits0References1
OSV
OSV
added 2021/07/21 3:15 a.m.4 views

CVE-2021-1100

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel mode driver nvidia.ko, in which a pointer to a user-space buffer is not validated before it is dereferenced, which may lead to denial of service. This affects vGPU version 12.x prior to 12.3, version 11.x prior to 11....

5.5CVSS6AI score0.00275EPSS
Exploits0References1
NVD
NVD
added 2021/07/21 3:15 a.m.25 views

CVE-2021-1097

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it improperly validates the length field in a request from a guest. This flaw allows a malicious guest to send a length field that is inconsistent with the actual length of the input, which may lead to...

7.8CVSS0.00251EPSS
Exploits0References1
Prion
Prion
added 2021/07/21 3:15 a.m.25 views

Design/Logic Flaw

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it can lead to floating point exceptions, which may lead to denial of service. This affects vGPU version 12.x prior to 12.3, version 11.x prior to 11.5 and version 8.x prior 8.8...

2.1CVSS5.8AI score0.00316EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/07/21 2:55 a.m.26 views

CVE-2021-1099

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin that could allow an attacker to cause stack-based buffer overflow and put a customized ROP gadget on the stack. Such an attack may lead to information disclosure, data tampering, or denial of service. This affect...

7CVSS7.9AI score0.00218EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/06/02 12:0 a.m.24 views

PostgreSQL 9.6.x < 9.6.22, 10.x < 10.17, 11.x < 11.12, 12.x < 12.7, 13.x < 13.3 Multiple Vulnerabilities - Linux

PostgreSQL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:postgresql:postgresql";...

8.8CVSS8.1AI score0.0199EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/05/24 12:0 a.m.71 views

PostgreSQL 9.6.x < 9.6.22 / 10.x < 10.17 / 11.x < 11.12 / 12.x < 12.7 / 13.x < 13.3 Multiple Vulnerabilities

The version of PostgreSQL installed on the remote host is 9.6 prior to 9.6.22, 10 prior to 10.17, 11 prior to 11.12, 12 prior to 12.7, or 13 prior to 13.3. As such, it is potentially affected by multiple vulnerabilities : - Buffer overrun from integer overflow in array subscripting calculations...

8.8CVSS7.1AI score0.0199EPSS
Exploits0References7
NVD
NVD
added 2021/04/29 7:15 p.m.21 views

CVE-2021-1087

NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager vGPU plugin, which could allow an attacker to retrieve information that could lead to a Address Space Layout Randomization ASLR bypass. This affects vGPU version 12.x prior to 12.2, version 11.x prior to 11.4 and version 8.x...

5.5CVSS0.00242EPSS
Exploits0References1
NVD
NVD
added 2021/04/29 7:15 p.m.24 views

CVE-2021-1080

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, in which certain input data is not validated, which may lead to information disclosure, tampering of data, or denial of service. This affects vGPU version 12.x prior to 12.2, version 11.x prior to 11.4 and versi...

7.8CVSS0.0025EPSS
Exploits0References1
Rows per page
Query Builder