1881
|
6.5 |
MEDIUM
Adjacent
|
keylime redhat fedoraproject
|
keylime enterprise_linux enterprise_linux_server_aus enterprise_linux_eus enterprise_linux_for_power_little_endian_eus enterprise_linux_for_power_little_endian enterprise_linux_for_…
|
A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the…
|
NVD-CWE-noinfo
|
CVE-2023-38201
|
2024-09-16 22:15 |
2023-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1882
|
7.5 |
HIGH
Network
keylime redhat fedoraproject
|
keylime enterprise_linux enterprise_linux_server_aus enterprise_linux_eus enterprise_linux_for_power_little_endian enterprise_linux_for_ibm_z_systems_eus enterprise_linux_for_power_…
|
A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service against its SSL connections. This flaw allows an attacker to exhaust all avai…
|
CWE-834
Excessive Iteration
|
CVE-2023-38200
|
2024-09-16 22:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1883
|
5.9 |
MEDIUM
Network
|
samba redhat fedoraproject
|
samba enterprise_linux storage fedora
|
A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured "server signing = required" or for SMB2 connections to Domain Contro…
|
NVD-CWE-noinfo
|
CVE-2023-3347
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1884
|
5.3 |
MEDIUM
Network
samba fedoraproject redhat debian
|
samba fedora enterprise_linux storage debian_linux
|
A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search querie…
|
NVD-CWE-noinfo
|
CVE-2023-34968
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1885
|
5.9 |
MEDIUM
Network
|
samba redhat fedoraproject debian
|
samba enterprise_linux fedora debian_linux
|
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challeng…
|
CWE-125
Out-of-bounds Read
|
CVE-2022-2127
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1886
|
7.8 |
HIGH
Local
|
redhat fedoraproject
|
subscription-manager fedora enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux_server enterprise_linux_for_power_little…
|
A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods …
|
CWE-863
Incorrect Authorization
|
CVE-2023-3899
|
2024-09-16 22:15 |
2023-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1887
|
5.3 |
MEDIUM
Network
samba fedoraproject redhat debian
|
samba fedora enterprise_linux debian_linux
|
A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets, one encoded data structure is a key-value style dictionary where the k…
|
CWE-843
Type Confusion
|
CVE-2023-34967
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1888
|
7.5 |
HIGH
Network
samba fedoraproject redhat debian
|
samba fedora enterprise_linux debian_linux
|
An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets sent by the client, the core unmarshalling function sl_unpack_loop() di…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2023-34966
|
2024-09-16 22:15 |
2023-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1889
|
5.5 |
MEDIUM
Local
|
adobe
|
premiere_pro
|
Premiere Pro versions 24.5, 23.6.8 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypas…
|
CWE-416
Use After Free
|
CVE-2024-39385
|
2024-09-16 22:12 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1890
|
7.8 |
HIGH
Local
|
adobe
|
premiere_pro
|
Premiere Pro versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of t…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-39384
|
2024-09-16 22:01 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|