1291
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add null check before access structs
In enable_phantom_plane, we should better check null pointer before
accessi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43827
|
2024-09-30 21:51 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1292
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
Callers can pass null in filter (i.e. from returned from the func…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46714
|
2024-09-30 21:50 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1293
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Ensure array index tg_inst won't be -1
[WHY & HOW]
tg_inst will be a negative if timing_generator_count equals 0…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2024-46730
|
2024-09-30 21:49 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1294
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add otg_master NULL check within resource_log_pipe_topology_update
[Why]
Coverity reports NULL_RETURN warning.
…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46727
|
2024-09-30 21:49 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1295
|
6.5 |
MEDIUM
Network
|
alf
|
alf
|
alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5, the preloaded data as json is not escaped correctly, the administrato…
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2024-45299
|
2024-09-30 21:48 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1296
|
- |
|
-
|
-
|
In Eclipse Dataspace Components versions 0.1.3 to 0.9.0, the Connector component filters which datasets (= data offers) another party can see in a requested catalog, to ensure that only authorized pa…
|
-
|
CVE-2024-9202
|
2024-09-30 21:46 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1297
|
- |
|
-
|
-
|
Products for macOS enables a user logged on to the system to perform a denial-of-service attack, which could be misused to disable the protection of the ESET security product and cause general system…
|
-
|
CVE-2024-6654
|
2024-09-30 21:46 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1298
|
- |
|
-
|
-
|
Cross-site scripting vulnerability exists in MF Teacher Performance Management System version 6. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user…
|
-
|
CVE-2024-41930
|
2024-09-30 21:46 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1299
|
- |
|
-
|
-
|
Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM position to intercept traffic. This issue affects MikroTik: from 2.0.0 through 2.5.5, from 0.4a_mk through…
|
-
|
CVE-2024-38861
|
2024-09-30 21:46 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1300
|
- |
|
-
|
-
|
In Logmanager service, there is a possible missing verification incorrect input. This could lead to local escalation of privilege with no additional execution privileges needed.
|
-
|
CVE-2024-39435
|
2024-09-30 21:46 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|