NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CRITICAL
HIGH
MEDIUM
LOW
CVE
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:Dec. 28, 2024, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: unicode: Fix utf8_load() error path utf8_load() requests the symbol "utf8_data_table" and then checks if the requested UTF-8 vers… New	-	CVE-2024-53233	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

202	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: iommu/s390: Implement blocking domain This fixes a crash when surprise hot-unplugging a PCI device. This crash happens because du… New	-	CVE-2024-53232	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

203	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix the qp flush warnings in req When the qp is in error state, the status of WQEs in the queue should be set to error.… New	-	CVE-2024-53229	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

204	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Fix use-after-free in bfad_im_module_exit() BUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20 Read of si… New	-	CVE-2024-53227	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

205	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Move events notifier registration to be after device registration Move pkey change work initialization and cleanup fro… New	-	CVE-2024-53224	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

206	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs Base clocks are the first in being probed and are real dependen… New	-	CVE-2024-53223	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

207	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: zram: fix NULL pointer in comp_algorithm_show() LTP reported a NULL pointer dereference as followed: CPU: 7 UID: 0 PID: 5995 Co… New	-	CVE-2024-53222	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

208	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix null-ptr-deref in f2fs_submit_page_bio() There's issue as follows when concurrently installing the f2fs.ko module and m… New	-	CVE-2024-53221	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

209	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to account dirty data in __get_secs_required() It will trigger system panic w/ testcase in [1]: ------------[ cut here… New	-	CVE-2024-53220	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

210	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix race in concurrent f2fs_stop_gc_thread In my test case, concurrent calls to f2fs shutdown report the following stack tr… New	-	CVE-2024-53218	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

211	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: virtiofs: use pages instead of pointer for kernel direct IO When trying to insert a 10MB kernel module kept in a virtio-fs with c… New	-	CVE-2024-53219	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

212	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() There's issue as follows: RPC: Registered rdma transport module.… New	-	CVE-2024-53215	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

213	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nfsd: release svc_expkey/svc_export with rcu_work The last reference for `cache_head` can be reduced to zero in `c_show` and `e_s… New	-	CVE-2024-53216	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

214	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe extended capability should be hidden … New	-	CVE-2024-53214	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

215	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: netlink: fix false positive warning in extack during dumps Commit under fixes extended extack reporting to dumps. It works under … New	-	CVE-2024-53212	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

216	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net/l2tp: fix warning in l2tp_exit_net found by syzbot In l2tp's net exit handler, we check that an IDR is empty before destroyin… New	-	CVE-2024-53211	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

217	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() Passing MSG_PEEK flag to skb_recv_datagram() increments skb refcou… New	-	CVE-2024-53210	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

218	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix receive ring space parameters when XDP is active The MTU setting at the time an XDP multi-buffer is attached determi… New	-	CVE-2024-53209	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

219	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync This fixes the following crash: ==============================… New	-	CVE-2024-53208	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

220	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix possible deadlocks This fixes possible deadlocks like the following caused by hci_cmd_sync_dequeue causing t… New	-	CVE-2024-53207	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

221	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: xen: Fix the issue of resource not being properly released in xenbus_dev_probe() This patch fixes an issue in the function xenbus… New	-	CVE-2024-53198	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

222	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Don't retire aborted MMIO instruction Returning an abort to the guest for an unsupported MMIO access is a documented … New	-	CVE-2024-53196	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

223	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Get rid of userspace_irqchip_in_use Improper use of userspace_irqchip_in_use led to syzbot hitting the following WARN… New	-	CVE-2024-53195	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

224	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: PCI: Fix use-after-free of slot->bus on hot remove Dennis reports a boot crash on recent Lenovo laptops with a USB4 dock. Since … New	-	CVE-2024-53194	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

225	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: clk: clk-loongson2: Fix memory corruption bug in struct loongson2_clk_provider Some heap space is allocated for the flexible stru… New	-	CVE-2024-53193	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

226	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: clk: clk-loongson2: Fix potential buffer overflow in flexible-array member access Flexible-array member `hws` in `struct clk_hw_o… New	-	CVE-2024-53192	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

