Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-52336	Tuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by root Description: A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users without authentication. This flaw allows a local non-privileged user to execute a D-Bus call with `script_pre` or `script_post` options that permit arbitrary scripts with their absolute paths to be passed. These user or attacker-controlled executable scripts or programs could then be executed by Tuned with root privileges that could allow attackers to local privilege escalation. EPSS Score: 0.05% Source: CVE November 27th, 2024 (5 months ago)
CVE-2024-51569	Apache NimBLE: Lack of input sanitization leading to out-of-bound reads in Number of Completed Packets HCI event handler Description: Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI Number Of Completed Packets could lead to out-of-bound access when parsing HCI event and invalid read from HCI transport memory. This issue requires broken or bogus Bluetooth controller and thus severity is considered low. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to version 1.8.0, which fixes the issue. EPSS Score: 0.04% Source: CVE November 27th, 2024 (5 months ago)
CVE-2024-48288	Description: TP-Link TL-IPC42C V4.0_20211227_1.0.16 is vulnerable to command injection due to the lack of malicious code verification on both the frontend and backend. EPSS Score: 0.04% Source: CVE November 27th, 2024 (5 months ago)
CVE-2024-47250	Apache NimBLE: Lack of input validation in HCI advertising report could lead to potential out-of-bound access Description: Out-of-bounds Read vulnerability in Apache NimBLE. Missing proper validation of HCI advertising report could lead to out-of-bound access when parsing HCI event and thus bogus GAP 'device found' events being sent. This issue requires broken or bogus Bluetooth controller and thus severity is considered low. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to version 1.8.0, which fixes the issue. EPSS Score: 0.05% Source: CVE November 27th, 2024 (5 months ago)
CVE-2024-47249	Apache NimBLE: Lack of input sanitization leading to out-of-bound reads in multiple advertisement handler Description: Improper Validation of Array Index vulnerability in Apache NimBLE. Lack of input validation for HCI events from controller could result in out-of-bound memory corruption and crash. This issue requires broken or bogus Bluetooth controller and thus severity is considered low. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to version 1.8.0, which fixes the issue. EPSS Score: 0.04% Source: CVE November 27th, 2024 (5 months ago)
CVE-2024-47248	Apache NimBLE: Buffer overflow in NimBLE MESH Bluetooth stack Description: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Apache NimBLE. Specially crafted MESH message could result in memory corruption when non-default build configuration is used. This issue affects Apache NimBLE: through 1.7.0. Users are recommended to upgrade to version 1.8.0, which fixes the issue. EPSS Score: 0.04% Source: CVE November 27th, 2024 (5 months ago)
CVE-2024-10573	Mpg123: buffer overflow when writing decoded pcm samples Description: An out-of-bounds write flaw was found in mpg123 when handling crafted streams. When decoding PCM, the libmpg123 may write past the end of a heap-located buffer. Consequently, heap corruption may happen, and arbitrary code execution is not discarded. The complexity required to exploit this flaw is considered high as the payload must be validated by the MPEG decoder and the PCM synth before execution. Additionally, to successfully execute the attack, the user must scan through the stream, making web live stream content (such as web radios) a very unlikely attack vector. EPSS Score: 0.05% Source: CVE November 27th, 2024 (5 months ago)
CVE-2024-10041	Pam: libpam: libpam vulnerable to read hashed password Description: A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this occurs, the attacker can train the branch predictor to execute an ROP chain speculatively. This flaw could result in leaked passwords, such as those found in /etc/shadow while performing authentications. EPSS Score: 0.05% Source: CVE November 27th, 2024 (5 months ago)
CVE-2023-6110	Openstack: deleting a non existing access rule deletes another existing access rule in it's scope Description: A flaw was found in OpenStack. When a user tries to delete a non-existing access rule in it's scope, it deletes other existing access rules which are not associated with any application credentials. EPSS Score: 0.04% Source: CVE November 27th, 2024 (5 months ago)
CVE-2023-5685	Xnio: stackoverflowexception when the chain of notifier states becomes problematically big Description: A flaw was found in XNIO. The XNIO NotifierState that can cause a Stack Overflow Exception when the chain of notifier states becomes problematically large can lead to uncontrolled resource management and a possible denial of service (DoS). EPSS Score: 0.04% Source: CVE November 27th, 2024 (5 months ago)