|
1981
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
io_uring: lock overflowing for IOPOLL
syzbot reports an issue with overflow filling for IOPOLL:
WARNING: CPU: 0 PID: 28 at io_ur…
|
CWE-667
Improper Locking
|
CVE-2023-52903
|
2024-09-13 22:34 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1982
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nommu: fix memory leak in do_mmap() error path
The preallocation of the maple tree nodes may leak if the error path to
"error_jus…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2023-52902
|
2024-09-13 22:29 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1983
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
octeontx2-pf: Fix resource leakage in VF driver unbind
resources allocated like mcam entries to support the Ntuple feature
and ha…
|
NVD-CWE-Other
|
CVE-2023-52905
|
2024-09-13 22:27 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1984
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net/sched: act_mpls: Fix warning during failed attribute validation
The 'TCA_MPLS_LABEL' attribute is of 'NLA_U32' type, but has …
|
NVD-CWE-noinfo
|
CVE-2023-52906
|
2024-09-13 22:21 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1985
|
- |
|
-
|
-
|
Rejected reason: After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to…
|
-
|
CVE-2024-5203
|
2024-09-13 20:15 |
2024-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1986
|
9.8 |
CRITICAL
Network
learningdigital
|
orca_hcm
|
Orca HCM from LEARNING DIGITAL does not properly restrict access to a specific functionality, allowing unauthenticated remote attacker to exploit this functionality to create an account with administ…
|
NVD-CWE-Other
|
CVE-2024-8584
|
2024-09-13 19:15 |
2024-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1987
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to b…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-45111
|
2024-09-13 18:15 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1988
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Illustrator versions 28.6, 27.9.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulner…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43759
|
2024-09-13 18:15 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1989
|
7.8 |
HIGH
Local
|
-
|
-
|
Illustrator versions 28.6, 27.9.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss…
|
CWE-416
Use After Free
|
CVE-2024-43758
|
2024-09-13 18:15 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1990
|
7.8 |
HIGH
Local
|
-
|
-
|
After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-41859
|
2024-09-13 18:15 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
