Lucene search
K
BroadcomMost viewed

879 matches found

Broadcom
Broadcom
added 2019/08/15 12:0 a.m.5 views

BSA-2019-133

Security Advisory ID : BSA-2019-133 Component : FOS Revision : 1.0: Final The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and...

9.8CVSS6.8AI score0.13736EPSS
Exploits0
Broadcom
Broadcom
added 2019/08/08 12:0 a.m.5 views

BSA-2019-843

Security Advisory ID : BSA-2019-843 Component : Kernel Revision : 1.0: Final Bitdefender researchers have identified and demonstrated a new side-channel attack.This newly disclosed attack bypasses all known mitigation mechanisms implemented in response to Spectre and Meltdown. More information at...

5.6CVSS6.7AI score0.04521EPSS
Exploits4
Broadcom
Broadcom
added 2018/09/26 12:0 a.m.5 views

BSA-2018-710

Security Advisory ID : BSA-2018-710 Component : Apache HTTPD Revision : 1.0: Final In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only...

5.9CVSS9.1AI score0.51002EPSS
Exploits0
Broadcom
Broadcom
added 2018/08/14 12:0 a.m.5 views

BSA-2018-687

Security Advisory ID : BSA-2018-687 Component : Kernel Revision : 1.0: Final Security researchers have identified a speculative execution side-channel method called L1 Terminal Fault L1TF also known as Foreshadow. This method impacts select microprocessor products supporting Intel® Software Guard...

7.3CVSS8.2AI score0.08101EPSS
Exploits0
Broadcom
Broadcom
added 2018/07/19 12:0 a.m.5 views

BSA-2018-536

Security Advisory ID : BSA-2018-536 Component : OpenSSH Revision : 2.0: Final A memory exhaustion issue in OpenSSH that can be triggered before user authentication was found. An unauthenticated attacker could consume approx. 400 MB of memory per each connection. The attacker could set up multiple...

7.8CVSS7.2AI score0.29462EPSS
Exploits0
Broadcom
Broadcom
added 2018/05/21 12:0 a.m.5 views

BSA-2018-612

Security Advisory ID : BSA-2018-612 Component : HW:CPU Revision : 1.0: Final Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may return a speculative register value that is then used in subsequent speculative load instructions...

5.6CVSS6.5AI score0.07556EPSS
Exploits0
Broadcom
Broadcom
added 2018/05/21 12:0 a.m.5 views

BSA-2018-611

Security Advisory ID : BSA-2018-611 Component : HW:CPU Revision : 1.0: Final Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may read an earlier value of the data. Subsequent speculati...

5.5CVSS8.9AI score0.60631EPSS
Exploits2
Broadcom
Broadcom
added 2018/05/17 12:0 a.m.5 views

BSA-2018-602

Security Advisory ID : BSA-2018-602 Component : Win32k Revision : 1.0: Final An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel...

7.2CVSS7.4AI score0.73721EPSS
Exploits18
Broadcom
Broadcom
added 2017/11/17 12:0 a.m.5 views

BSA-2017-458

Security Advisory ID : BSA-2017-458 Component : Libgcrypt Revision : 2.0: Final libgcrypt: use ciphertext blinding for Elgamal decryption new side-channel attack...

4.2CVSS7AI score0.00576EPSS
Exploits0
Broadcom
Broadcom
added 2017/11/17 12:0 a.m.5 views

BSA-2017-450

Security Advisory ID : BSA-2017-450 Component : IPV6RA Revision : 2.0: Final A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement RA handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially...

9.8CVSS7.7AI score0.93307EPSS
Exploits5
Broadcom
Broadcom
added 2017/11/17 12:0 a.m.5 views

BSA-2017-452

Security Advisory ID : BSA-2017-452 Component : dhcp6 Revision : 2.0: Final An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking...

5.9CVSS6.2AI score0.67549EPSS
Exploits5
Broadcom
Broadcom
added 2017/11/17 12:0 a.m.5 views

BSA-2017-449

Security Advisory ID : BSA-2017-449 Component : dnsmasq Revision : 2.0: Final A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code...

9.8CVSS8AI score0.84925EPSS
Exploits6
Broadcom
Broadcom
added 2017/08/25 12:0 a.m.5 views

BSA-2017-354

Security Advisory ID : BSA-2017-354 Component : Linux Kernel Revision : 3.0: Interim The tcpv6synrecvsock function in net/ipv6/tcpipv6.c in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system...

7.8CVSS7.2AI score0.01372EPSS
Exploits5
Broadcom
Broadcom
added 2017/08/25 12:0 a.m.5 views

BSA-2017-379

Security Advisory ID : BSA-2017-379 Component : OpenVPN Revision : 1.0: Interim OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service and/or possibly sensitive memory leak triggered by man-in-the-middle attacker. Affected Products Brocade is investigating its product...

7.4CVSS6.9AI score0.0338EPSS
Exploits0
Broadcom
Broadcom
added 2017/08/25 12:0 a.m.5 views

BSA-2017-394

Security Advisory ID : BSA-2017-394 Component : PostgreSQL Revision : 1.0: Interim It was found that authenticating to a PostgreSQL database account with an empty password was possible despite libpq's refusal to send an empty password. A remote attacker could potentially use this flaw to gain...

