|
1741
|
- |
|
-
|
-
|
Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-822
Untrusted Pointer Dereference
|
CVE-2023-42772
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1742
|
- |
|
-
|
-
|
A race condition in UEFI firmware for some Intel(R) processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-362
Race Condition
|
CVE-2023-41833
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1743
|
- |
|
-
|
-
|
Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.
|
CWE-125
Out-of-bounds Read
|
CVE-2023-25546
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1744
|
- |
|
-
|
-
|
NULL pointer dereference in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-395
Use of NullPointerException Catch to Detect NULL Pointer Dereference
|
CVE-2023-23904
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1745
|
- |
|
-
|
-
|
Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-787
Out-of-bounds Write
|
CVE-2023-22351
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1746
|
6.4 |
MEDIUM
Physics
|
opensc_project
redhat
|
opensc
enterprise_linux
|
Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-40661
|
2024-09-17 02:15 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1747
|
6.6 |
MEDIUM
Physics
|
opensc_project
redhat
|
opensc
enterprise_linux
|
A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform cryptographic operations in other processes when an empty zero…
|
CWE-287
Improper Authentication
|
CVE-2023-40660
|
2024-09-17 02:15 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1748
|
6.5 |
MEDIUM
Network
|
libtiff
fedoraproject
redhat
netapp
|
libtiff
fedora
enterprise_linux
active_iq_unified_manager
|
LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-40745
|
2024-09-17 02:15 |
2023-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1749
|
7.7 |
HIGH
Network
|
mepsan
|
stawiz_usc\+\+
|
A vulnerability in MEPSAN's USC+ before version 3.0 has a weakness in login function which lets attackers to generate high privileged accounts passwords.
|
CWE-305
Authentication Bypass by Primary Weakness
|
CVE-2021-45031
|
2024-09-17 02:15 |
2022-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1750
|
4.8 |
MEDIUM
Network
|
wpchill
|
download_monitor
|
Authenticated (admin+) Persistent Cross-Site Scripting (XSS) vulnerability discovered in Download Monitor WordPress plugin (versions <= 4.4.6) Vulnerable parameters: &post_title, &downloadable_file_v…
|
CWE-79
Cross-site Scripting
|
CVE-2021-23174
|
2024-09-17 02:15 |
2022-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
