CWE:
 

Nic nie znaleziono w bazie WLB2


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2024-10-08
Waiting for details
CVE-2024-43500

Updating...
 

 
Windows Resilient File System (ReFS) Information Disclosure Vulnerability

 
2024-09-10
Waiting for details
CVE-2024-38250

Updating...
 

 
Windows Graphics Component Elevation of Privilege Vulnerability

 
Waiting for details
CVE-2024-43475

Updating...
 

 
Microsoft Windows Admin Center Information Disclosure Vulnerability

 
2024-08-13
Waiting for details
CVE-2024-38127

Updating...
 

 
Windows Hyper-V Elevation of Privilege Vulnerability

 
Waiting for details
CVE-2024-38135

Updating...
 

 
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability

 
2024-04-04
Waiting for details
CVE-2024-31081

Updating...
 

 
A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIPassiveGrabDevice() function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a client with a different endianness. This vulnerability could be exploited by an attacker to cause the X server to read heap memory values and then transmit them back to the client until encountering an unmapped page, resulting in a crash. Despite the attacker's inability to control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads.

 
Waiting for details
CVE-2024-31080

Updating...
 

 
A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents() function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a client with a different endianness. This vulnerability could be exploited by an attacker to cause the X server to read heap memory values and then transmit them back to the client until encountering an unmapped page, resulting in a crash. Despite the attacker's inability to control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads.

 
2024-02-20
Waiting for details
CVE-2023-39540

Updating...
 

 
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv4 ICMP packet.

 
Waiting for details
CVE-2023-39541

Updating...
 

 
A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv6 ICMPv6 packet.

 
2024-02-16
Waiting for details
CVE-2024-23591

Updating...
 

 
ThinkSystem SR670V2 servers manufactured from approximately June 2021 to July 2023 were left in Manufacturing Mode which could allow an attacker with privileged logical access to the host or physical access to server internals to modify or disable Intel Boot Guard firmware integrity, SPS security, and other SPS configuration setting.

 

 


Copyright 2024, cxsecurity.com

 

Back to Top