1621
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/pm: fix the Out-of-bounds read warning
using index i - 1U may beyond element index
for mc_data[] when i = 0.
|
CWE-125
Out-of-bounds Read
|
CVE-2024-46731
|
2024-09-26 22:29 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1622
|
5.4 |
MEDIUM
Network
|
puma
|
puma
|
Puma is a Ruby/Rack web server built for parallelism. In affected versions clients could clobber values set by intermediate proxies (such as X-Forwarded-For) by providing a underscore version of the …
|
CWE-444
HTTP Request Smuggling
|
CVE-2024-45614
|
2024-09-26 22:28 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1623
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Assign linear_pitch_alignment even for VM
[Description]
Assign linear_pitch_alignment so we don't cause a divide…
|
CWE-369
Divide By Zero
|
CVE-2024-46732
|
2024-09-26 22:28 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1624
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()
mwifiex_get_priv_by_id() returns the priv pointer correspond…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46755
|
2024-09-26 22:25 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1625
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ice: protect XDP configuration with a mutex
The main threat to data consistency in ice_xdp() is a possible asynchronous
PF reset.…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46765
|
2024-09-26 22:24 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1626
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup
Currently napi_disable() gets called during rxq and txq clean…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-46784
|
2024-09-26 22:21 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1627
|
9.8 |
CRITICAL
Network
ikcu
|
university_information_management_system
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Izmir Katip Çelebi University University Information Management System allows Absolute Path Traversal.T…
|
CWE-22
Path Traversal
|
CVE-2023-6190
|
2024-09-26 22:15 |
2023-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1628
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF
The fscache_cookie_lru_timer is initialized when the fsc…
|
CWE-416
Use After Free
|
CVE-2024-46786
|
2024-09-26 21:48 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1629
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
HID: amd_sfh: free driver_data after destroying hid device
HID driver callbacks aren't called anymore once hid_destroy_device() h…
|
CWE-416
Use After Free
|
CVE-2024-46746
|
2024-09-26 21:47 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1630
|
8.2 |
HIGH
Local
|
dell
|
edge_gateway_3200_firmware edge_gateway_5200_firmware
|
Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A local authenticated malicious user with high privileges could potentially exploit this vulnerability l…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32472
|
2024-09-26 21:15 |
2024-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|