411
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
PCI: Add missing bridge lock to pci_bus_lock()
One of the true positives that the cfg_access_lock lockdep effort
identified is th…
Update
|
CWE-667
Improper Locking
|
CVE-2024-46750
|
2024-09-30 22:27 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
412
|
- |
|
-
|
-
|
Cross Application Scripting vulnerability in Vercom S.A. Redlink SDK in specific situations allows local code injection and to manipulate the view of a vulnerable application.This issue affects Redli…
New
|
-
|
CVE-2024-6051
|
2024-09-30 22:15 |
2024-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
413
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloperr Confetti Fall Animation allows Stored XSS.This issue affects Confetti Fall An…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-47641
|
2024-09-30 22:15 |
2024-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
414
|
- |
|
-
|
-
|
A Stored Cross-Site Scripting (XSS) vulnerability in Solvait 24.4.2 allows remote attackers to inject malicious scripts into the application. This issue arises due to insufficient input validation an…
New
|
-
|
CVE-2024-45920
|
2024-09-30 22:15 |
2024-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
415
|
6.1 |
MEDIUM
Network
|
ruoyi
|
ruoyi
|
A vulnerability was found in y_project RuoYi up to 4.7.9. It has been declared as problematic. Affected by this vulnerability is the function SysUserServiceImpl of the file ruoyi-system/src/main/java…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-9048
|
2024-09-30 22:00 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
416
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
s390/dasd: fix error checks in dasd_copy_pair_store()
dasd_add_busid() can return an error via ERR_PTR() if an allocation
fails. …
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42320
|
2024-09-30 21:54 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
417
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: TAS2781: Fix tasdev_load_calibrated_data()
This function has a reversed if statement so it's either a no-op or it
leads to …
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42278
|
2024-09-30 21:53 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
418
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/qxl: Add check for drm_cvt_mode
Add check for the return value of drm_cvt_mode() and return the error if
it fails in order to…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43829
|
2024-09-30 21:51 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
419
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add null check before access structs
In enable_phantom_plane, we should better check null pointer before
accessi…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43827
|
2024-09-30 21:51 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
420
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
Callers can pass null in filter (i.e. from returned from the func…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46714
|
2024-09-30 21:50 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|