1851
|
6.5 |
MEDIUM
Adjacent
|
silabs
|
gecko_software_development_kit
|
Forcing the Bluetooth LE stack to segment 'prepare write response' packets can lead to an out-of-bounds memory access.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-3024
|
2024-09-26 01:15 |
2023-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1852
|
8.8 |
HIGH
Adjacent
|
silabs
|
unify_software_development_kit
|
Description: A vulnerability in SiLabs Unify Gateway 1.3.1 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-3110
|
2024-09-26 01:15 |
2023-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1853
|
8.8 |
HIGH
Adjacent
|
silabs
|
z\/ip_gateway_sdk
|
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-0972
|
2024-09-26 01:15 |
2023-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1854
|
6.8 |
MEDIUM
Physics
|
silabs
|
z\/ip_gateway_sdk
|
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier allow an attacker with invasive physical access to a Z-Wave controller device to overwrite global memor…
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-0970
|
2024-09-26 01:15 |
2023-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1855
|
3.5 |
LOW
Adjacent
|
silabs
|
z\/ip_gateway_sdk
|
A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an authenticated attacker within Z-Wave range to manipulate an array pointer to disclose the contents of global memory.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-0969
|
2024-09-26 01:15 |
2023-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1856
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master and classified as problematic. Affected by this issue is the function swf_svg_add_iso_sample of the file src/filters/load_text.c of …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-6062
|
2024-09-26 01:13 |
2024-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1857
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
A vulnerability was found in GPAC 2.5-DEV-rev228-g11067ea92-master. It has been classified as problematic. This affects the function m2tsdmx_on_event of the file src/filters/dmx_m2ts.c of the compone…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-6063
|
2024-09-26 01:01 |
2024-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1858
|
6.1 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: dsa: mv88e6xxx: Correct check for empty list
Since commit a3c53be55c95 ("net: dsa: mv88e6xxx: Support multiple MDIO
busses")…
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2024-42224
|
2024-09-26 00:55 |
2024-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1859
|
6.3 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
[Changes from V1:
- Use a default branch in the switch statement to ini…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-42161
|
2024-09-26 00:54 |
2024-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1860
|
9.8 |
CRITICAL
Network
lollms
|
lollms
|
A path traversal vulnerability exists in the parisneo/lollms application, specifically within the `sanitize_path_from_endpoint` and `sanitize_path` functions in `lollms_core\lollms\security.py`. This…
|
CWE-22
Path Traversal
|
CVE-2024-3429
|
2024-09-26 00:53 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|