#intel

CVE-2019-15215

An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver.

5 years ago

CVE

Open in Source

#ios #google #linux #cisco #red_hat #intel #bios #auth

CVE-2019-15221

An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.

5 years ago

CVE

Open in Source

#ios #mac #google #ubuntu #linux #debian #git #oracle #intel #c++#perl #vmware #lenovo #amd #bios #asus #acer #huawei #auth #chrome

CVE-2019-11145: INTEL-SA-00276

Improper file verification in Intel® Driver & Support Assistant before 19.7.30.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

5 years ago

CVE

Open in Source

#vulnerability #web #intel #auth #chrome #firefox

CVE-2019-13578: Fortiguard

A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via includes/payments/class-payments-query.php.

5 years ago

CVE

Open in Source

#sql #vulnerability #web #wordpress #intel #php #zero_day

CVE-2016-10867: All-In-One Security (AIOS) – Security and Firewall

The all-in-one-wp-security-and-firewall plugin before 4.0.6 for WordPress has XSS in settings pages.

5 years ago

CVE

Open in Source

#sql #xss #csrf #vulnerability #web #ios #windows #apple #google #microsoft #ddos #apache #js #git #java #wordpress #intel #php #perl #ldap #nginx #auth #dell

CVE-2019-14799: FV Flowplayer Video Player

The FV Flowplayer Video Player plugin before 7.3.14.727 for WordPress allows email subscription XSS.

CVE-2018-20961

In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.

5 years ago

CVE

Open in Source

#vulnerability #ios #mac #windows #google #linux #debian #dos #git #intel #c++#perl #samba #vmware #lenovo #amd #bios #asus #acer #samsung #auth #ibm #dell #rpm #sap #wifi #ssl

Corporate IoT - a path to intrusion

Several sources estimate that by the year 2020 some 50 billion IoT devices will be deployed worldwide. IoT devices are purposefully designed to connect to a network and many are simply connected to the internet with little management or oversight. Such devices still must be identifiable, maintained, and monitored by security teams, especially in large complex enterprises.

5 years ago

msrc-blog

Open in Source

#ios #microsoft #intel #botnet #auth #ssl

CVE-2019-5020: TALOS-2019-0781 || Cisco Talos Intelligence Group

An exploitable denial of service vulnerability exists in the object lookup functionality of Yara 3.8.1. A specially crafted binary file can cause a negative value to be read to satisfy an assert, resulting in Denial of Service. An attacker can create a malicious binary to trigger this vulnerability.

5 years ago

CVE

Open in Source

#vulnerability #mac #cisco #dos #git #intel

CVE-2019-5058: TALOS-2019-0842 || Cisco Talos Intelligence Group

An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.

5 years ago

CVE

Open in Source

#vulnerability #linux #cisco #intel #buffer_overflow

Tag

#intel