9.8CVSS7.2AI score0.61566EPSS
Exploits0
Broadcom
Broadcom
added 2017/08/25 12:0 a.m.5 views

BSA-2017-395

Security Advisory ID : BSA-2017-395 Component : PostgreSQL Revision : 1.0: Interim An authorization flaw was found in the way PostgreSQL handled access to the pgusermappings view on foreign servers. A remote authenticated attacker could potentially use this flaw to retrieve passwords from the use...

8.8CVSS6.7AI score0.05581EPSS
Exploits0
Broadcom
Broadcom
added 2017/08/25 12:0 a.m.5 views

BSA-2017-371

Security Advisory ID : BSA-2017-371 Component : OpenSSH Revision : 1.0: Interim ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an ...

7.5CVSS7.1AI score0.02374EPSS
Exploits0
Broadcom
Broadcom
added 2017/08/25 12:0 a.m.5 views

BSA-2017-362

Security Advisory ID : BSA-2017-362 Component : Apache Revision : 1.0: Interim In Apachehttpd2.2.x before 2.2.33 and 2.4.x before 2.4.26,modsslmay dereference a NULL pointer when third-party modules callaphookprocessconnection during an HTTP request to an HTTPS port. Affected Products Brocade is...

9.8CVSS9.5AI score0.19953EPSS
Exploits0
Broadcom
Broadcom
added 2017/05/17 12:0 a.m.5 views

BSA-2017-309

Security Advisory ID : BSA-2017-309 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded,JRockitcomponent of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111;JRockit: R28.3.12...

5.3CVSS7.5AI score0.03533EPSS
Exploits0
Broadcom
Broadcom
added 2017/05/17 12:0 a.m.5 views

allows remote attackers to cause a denial of service (CVE-2017-6464)

Security Advisory ID : BSA-2017-287 Component : NTP Revision : 1.0: Interim NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service ntpdcrash via a malformed mode configuration directive. Affected Products Brocade is investigating its product lines to...

6.5CVSS8.3AI score0.05103EPSS
Exploits0
Broadcom
Broadcom
added 2017/05/17 12:0 a.m.5 views

BSA-2017-286

Security Advisory ID : BSA-2017-286 Component : Apache Revision : 1.0: Interim Apache HTTP Server, prior to release 2.4.25, accepted a broad pattern of unusual whitespace patterns from the user-agent, including bare CR, FF, VTAB in parsing the request line and request header lines, as well as HTA...

7.5CVSS9.5AI score0.13252EPSS
Exploits0
Broadcom
Broadcom
added 2017/05/17 12:0 a.m.5 views

BSA-2017-275

Security Advisory ID : BSA-2017-275 Component : OpenSSH Revision : 2.0: Final The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges ...

7.8CVSS9.1AI score0.01281EPSS
Exploits1
Broadcom
Broadcom
added 2017/05/17 12:0 a.m.5 views

BSA-2017-288

Security Advisory ID : BSA-2017-288 Component : NTP Revision : 1.0: Interim There is a potential for a buffer overflow in the legacy Datum Programmable Time Serverrefclockdriver. Here the packets are processed from the /dev/datum device and handled indatumptsreceive. Since an attacker would be...

7.8CVSS9.5AI score0.00491EPSS
Exploits0
Broadcom
Broadcom
added 2017/05/17 12:0 a.m.5 views

BSA-2017-281

Security Advisory ID : BSA-2017-281 Component : OpenSSL Revision : 3.0: Final Thedoaproutchfunction in crypto/bio/bprint.cin OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not verify that a certain memory allocation succeeds, which allows remote attackers to cause a denial of service...

10CVSS9.8AI score0.53655EPSS
Exploits1
Broadcom
Broadcom
added 2017/03/31 12:0 a.m.5 views

BSA-2017-215

Security Advisory ID : BSA-2017-215 Component : sqlite Revision : 3.0: Final osunix.cin SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service application crash, or have...

5.9CVSS6.9AI score0.0048EPSS
Exploits0
Broadcom
Broadcom
added 2015/05/13 12:0 a.m.5 views

BSA-2015-004

Summary Security Advisory ID : BSA-2015-004 Component : OpenSSL Revision : 6.0 N/A...

5CVSS7.2AI score0.07295EPSS
Exploits0
Broadcom
Broadcom
added 2026/07/06 12:0 a.m.4 views

Libarchive security update (CVE-2026-5121, CVE-2026-4424)

CVE-2026-5121 - Title: Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing Description A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can...

9.8CVSS7.9AI score0.01073EPSS
Exploits0
Broadcom
Broadcom
added 2026/07/01 12:0 a.m.4 views

xfrm: esp: avoid in-place decrypt on shared skb frags (CVE-2026-43284)

In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSGSPLICEPAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFLSHAREDFRAG after skbsplicefromiter, so later paths that may modify packet data ca...

8.8CVSS6.5AI score0.93235EPSS
Exploits31
Broadcom
Broadcom
added 2026/07/01 12:0 a.m.4 views

Rocky Linux security update in Brocade ASCG 3.4.0c (CVE-2025-68724, CVE-2026-23401, CVE-2026-31402, CVE-2025-40252)

CVE-2025-68724- Title: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Description In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer...

9.8CVSS6.1AI score0.0049EPSS
Exploits0
Total number of security vulnerabilities879