1711
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ice: protect XDP configuration with a mutex
The main threat to data consistency in ice_xdp() is a possible asynchronous
PF reset.…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46765
|
2024-09-26 22:24 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1712
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup
Currently napi_disable() gets called during rxq and txq clean…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-46784
|
2024-09-26 22:21 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1713
|
9.8 |
CRITICAL
Network
ikcu
|
university_information_management_system
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Izmir Katip Çelebi University University Information Management System allows Absolute Path Traversal.T…
|
CWE-22
Path Traversal
|
CVE-2023-6190
|
2024-09-26 22:15 |
2023-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1714
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF
The fscache_cookie_lru_timer is initialized when the fsc…
|
CWE-416
Use After Free
|
CVE-2024-46786
|
2024-09-26 21:48 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1715
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
HID: amd_sfh: free driver_data after destroying hid device
HID driver callbacks aren't called anymore once hid_destroy_device() h…
|
CWE-416
Use After Free
|
CVE-2024-46746
|
2024-09-26 21:47 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1716
|
8.2 |
HIGH
Local
|
dell
|
edge_gateway_3200_firmware edge_gateway_5200_firmware
|
Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A local authenticated malicious user with high privileges could potentially exploit this vulnerability l…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32472
|
2024-09-26 21:15 |
2024-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1717
|
9.4 |
CRITICAL
Network
-
|
-
|
Incorrect Permission Assignment for Critical Resource vulnerability in Havelsan Inc. Dialogue allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Dialogue: from v1.83 b…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2024-3375
|
2024-09-26 21:15 |
2024-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1718
|
7.2 |
HIGH
Network
-
|
-
|
Incorrect Use of Privileged APIs vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users.This issue affects Extreme XDS: before 3914.
|
CWE-648
Incorrect Use of Privileged APIs
|
CVE-2023-6522
|
2024-09-26 21:15 |
2024-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1719
|
7.5 |
HIGH
Network
-
|
-
|
Incorrect Use of Privileged APIs vulnerability in Utarit Information Technologies SoliPay Mobile App allows Collect Data as Provided by Users.This issue affects SoliPay Mobile App: before 5.0.8.
|
-
|
CVE-2023-4993
|
2024-09-26 21:15 |
2024-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1720
|
7.5 |
HIGH
Network
eskom
|
e-belediye
|
Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users.This issue affects e-municipality module: before v.105.
|
CWE-648
Incorrect Use of Privileged APIs
|
CVE-2023-6151
|
2024-09-26 21:15 |
2023-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|