Lucene search

K
NetappCloud Backup

344 matches found

CVE
CVE
added 2022/02/09 11:15 p.m.97 views

CVE-2021-0116

Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

7.8CVSS7.5AI score0.00199EPSS
CVE
CVE
added 2018/01/18 2:29 a.m.95 views

CVE-2018-2581

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful at...

4.7CVSS4.4AI score0.00665EPSS
CVE
CVE
added 2019/01/16 8:29 p.m.95 views

CVE-2018-5737

A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching can in some cases cause undesir...

7.5CVSS6.3AI score0.01256EPSS
CVE
CVE
added 2019/09/16 4:15 p.m.95 views

CVE-2019-11184

A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated user to potentially enable partial information disclosure via adjacent access.

4.8CVSS4.6AI score0.00203EPSS
CVE
CVE
added 2020/11/12 6:15 p.m.95 views

CVE-2020-12356

Out-of-bounds read in subsystem in Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable information disclosure via local access.

4.4CVSS5.1AI score0.00145EPSS
CVE
CVE
added 2021/06/09 7:15 p.m.95 views

CVE-2020-12357

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS7AI score0.00098EPSS
CVE
CVE
added 2020/12/09 9:15 p.m.95 views

CVE-2020-16593

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause a denial of service via a crafted file.

5.5CVSS5.5AI score0.00301EPSS
CVE
CVE
added 2020/11/12 6:15 p.m.94 views

CVE-2020-8757

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.8AI score0.00136EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.94 views

CVE-2021-0156

Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.

7.8CVSS7.6AI score0.00148EPSS
CVE
CVE
added 2020/11/12 6:15 p.m.92 views

CVE-2020-8754

Out-of-bounds read in subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS7.1AI score0.00964EPSS
CVE
CVE
added 2019/11/14 8:15 p.m.91 views

CVE-2019-11113

Buffer overflow in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6618 (DCH) or 21.20.x.5077 (aka15.45.5077) may allow a privileged user to potentially enable information disclosure via local access.

4.4CVSS5.4AI score0.00249EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.90 views

CVE-2021-0115

Buffer overflow in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.9AI score0.00166EPSS
CVE
CVE
added 2019/11/14 8:15 p.m.89 views

CVE-2019-11111

Pointer corruption in the Unified Shader Compiler in Intel(R) Graphics Drivers before 10.18.14.5074 (aka 15.36.x.5074) may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.8AI score0.00241EPSS
CVE
CVE
added 2019/11/14 7:15 p.m.89 views

CVE-2019-11112

Memory corruption in Kernel Mode Driver in Intel(R) Graphics Driver before 26.20.100.6813 (DCH) or 26.20.100.6812 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.8AI score0.00244EPSS
CVE
CVE
added 2020/11/12 6:15 p.m.89 views

CVE-2020-8746

Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

6.5CVSS7.8AI score0.00213EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.89 views

CVE-2021-0117

Pointer issues in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

7.8CVSS7.5AI score0.00199EPSS
CVE
CVE
added 2019/11/14 8:15 p.m.88 views

CVE-2019-14591

Improper input validation in the API for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.

5.5CVSS5.9AI score0.00158EPSS
CVE
CVE
added 2019/11/14 8:15 p.m.87 views

CVE-2019-11089

Insufficient input validation in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6519 may allow an authenticated user to potentially enable denial of service via local access.

5.5CVSS5.8AI score0.00158EPSS
CVE
CVE
added 2020/11/12 6:15 p.m.87 views

CVE-2020-8760

Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.

7.8CVSS7.8AI score0.00124EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.87 views

CVE-2021-0111

NULL pointer dereference in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

6.7CVSS6.6AI score0.00156EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.86 views

CVE-2021-0099

Insufficient control flow management in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.

7.8CVSS7.6AI score0.00199EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.86 views

CVE-2021-0118

Out-of-bounds read in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

6.7CVSS6.6AI score0.00156EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.85 views

CVE-2021-0125

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

6.6CVSS6.5AI score0.00199EPSS
CVE
CVE
added 2021/02/23 5:15 p.m.83 views

CVE-2021-20226

A use-after-free flaw was found in the io_uring in Linux kernel, where a local attacker with a user privilege could cause a denial of service problem on the system The issue results from the lack of validating the existence of an object prior to performing operations on the object by not incrementi...

