Lucene search
+L

160 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2020-14305

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds memory write flaw was found in how the Linux kernel's Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port...

8.3CVSS6.1AI score0.05114EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.7 views

The vulnerability of the reiserfs loader component in the Grub2 operating system, which allows a hacker to cause a service failure

The vulnerability of the reiserfs driver in operating systems like Grub relates to writing beyond the boundary. Exploiting this vulnerability can allow an attacker to cause a system failure...

7.8CVSS6.8AI score0.00253EPSS
Exploits0References10Affected Software4
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0041: tigervnc (ALINUX3-SA-2025:0041)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0041 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-26594: A use-after-free flaw was...

7.8CVSS7.8AI score0.00485EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/03/27 12:0 a.m.12 views

Amazon Linux 2 : xorg-x11-server (ALAS-2025-2791)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2791 advisory. A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to free...

7.8CVSS7.8AI score0.00485EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2025/03/25 12:0 a.m.13 views

Azure Linux 3.0 Security Update: unixODBC (CVE-2024-1013)

The version of unixODBC installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1013 advisory. - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 byte...

7.8CVSS7AI score0.00284EPSS
Exploits0References2
OSV
OSV
added 2025/02/25 4:15 p.m.7 views

AZL-57327 CVE-2025-26598 affecting package xorg-x11-server-Xwayland for versions less than 24.1.6-1

An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice searches for the pointer device based on its device ID and returns the matching value, or supposedly NULL, if no match was found. However, the code will return the last element of the list if no matching...

7.8CVSS5.8AI score0.00369EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/02/25 3:54 p.m.9 views

CVE-2025-26598

An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice searches for the pointer device based on its device ID and returns the matching value, or supposedly NULL, if no match was found. However, the code will return the last element of the list if no matching...

7.8CVSS7.5AI score0.00369EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/02/25 3:54 p.m.10 views

CVE-2025-26598

An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice searches for the pointer device based on its device ID and returns the matching value, or supposedly NULL, if no match was found. However, the code will return the last element of the list if no matching...

7.8CVSS7.7AI score0.00369EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/25 3:54 p.m.10 views

CVE-2025-26598

An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice searches for the pointer device based on its device ID and returns the matching value, or supposedly NULL, if no match was found. However, the code will return the last element of the list if no matching...

7.8CVSS6.8AI score0.00369EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/10 2:51 p.m.37 views

Security Bulletin: Vulnerabilities in shim library (CVE-2023-40546, CVE-2023-40547, CVE-2023-40548, CVE-2023-40549, CVE-2023-40550, CVE-2023-40551) affect Power HMC.

Summary The shim library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-40546 DESCRIPTION: rhboot shim is vulnerable to a denial of service, caused by a NULL pointer dereference f;aw in the mirroroneesl function in...

8.3CVSS8.5AI score0.04892EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/08/13 5:15 p.m.5 views

CVE-2021-26344

An out of bounds memory write when processing the AMD PSP1 Configuration Block APCB could allow an attacker with access the ability to modify the BIOS image, and the ability to sign the resulting image, to potentially modify the APCB block resulting in arbitrary code execution...

8.2CVSS6AI score0.00161EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/07/25 8:42 a.m.6 views

squid: Out-of-bounds write error may lead to Denial of Service

A flaw was found in Squid. An out-of-bounds write can be triggered when an Edge Side Includes ESI variable is assigned to a value not in the standard ASCII range, for example, multi-byte characters. This flaw allows a trusted server to crash Squid while processing an ESI response content, resulti...

6.3CVSS5.7AI score0.06255EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.4 views

kernel: lib/kobject.c vulnerable to fill_kobj_path out-of-bounds write

An out-of-bounds memory write flaw was found in the load/unload module in the Linux kernel's kobject functionality, potentially triggering a race condition in the kobjectgetpath function. This issue may allow a local user to crash the system or potentially escalate their privileges on the system...

6.4CVSS6.8AI score0.00284EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/03/27 12:0 a.m.21 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : unixODBC vulnerability (USN-6715-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6715-1 advisory. It was discovered that unixODBC incorrectly handled certain bytes. An attacker could use this issue to execute arbitra...

7.8CVSS7.6AI score0.00284EPSS
Exploits0References2
CVE
CVE
added 2024/03/18 10:53 a.m.312 views

CVE-2024-1013

CVE-2024-1013 (unixODBC) has an out-of-bounds stack write on 64-bit architectures where the caller uses 4 bytes but the callee writes 8. This can cause memory corruption or crashes, with impact depending on endianness (more visible on big-endian). Affected products in connected docs show unixODBC...

7.8CVSS6.7AI score0.00284EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2024/03/13 9:11 a.m.7 views

kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS5.8AI score0.00308EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/03/12 11:49 a.m.3 views

kernel: net/sched: sch_qfq component can be exploited if in qfq_change_agg function happens qfq_enqueue overhead

An out-of-bounds memory write flaw was found in qfqchangeagg in net/sched/schqfq.c in the Traffic Control QoS subsystem in the Linux kernel. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.8AI score0.00274EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/03/12 11:48 a.m.3 views

kernel: net/sched: sch_qfq component can be exploited if in qfq_change_agg function happens qfq_enqueue overhead

An out-of-bounds memory write flaw was found in qfqchangeagg in net/sched/schqfq.c in the Traffic Control QoS subsystem in the Linux kernel. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.8AI score0.00274EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/03/04 12:0 a.m.34 views

Ubuntu 22.04 LTS : Linux kernel (GKE) vulnerabilities (USN-6653-4)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6653-4 advisory. It was discovered that a race condition existed in the ATM Asynchronous Transfer Mode subsystem of the Linux kernel, leading to a use-after-free...

7.8CVSS7.6AI score0.01999EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/02/15 5:46 p.m.5 views

kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS7.3AI score0.00308EPSS
Exploits0References5
Rows per page
Query Builder