1801
|
4.7 |
MEDIUM
Local
|
x.org redhat fedoraproject debian
|
xwayland x_server enterprise_linux fedora debian_linux
|
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zap…
|
CWE-416
Use After Free
|
CVE-2023-5380
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1802
|
4.6 |
MEDIUM
Physics
|
gnu redhat
|
grub2 enterprise_linux
|
An out-of-bounds read flaw was found on grub2's NTFS filesystem driver. This issue may allow a physically present attacker to present a specially crafted NTFS file system image to read arbitrary memo…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-4693
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1803
|
7.8 |
HIGH
Local
|
gnu redhat
|
grub2 enterprise_linux
|
An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corrupt…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-4692
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1804
|
7.8 |
HIGH
Local
|
x.org redhat fedoraproject debian
|
xwayland x_server enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_server enterprise_linux_for_po…
|
A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in the heap in the XIChangeDeviceProperty fu…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-5367
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1805
|
4.3 |
MEDIUM
Network
|
postgresql redhat debian
|
postgresql enterprise_linux debian_linux
|
A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forb…
|
NVD-CWE-noinfo
|
CVE-2023-39418
|
2024-09-17 01:15 |
2023-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1806
|
5.5 |
MEDIUM
Local
|
artifex
|
mupdf
|
In Artifex MuPDF 1.14.0, svg/svg-run.c allows remote attackers to cause a denial of service (recursive calls followed by a fitz/xml.c fz_xml_att crash from excessive stack consumption) via a crafted …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-19881
|
2024-09-17 01:15 |
2018-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1807
|
- |
|
sumatrapdfreader
|
sumatrapdf
|
Multiple stack-based buffer overflows in pdf_shade4.c in MuPDF before commit 20091125231942, as used in SumatraPDF before 1.0.1, allow remote attackers to cause a denial of service and possibly execu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4117
|
2024-09-17 01:15 |
2009-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1808
|
4.4 |
MEDIUM
Local
|
dell
|
insightiq
|
Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to D…
|
NVD-CWE-noinfo
|
CVE-2024-39574
|
2024-09-17 00:59 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1809
|
6.5 |
MEDIUM
Network
redhat
|
keycloak build_of_keycloak single_sign-on openshift_container_platform openshift_container_platform_for_linuxone openshift_container_platform_for_power openshift_container_platform_…
|
A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, at…
|
CWE-837
Improper Enforcement of a Single, Unique Action
|
CVE-2024-4629
|
2024-09-17 00:51 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1810
|
9.8 |
CRITICAL
Network
dell
|
insightiq
|
Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a File or Directories Accessible to External Parties vulnerability. An unauthenticated attacker with remote access could potentially expl…
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2024-39581
|
2024-09-17 00:50 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|