Lucene search
+L

160 matches found

CNNVD
CNNVD
added 2023/02/14 12:0 a.m.3 views

Tecnomatix Plant Simulation 缓冲区错误漏洞

Siemens Tecnomatix Plant Simulation is an object-oriented, graphical, and integrated modeling and simulation tool. An out-of-bounds write vulnerability exists in Siemens Tecnomatix Plant Simulation due to an affected application parsing specially crafted SPP files that contain out-of-bounds write...

7.8CVSS7.4AI score0.00226EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/01/26 12:14 p.m.8 views

Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing

An out-of-bounds OOB write flaw was found in Apache Commons BCEL API. This flaw can be used to produce arbitrary bytecode and may abuse applications that pass attacker-controlled data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected...

9.8CVSS7.2AI score0.02836EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/09 4:57 p.m.116 views

Security Bulletin: Code injection vulnerability affect IBM Business Automation Workflow (CVE-2022-42920)

Summary IBM Business Automation Workflow packages Apache Commons BCEL. A code injection vulnerability affecting BCEL was reported. CVE-2022-42920 Vulnerability Details CVEID:CVE-2022-42920 DESCRIPTION: Apache Commons BCEL could allow a remote attacker to bypass security restrictions, caused by an...

9.8CVSS9.8AI score0.02836EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2023/01/03 12:0 a.m.4 views

Fuji Electric V-Server 缓冲区错误漏洞

Fuji Electric V-Server is a software package for collecting and managing real-time field data. An out-of-bounds write vulnerability exists in Fuji Electric V-Server, which can be exploited by an attacker to obtain information and execute arbitrary code by allowing a user to open a specially craft...

7.8CVSS7.5AI score0.00228EPSS
Exploits0References4
OSV
OSV
added 2022/11/19 12:15 a.m.4 views

CVE-2022-31610

NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer nvlddmkm.sys, where a local user with basic capabilities can cause an out-of-bounds write, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tamperi...

7.8CVSS5.8AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/11/15 3:6 p.m.6 views

e2fsprogs: out-of-bounds read/write via crafted filesystem

An out-of-bounds read/write vulnerability was found in e2fsprogs. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem...

7.8CVSS7.6AI score0.01382EPSS
Exploits0References4
Prion
Prion
added 2022/10/31 8:15 p.m.18 views

Design/Logic Flaw

Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to trigger the WriteConfiguration method, which could allow an attacker to provide new values for user configuration files such as UserListInfo.xml. This could lead to the changing of administrativ...

5CVSS7.6AI score0.00511EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/10/20 12:0 a.m.132 views

CVE-2022-3577

CVE-2022-3577 is an out-of-bounds memory write flaw in the Linux kernel HID driver for Kid-friendly Wired Controller (bigben) in bigben_probe (drivers/hid/hid-bigbenff.c). A malicious or defunct bigben device could trigger an out-of-bounds write, potentially crashing the system or allowing local ...

7.8CVSS7.8AI score0.00242EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/08/29 3:15 p.m.14 views

CVE-2022-0934

A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service...

7.5CVSS0.01499EPSS
Exploits0References5
OSV
OSV
added 2022/08/25 6:15 p.m.7 views

AZL-37012 CVE-2022-32742 affecting package samba for versions less than 4.18.3-1

A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file or printer instead of client-supplied data. The client cannot control the area of the...

4.3CVSS6.3AI score0.0099EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/06/14 12:0 a.m.56 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2022-9479)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9479 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34211086 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 342110...

7.8CVSS7.1AI score0.01002EPSS
Exploits0References11
OSV
OSV
added 2022/06/01 12:0 a.m.5 views

CVE-2022-1943

A flaw out of bounds memory write in the Linux kernel UDF file system functionality was found in the way user triggers some file operation which triggers udfwritefi. A local user could use this flaw to crash the system or potentially...

7.8CVSS6.3AI score0.00282EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/05/10 1:58 p.m.4 views

kernel: joydev: zero size passed to joydev_handle_JSIOCSBTNMAP()

An out-of-bounds memory write flaw was found in the Linux kernel’s joystick devices subsystem, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to...

7.8CVSS6.7AI score0.00687EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/05/10 12:0 a.m.1 views

PT-2022-2627 · Adobe · Indesign

Name of the Vulnerable Software and Affected Versions: Adobe InDesign versions 17.1 and earlier Adobe InDesign versions 16.4.1 and earlier Description: The issue is related to an out-of-bounds write vulnerability in Adobe InDesign that could result in arbitrary code execution in the context of th...

7.8CVSS7.7AI score0.00402EPSS
Exploits0References7
Microsoft CVE
Microsoft CVE
added 2022/04/09 7:0 a.m.3 views

An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). A user having access to the NFS mount could potentially use this flaw to crash the system or escalate privileges on the system.

...

8CVSS6.6AI score0.01584EPSS
Exploits0
Prion
Prion
added 2022/03/25 7:15 p.m.33 views

Design/Logic Flaw

An out-of-bounds OOB memory write flaw was found in the Linux kernel’s watchqueue event notification subsystem. This flaw can overwrite parts of the kernel state, potentially allowing a local user to gain privileged access or cause a denial of service on the system...

7.2CVSS7.1AI score0.06197EPSS
Exploits10References5Affected Software2
OSV
OSV
added 2022/03/25 6:3 p.m.13 views

CVE-2022-0995

An out-of-bounds OOB memory write flaw was found in the Linux kernel’s watchqueue event notification subsystem. This flaw can overwrite parts of the kernel state, potentially allowing a local user to gain privileged access or cause a denial of service on the system...

7.8CVSS7.2AI score0.06197EPSS
Exploits10References7
OSV
OSV
added 2022/03/23 8:15 p.m.8 views

CVE-2021-4197

An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1...

7.8CVSS7.8AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/03/10 5:44 p.m.7 views

CVE-2022-0516

A vulnerability was found in kvms390guestsidaop in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw allows a local attacker with a normal user privilege to obtain unauthorized memory write access. This flaw affects Linux kernel versions prior to 5.17-rc4...

7.8CVSS6.5AI score0.00335EPSS
Exploits0References5
Amazon
Amazon
added 2022/03/08 12:0 a.m.9 views

Important: kernel

Issue Overview: AMD recommends using a software mitigation for this issue, which the kernel is enabling by default. The Linux kernel will use the generic retpoline software mitigation, instead of the specialized AMD one, on AMD instances 5a. This is done by default, and no administrator action is...

9CVSS5.3AI score0.67994EPSS
Exploits2
Rows per page
Query Builder