Alert News 2024-  2024(12)  2023(11)  2022(19)  2021(21)  2020(40)  2019(27)  2018(32)  2017(54)  2016(100)  2015(118)  2014(139)

2024-09-192024-09-192024-09-19VU#138043A stack-based overflow vulnerability exists in the Microchip Advanced Software Framework (ASF) implementation of the tinydhcp server
2024-08-302024-07-252024-08-30VU#455367Insecure Platform Key (PK) used in UEFI system firmware signature
2024-07-302024-07-302024-08-06VU#244112Multiple SMTP services are susceptible to spoofing attacks due to insufficient enforcement
2024-07-092024-07-092024-07-10VU#312260Use-after-free vulnerability in lighttpd version 1.4.50 and earlier
2024-07-092024-07-092024-07-12VU#456537RADIUS protocol susceptible to forgery attacks.
2024-04-162024-02-232024-04-16VU#163057BMC software fails to validate IPMI session.
2024-04-102024-04-102024-04-10VU#238194R Programming Language implementations are vulnerable to arbitrary code execution during deserialization of .rds and .rdx files
2024-04-092024-04-092024-04-09VU#253266Keras 2 Lambda Layers Allow Arbitrary Code Injection in TensorFlow Models
2024-04-032024-04-032024-04-03VU#123335Multiple programming languages fail to escape arguments properly in Microsoft Windows
2024-03-192024-03-192024-03-20VU#155143Linux kernel on Intel systems is susceptible to Spectre v2 attacks
2024-03-142024-03-142024-03-15VU#421644HTTP/2 CONTINUATION frames can be utilized for DoS attacks
2024-03-192024-03-192024-03-20VU#417980Implementations of UDP-based application protocols are vulnerable to network loops
2024-03-142024-03-142024-03-15VU#488902CPU hardware utilizing speculative execution may be vulnerable to speculative race conditions
2024-01-162024-01-162024-01-17VU#949046Sceiner firmware locks and associated devices are vulnerable to encryption downgrade and arbitrary file upload attacks
2024-01-162024-01-162024-01-17VU#446598GPU kernel implementations susceptible to memory leak
2024-01-162024-01-162024-01-18VU#302671SMTP end-of-data uncertainty can be abused to spoof emails and bypass policies
2024-01-162024-01-162024-01-18VU#132380Vulnerabilities in EDK2 NetworkPkg IP stack implementation.