|
1731
|
- |
|
-
|
-
|
Improper input validation in UEFI firmware error handler for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-20
Improper Input Validation
|
CVE-2024-21829
|
2024-09-17 02:16 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1732
|
- |
|
-
|
-
|
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to enable information disclosure or denial of service via local access.
|
CWE-20
Improper Input Validation
|
CVE-2024-21781
|
2024-09-17 02:16 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1733
|
- |
|
-
|
-
|
Improper conditions check in some Intel(R) Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access.
|
CWE-92
|
CVE-2023-43753
|
2024-09-17 02:16 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1734
|
- |
|
-
|
-
|
Improper access control in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-284
Improper Access Control
|
CVE-2023-43626
|
2024-09-17 02:16 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1735
|
- |
|
-
|
-
|
A vulnerability was found in Undertow. This vulnerability impacts a server that supports the wildfly-http-client protocol. Whenever a malicious user opens and closes a connection with the HTTP port o…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2024-1635
|
2024-09-17 02:16 |
2024-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1736
|
6.8 |
MEDIUM
Physics
|
gnu
redhat
fedoraproject
|
grub2
enterprise_linux
fedora
|
An authentication bypass flaw was found in GRUB due to the way that GRUB uses the UUID of a device to search for the configuration file that contains the password hash for the GRUB password protectio…
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2023-4001
|
2024-09-17 02:16 |
2024-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1737
|
5.9 |
MEDIUM
Network
|
systemd_project
|
systemd
|
A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the u…
|
NVD-CWE-Other
|
CVE-2023-7008
|
2024-09-17 02:16 |
2023-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1738
|
7.8 |
HIGH
Local
|
redhat
fedoraproject
|
ansible
extra_packages_for_enterprise_linux
fedora
ansible_automation_platform
ansible_developer
ansible_inside
|
A template injection flaw was found in Ansible where a user's controller internal templating operations may remove the unsafe designation from template data. This issue could allow an attacker to use…
|
NVD-CWE-Other
|
CVE-2023-5764
|
2024-09-17 02:16 |
2023-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1739
|
3.8 |
LOW
Physics
|
opensc_project
redhat
fedoraproject
|
opensc
enterprise_linux
fedora
|
An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to t…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-4535
|
2024-09-17 02:16 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1740
|
7.0 |
HIGH
Local
|
x.org
redhat
|
x_server
enterprise_linux
|
A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Za…
|
CWE-416
Use After Free
|
CVE-2023-5574
|
2024-09-17 02:16 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
