Lucene search
K

1090 matches found

ATTACKERKB
ATTACKERKB
added 2020/08/24 10:15 p.m.5 views

CVE-2020-24613

wolfSSL before 4.5.0 mishandles TLS 1.3 server data in the WAITCERTCR state, within SanityCheckTls13MsgReceived in tls13.c. This is an incorrect implementation of the TLS 1.3 client state machine. This allows attackers in a privileged network position to completely impersonate any TLS 1.3 servers...

6.8CVSS5.4AI score0.00861EPSS
Exploits1References3
CNVD
CNVD
added 2020/02/27 12:0 a.m.2 views

Linux kernel out-of-bounds read vulnerability (CNVD-2020-14290)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An out-of-bounds read vulnerability exists in setfdc in drivers/block/floppy.c in Linux kernel 5.5.6 and earlier. An attacker can exploit this vulnerability to cause...

7.1CVSS6.5AI score0.00731EPSS
Exploits0References1
OSV
OSV
added 2020/02/25 4:15 p.m.1 views

DEBIAN-CVE-2020-9383

An issue was discovered in the Linux kernel 3.16 through 5.5.6. setfdc in drivers/block/floppy.c leads to a waittilready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2...

7.1CVSS6.2AI score0.00731EPSS
Exploits0References1
OSV
OSV
added 2020/02/25 4:15 p.m.2 views

UBUNTU-CVE-2020-9383

An issue was discovered in the Linux kernel 3.16 through 5.5.6. setfdc in drivers/block/floppy.c leads to a waittilready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2...

7.1CVSS6.6AI score0.00731EPSS
Exploits0References8
OSV
OSV
added 2020/02/06 4:34 p.m.7 views

SUSE-SU-2020:0353-1 Security update for systemd

This update for systemd provides the following fixes: - CVE-2020-1712 bscbsc1162108 Fix a heap use-after-free vulnerability, when asynchronous Polkit queries were performed while handling Dbus messages. A local unprivileged attacker could have abused this flaw to crash systemd services or...

7.8CVSS7.8AI score0.0046EPSS
Exploits0References16
OSV
OSV
added 2020/01/31 12:0 a.m.2 views

UBUNTU-CVE-2020-1700

A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An authenticated attacker can abuse this flaw by making multiple disconnect attempts resulting in a permanent leak of a socket connection by radosgw. This flaw could lead to a denial of service condition by...

6.5CVSS7AI score0.02488EPSS
Exploits0References3
OSV
OSV
added 2019/11/18 6:15 a.m.3 views

UBUNTU-CVE-2019-19073

Memory leaks in drivers/net/wireless/ath/ath9k/htchst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service memory consumption by triggering waitforcompletiontimeout failures. This affects the htcconfigpipecredits function, the htcsetupcomplete function, and the...

4CVSS6.7AI score0.00533EPSS
Exploits0References5
Kitploit
Kitploit
added 2019/04/29 9:34 p.m.97 views

ScanQLi - Scanner To Detect SQL Injection Vulnerabilities

ScanQLi is a simple SQL injection scanner with somes additionals features. This tool can't exploit the SQLi, it just detect them. Tested onDebian 9 Features Classic Blind Time based GBK soon Recursive scan follow all hrefs of the scanned web site Cookies integration Adjustable wait delay between...

8.4AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/04/05 12:0 a.m.7 views

PT-2019-12079 · Salicru · Slc-20-Cube3

Name of the Vulnerable Software and Affected Versions: Salicru SLC-20-cube35 devices running firmware version cs121-SNMP v4.54.82.130611 Description: A reflected HTML injection issue allows remote attackers to inject arbitrary HTML elements via specific API endpoints, including /DataLog.csv?log=,...

6.1CVSS6.5AI score0.05817EPSS
Exploits5References4
OSV
OSV
added 2018/11/12 4:29 p.m.6 views

CVE-2018-1786

IBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets in a CLOSEWAIT state. This can cause TCP/IP resource leakage and may result in a denial of service. IBM X-Force ID: 148871...