227	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures Syzkaller reported a hung task with uevent_show(… New	-	CVE-2024-53190	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

228	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix crash when unbinding If there is an error during some initialization related to firmware, the function ath12k_d… New	-	CVE-2024-53188	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

229	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in SMB request handling A race condition exists between SMB request handling in `ksmbd_conn_handler_loo… New	-	CVE-2024-53186	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

230	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: client: fix NULL ptr deref in crypto_aead_setkey() Neither SMB3.0 or SMB3.02 supports encryption negotiate context, so when … New	-	CVE-2024-53185	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

231	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: um: ubd: Do not use drvdata in release The drvdata is not available in release. Let's just use container_of() to get the ubd inst… New	-	CVE-2024-53184	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

232	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: um: net: Do not use drvdata in release The drvdata is not available in release. Let's just use container_of() to get the uml_net … New	-	CVE-2024-53183	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

233	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: Revert "block, bfq: merge bfq_release_process_ref() into bfq_put_cooperator()" This reverts commit bc3b1e9e7c50e1de0f573eea3871db… New	-	CVE-2024-53182	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

234	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: um: vector: Do not use drvdata in release The drvdata is not available in release. Let's just use container_of() to get the vecto… New	-	CVE-2024-53181	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

235	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free of signing key Customers have reported use-after-free in @ses->auth_key.response with SMB2.1 + si… New	-	CVE-2024-53179	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

236	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: During unmount, ensure all cached dir instances drop their dentry The unmount process (cifs_kill_sb() calling close_all_cach… New	-	CVE-2024-53176	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

237	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ipc: fix memleak if msg_init_ns failed in create_ipc_ns Percpu memory allocation may failed during create_ipc_ns however this fai… New	-	CVE-2024-53175	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

238	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: Don't leak cfid when reconnect races with open_cached_dir open_cached_dir() may either race with the tcon reconnection even … New	-	CVE-2024-53178	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

239	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: SUNRPC: make sure cache entry active before cache_show The function `c_show` was called with protection from RCU. This only ensur… New	-	CVE-2024-53174	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

240	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: prevent use-after-free due to open_cached_dir error paths If open_cached_dir() encounters an error parsing the lease from th… New	-	CVE-2024-53177	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

241	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ubi: fastmap: Fix duplicate slab cache names while attaching Since commit 4c39529663b9 ("slab: Warn on duplicate cache names when… New	-	CVE-2024-53172	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

242	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nfs/blocklayout: Don't attempt unregister for invalid block device Since commit d869da91cccb ("nfs/blocklayout: Fix premature PR … New	-	CVE-2024-53167	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

243	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit After an insertion in TNC, the tree might split and cause a nod… New	-	CVE-2024-53171	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

244	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix bfqq uaf in bfq_limit_depth() Set new allocated bfqq to bic or remove freed bfqq from bic are both protected by b… New	-	CVE-2024-53166	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

245	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: block: fix uaf for flush rq while iterating tags blk_mq_clear_flush_rq_mapping() is not called during scsi probe, by checking blk… New	-	CVE-2024-53170	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

246	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK When CONFIG_CPUMASK_OFFSTACK and CONFIG_DEBUG_PER_CPU_MAPS are selected, c… New	-	CVE-2022-49034	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

247	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nvme-fabrics: fix kernel crash while shutting down controller The nvme keep-alive operation, which executes at a periodic interva… New	-	CVE-2024-53169	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

248	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket BUG: KASAN: slab-use-after-free in tcp_write_timer_handler+0x156/0x3… New	-	CVE-2024-53168	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

249	-	-	-	-	A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewal… New	-	CVE-2024-3393	2024-12-27 19:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

250	-	-	-	-	There is a stack overflow vulnerability in some Huawei smart phone. An attacker can craft specific packet to exploit this vulnerability. Due to insufficient verification, this could be exploited to t… New	-	CVE-2020-9253	2024-12-27 19:15	2024-12-27	Show	GitHub Exploit DB Packet Storm