2041
|
5.5 |
MEDIUM
Local
|
linux redhat fedoraproject debian
|
linux_kernel enterprise_linux enterprise_linux_for_real_time enterprise_linux_for_real_time_for_nfv fedora debian_linux
|
A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user…
|
CWE-416
Use After Free
|
CVE-2023-4132
|
2024-09-14 04:15 |
2023-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2042
|
7.8 |
HIGH
Local
|
linux fedoraproject redhat netapp debian
|
linux_kernel fedora enterprise_linux h300s h500s h700s h410s debian_linux
|
A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a loc…
|
CWE-416
Use After Free
|
CVE-2023-4004
|
2024-09-14 04:15 |
2023-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2043
|
4.4 |
MEDIUM
Local
|
redhat fedoraproject linux debian
|
enterprise_linux enterprise_linux_for_real_time enterprise_linux_for_real_time_for_nfv fedora linux_kernel debian_linux
|
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL point…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-3772
|
2024-09-14 04:15 |
2023-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2044
|
5.3 |
MEDIUM
Network
|
redhat
|
libvirt enterprise_linux
|
A flaw was found in libvirt. The virStoragePoolObjListSearch function does not return a locked pool as expected, resulting in a race condition and denial of service when attempting to lock the same o…
|
CWE-667
Improper Locking
|
CVE-2023-3750
|
2024-09-14 04:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2045
|
7.1 |
HIGH
Local
|
linux redhat canonical
|
linux_kernel enterprise_linux ubuntu_linux
|
A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak int…
|
CWE-416
Use After Free
|
CVE-2023-3567
|
2024-09-14 04:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2046
|
6.5 |
MEDIUM
Local
|
qemu redhat
|
qemu enterprise_linux
|
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resu…
|
CWE-416
Use After Free
|
CVE-2023-3019
|
2024-09-14 04:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2047
|
7.5 |
HIGH
Network
dnkorpushov
|
ebookmeta
|
An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service (DoS) via cr…
|
CWE-611
XXE
|
CVE-2024-36827
|
2024-09-14 03:44 |
2024-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2048
|
9.1 |
CRITICAL
Network
dnkorpushov
|
ebookmeta
|
An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of lxml before v4.9.1 allows attackers to access sensitive information or cause a Denial of Service (DoS) via crafted…
|
CWE-611
XXE
|
CVE-2024-37388
|
2024-09-14 03:39 |
2024-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2049
|
- |
|
-
|
-
|
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
|
-
|
CVE-2024-7890
|
2024-09-14 03:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2050
|
- |
|
-
|
-
|
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
|
-
|
CVE-2024-7889
|
2024-09-14 03:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|