7.5CVSS5.8AI score0.02425EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/04/10 3:23 p.m.5 views

kernel: Use-after-free in userfaultfd_event_wait_completion function in userfaultfd.c

A flaw was found in the Linux kernel's handling of fork failure when dealing with event messages in the userfaultfd code. Failure to fork correctly can create a fork event that will be removed from an already freed list of events...

9.3CVSS7AI score0.04075EPSS
Exploits0References4
OSV
OSV
added 2018/02/26 3:29 a.m.3 views

UBUNTU-CVE-2017-18200

The f2fs implementation in the Linux kernel before 4.14 mishandles reference counts associated with f2fswaitdiscardbios calls, which allows local users to cause a denial of service BUG, as demonstrated by fstrim...

5.5CVSS6.7AI score0.00335EPSS
Exploits0References4
Kitploit
Kitploit
added 2018/02/03 1:0 p.m.31 views

ICMPExfil - Exfiltrate data with ICMP

ICMP Exfil allows you to transmit data via valid ICMP packets. You use the client script to pass in data you wish to exfiltrate, then on the device you're transmitting to you run the server. Anyone watching-- human or security system-- will just see valid ICMP packets, there's nothing malicious...

7AI score
Exploits0References1
Jake Archibald's Blog
Jake Archibald's Blog
added 2017/12/07 1:23 p.m.13 views

await vs return vs return await

When writing async functions, there are differences between await vs return vs return await, and picking the right one is important. Let's start with this async function: async function waitAndMaybeReject // Wait one second await new Promiser = setTimeoutr, 1000; // Toss a coin const isHeads =...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/05/25 3:32 p.m.5 views

kernel: Reachable BUG_ON from userspace in sctp_wait_for_sndbuf

It was reported that with Linux kernel, earlier than version v4.10-rc8, an application may trigger a BUGON in sctpwaitforsndbuf if the socket tx buffer is full, a thread is waiting on it to queue more data, and meanwhile another thread peels off the association being used by the first thread...

7.1CVSS7.2AI score0.01162EPSS
Exploits0References4
Microsoft KB
Microsoft KB
added 2017/04/05 12:0 a.m.4 views

Reliability and scalability improvements in TCP/IP for Windows 8.1 and Windows Server 2012 R2

Reliability and scalability improvements in TCP/IP for Windows 8.1 and Windows Server 2012 R2 Summary This article describes various network and computer issues that occur when TCP ephemeral ports are exhausted in Windows 8.1 or Windows Server 2012 R2. An update is available to fix these issues...

6.8AI score
Exploits0
CNVD
CNVD
added 2017/03/02 12:0 a.m.3 views

Linux kernel local denial of service vulnerability (CNVD-2017-02604)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A local denial of service vulnerability exists in Linux kernel prior to version 4.10.1, where a local attacker can cause a denial of service invalid unlock and double release...

5.5CVSS7.2AI score0.00374EPSS
Exploits0References1
OSV
OSV
added 2017/03/01 8:59 p.m.8 views

UBUNTU-CVE-2017-6353

net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service invalid unlock and double free via a multithreaded application. NOTE: this vulnerability exists because...

5.5CVSS6.7AI score0.00374EPSS
Exploits0References3
OSV
OSV
added 2017/02/18 12:0 a.m.10 views

UBUNTU-CVE-2017-5986

Race condition in the sctpwaitforsndbuf function in net/sctp/socket.c in the Linux kernel before 4.9.11 allows local users to cause a denial of service assertion failure and panic via a multithreaded application that peels off an association in a certain buffer-full state...

5.5CVSS6.7AI score0.01162EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.9 views

The vulnerability of the NX-OS network operating system allows a hacker to induce a maintenance failure.

The vulnerability of the NX-OS network operating system is related to resource management errors. Exploiting this vulnerability allows a malicious actor to trigger a service failure TCP stack reboot by sending TCP packets to the device during the TIMEWAIT TCP session...

7.8CVSS7.2AI score0.03944EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder