1721
|
- |
|
-
|
-
|
A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.
|
CWE-94
Code Injection
|
CVE-2024-6655
|
2024-09-25 10:15 |
2024-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1722
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/i915/gem: Fix Virtual Memory mapping boundaries calculation
Calculating the size of the mapped area as the lesser value
betwe…
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2024-42259
|
2024-09-25 10:15 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1723
|
6.7 |
MEDIUM
Local
|
gnu redhat
|
nano enterprise_linux
|
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the pe…
|
CWE-59
Link Following
|
CVE-2024-5742
|
2024-09-25 10:15 |
2024-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1724
|
- |
|
-
|
-
|
A double free vulnerability was found in QEMU virtio devices (virtio-gpu, virtio-serial-bus, virtio-crypto), where the mem_reentrancy_guard flag insufficiently protects against DMA reentrancy issues.…
|
CWE-415
Double Free
|
CVE-2024-3446
|
2024-09-25 10:15 |
2024-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1725
|
- |
|
-
|
-
|
The AES key utilized in the pairing process between a lock using Sciener firmware and a wireless keypad is not unique, and can be reused to compromise other locks using the Sciener firmware.
|
-
|
CVE-2023-7003
|
2024-09-25 10:15 |
2024-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1726
|
7.5 |
HIGH
Network
hitachienergy
|
rtu520_firmware rtu530_firmware rtu540_firmware rtu560_firmware
|
A vulnerability exists in the HCI Modbus TCP function included in the product versions listed above. If the HCI Modbus TCP is enabled and configured, an attacker could exploit the vulnerability by se…
|
CWE-787
Out-of-bounds Write
|
CVE-2022-2081
|
2024-09-25 10:15 |
2024-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1727
|
5.5 |
MEDIUM
Local
|
broadcom
|
raid_controller_web_interface
|
Broadcom RAID Controller web interface doesn’t enforce SSL cipher ordering by server
|
NVD-CWE-noinfo
|
CVE-2023-4333
|
2024-09-25 10:15 |
2023-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1728
|
5.5 |
MEDIUM
Local
|
broadcom
|
raid_controller_web_interface
|
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows
|
NVD-CWE-noinfo
|
CVE-2023-4328
|
2024-09-25 10:15 |
2023-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1729
|
5.5 |
MEDIUM
Local
|
broadcom
|
raid_controller_web_interface
|
Broadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Linux
|
NVD-CWE-noinfo
|
CVE-2023-4327
|
2024-09-25 10:15 |
2023-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1730
|
4.8 |
MEDIUM
Network
|
code-projects
|
hospital_information_system
|
Code Projects Hospital Information System 1.0 is vulnerable to Cross Site Scripting (XSS)
|
CWE-79
Cross-site Scripting
|
CVE-2023-37070
|
2024-09-25 10:15 |
2023-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|