7.8CVSS7.2AI score0.00146EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.82 views

CVE-2021-0092

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

4.4CVSS4.6AI score0.00066EPSS
CVE
CVE
added 2021/06/09 7:15 p.m.79 views

CVE-2020-24486

Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.

5.5CVSS6AI score0.00059EPSS
CVE
CVE
added 2020/12/11 8:15 p.m.76 views

CVE-2020-27730

In versions 3.0.0-3.9.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller Agent does not use absolute paths when calling system utilities.

9.8CVSS9.4AI score0.0146EPSS
CVE
CVE
added 2021/06/09 7:15 p.m.76 views

CVE-2020-8670

Race condition in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

6.4CVSS6.8AI score0.00053EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.74 views

CVE-2021-0093

Incorrect default permissions in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

4.4CVSS4.6AI score0.00042EPSS
CVE
CVE
added 2021/06/09 7:15 p.m.73 views

CVE-2020-8700

Improper input validation in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS7AI score0.00235EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.72 views

CVE-2021-0091

Improper access control in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable an escalation of privilege via local access.

7.8CVSS7.8AI score0.00277EPSS
CVE
CVE
added 2020/11/12 6:15 p.m.71 views

CVE-2020-8738

Improper conditions check in Intel BIOS platform sample code for some Intel(R) Processors before may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.8AI score0.00255EPSS
CVE
CVE
added 2021/06/09 7:15 p.m.70 views

CVE-2020-12360

Out of bounds read in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS7.7AI score0.00174EPSS
CVE
CVE
added 2023/05/03 3:15 p.m.70 views

CVE-2023-28656

NGINX Management Suite may allow an authenticated attacker to gain access to configuration objects outside of their assigned environment. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

8.1CVSS8.1AI score0.00204EPSS
CVE
CVE
added 2020/11/12 6:15 p.m.69 views

CVE-2020-0590

Improper input validation in BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS8.2AI score0.00363EPSS
CVE
CVE
added 2020/07/20 7:15 p.m.69 views

CVE-2020-15852

An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port permissions of an unrelated task. This occurs because tss_invalidate_io_bitmap mishandling causes a loss of synchronization between the I/O bitmaps...

7.8CVSS7.3AI score0.0016EPSS
CVE
CVE
added 2019/11/14 8:15 p.m.67 views

CVE-2019-14590

Improper access control in the API for the Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable information disclosure via local access.

5.5CVSS5.1AI score0.00194EPSS
CVE
CVE
added 2021/11/02 10:15 p.m.66 views

CVE-2017-5123

Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.

8.8CVSS7.4AI score0.01984EPSS
CVE
CVE
added 2021/06/09 7:15 p.m.63 views

CVE-2020-12359

Insufficient control flow management in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

6.8CVSS7.2AI score0.00369EPSS
CVE
CVE
added 2020/09/10 2:15 p.m.63 views

CVE-2020-25221

get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit p...

7.8CVSS7.5AI score0.00193EPSS
CVE
CVE
added 2022/02/09 11:15 p.m.60 views

CVE-2021-0107

Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.6AI score0.00156EPSS
CVE
CVE
added 2021/06/09 7:15 p.m.53 views

CVE-2020-8703

Improper buffer restrictions in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32 and 15.0.22 may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.6AI score0.00066EPSS
CVE
CVE
added 2020/04/23 8:15 p.m.49 views

CVE-2020-5867

In versions prior to 3.3.0, the NGINX Controller Agent installer script 'install.sh' uses HTTP instead of HTTPS to check and install packages

8.1CVSS8AI score0.00149EPSS
CVE
CVE
added 2020/04/23 7:15 p.m.39 views

CVE-2020-5865

In versions prior to 3.3.0, the NGINX Controller is configured to communicate with its Postgres database server over unencrypted channels, making the communicated data vulnerable to interception via man-in-the-middle (MiTM) attacks.

5.8CVSS5AI score0.00119EPSS
Total number of security vulnerabilities344