|
1921
|
- |
|
-
|
-
|
SQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document Rendering.
|
-
|
CVE-2024-30922
|
2024-09-16 04:35 |
2024-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1922
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
vfs: Don't evict inode under the inode lru traversing context
The inode reclaiming process(See function prune_icache_sb) collects…
|
-
|
CVE-2024-45003
|
2024-09-16 03:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1923
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: hns3: fix a deadlock problem when config TC during resetting
When config TC during the reset process, may cause a deadlock, …
|
CWE-667
Improper Locking
|
CVE-2024-44995
|
2024-09-16 03:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1924
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()
[BUG]
There is an internal report that KASAN is repor…
|
CWE-415
CWE-416
Double Free
Use After Free
|
CVE-2024-46687
|
2024-09-15 01:17 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1925
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()
This happens when called from SMB2_read() while using rdma
and …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46686
|
2024-09-15 01:16 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1926
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
pinctrl: single: fix potential NULL dereference in pcs_get_function()
pinmux_generic_get_function() can return NULL and the point…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46685
|
2024-09-15 01:00 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1927
|
9.8 |
CRITICAL
Network
code-projects
|
crud_operation_system
|
A vulnerability was found in code-projects Crud Operation System 1.0. It has been classified as critical. This affects an unknown part of the file /updatedata.php. The manipulation of the argument si…
|
CWE-89
SQL Injection
|
CVE-2024-8762
|
2024-09-15 00:54 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1928
|
8.1 |
HIGH
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to …
|
NVD-CWE-noinfo
|
CVE-2024-8754
|
2024-09-15 00:40 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1929
|
8.8 |
HIGH
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. Due to incomplete input filtering, it w…
|
CWE-77
Command Injection
|
CVE-2024-8640
|
2024-09-15 00:37 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1930
|
6.5 |
MEDIUM
Network
|
gitlab
|
gitlab
|
A server-side request forgery issue has been discovered in GitLab EE affecting all versions starting from 16.8 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. It was possib…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-8635
|
2024-09-15 00:24 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
