1841
|
5.5 |
MEDIUM
Local
|
libxpm_project redhat fedoraproject
|
libxpm enterprise_linux fedora
|
A vulnerability was found in libXpm where a vulnerability exists due to a boundary condition, a local user can trigger an out-of-bounds read error and read contents of memory on the system.
|
CWE-125
Out-of-bounds Read
|
CVE-2023-43789
|
2024-09-17 00:15 |
2023-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1842
|
5.5 |
MEDIUM
Local
|
x.org fedoraproject redhat
|
libxpm fedora enterprise_linux
|
A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local attacker to trigger an out-of-bounds read error and read th…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-43788
|
2024-09-17 00:15 |
2023-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1843
|
7.8 |
HIGH
Local
|
x.org redhat fedoraproject
|
libx11 enterprise_linux fedora
|
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user to trigger an integer overflow and execute arbitrary code with elevate…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-43787
|
2024-09-17 00:15 |
2023-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1844
|
5.5 |
MEDIUM
Local
|
x.org redhat fedoraproject
|
libx11 enterprise_linux fedora
|
A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to consume all available system resources and cause a denial of service co…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2023-43786
|
2024-09-17 00:15 |
2023-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1845
|
5.5 |
MEDIUM
Local
|
x.org redhat fedoraproject
|
libx11 enterprise_linux fedora
|
A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of me…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-43785
|
2024-09-17 00:15 |
2023-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1846
|
7.5 |
HIGH
Network
lenovo
|
nextscale_n1200_enclosure_firmware thinkagile_cp-cb-10_firmware thinkagile_cp-cb-10e_firmware thinkagile_hx_enclosure_certified_node_firmware thinkagile_vx_enclosure_firmware thinksyst…
|
An unauthenticated denial of service vulnerability exists in the SMM v1, SMM v2, and FPC management web server which can be triggered under crafted conditions. Rebooting SMM or FPC will restore acc…
|
NVD-CWE-noinfo
|
CVE-2023-2992
|
2024-09-17 00:15 |
2023-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1847
|
8.8 |
HIGH
Network
|
datagear
|
datagear
|
A vulnerability, which was classified as problematic, has been found in DataGear up to 4.7.0/5.1.0. Affected by this issue is some unknown functionality of the component JDBC Server Handler. The mani…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2023-2042
|
2024-09-17 00:15 |
2023-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1848
|
6.7 |
MEDIUM
Local
|
lenovo
|
thinkpad_e14_firmware thinkpad_e14_gen_2_firmware thinkpad_e14_gen_4_firmware thinkpad_e15_firmware thinkpad_e15_gen_2_firmware thinkpad_e15_gen_4_firmware thinkpad_e490_firmware
|
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code.
|
NVD-CWE-noinfo
|
CVE-2023-2290
|
2024-09-17 00:15 |
2023-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1849
|
6.5 |
MEDIUM
Network
|
snowflake
|
streamlit
|
Streamlit is a data oriented application development framework for python. Snowflake Streamlit open source addressed a security vulnerability via the static file sharing feature. Users of hosted Stre…
|
CWE-22
Path Traversal
|
CVE-2024-42474
|
2024-09-16 23:30 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1850
|
4.3 |
MEDIUM
Network
|
ibm
|
openpages_grc_platform openpages_with_watson
|
IBM OpenPages 8.3 and 9.0 potentially exposes information about client-side source code through use of JavaScript source maps to unauthorized users.
|
NVD-CWE-Other
|
CVE-2024-27257
|
2024-09-16 23:26 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|