1861
|
4.4 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values
syzbot is able to trigger softlockups, setting NL80211_ATTR_TXQ_QUANTUM
…
|
CWE-667
Improper Locking
|
CVE-2024-42114
|
2024-09-25 23:44 |
2024-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1862
|
7.8 |
HIGH
Local
|
parallels
|
parallels_desktop
|
Parallels Desktop Updater Protection Mechanism Failure Software Downgrade Vulnerability. This vulnerability allows local attackers to downgrade Parallels software on affected installations of Paralle…
|
NVD-CWE-Other
|
CVE-2024-6153
|
2024-09-25 23:44 |
2024-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1863
|
8.8 |
HIGH
Network
|
yoginetwork
|
rabbitloader
|
Missing Authorization vulnerability in RabbitLoader.This issue affects RabbitLoader: from n/a through 2.19.13.
|
CWE-862
Missing Authorization
|
CVE-2024-21751
|
2024-09-25 23:44 |
2024-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1864
|
6.5 |
MEDIUM
Network
|
reputeinfosystems
|
arforms
|
Missing Authorization vulnerability in reputeinfosystems ARForms.This issue affects ARForms: from n/a through 6.4.
|
CWE-862
Missing Authorization
|
CVE-2024-32704
|
2024-09-25 23:42 |
2024-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1865
|
8.1 |
HIGH
Network
|
reputeinfosystems
|
arforms
|
Missing Authorization vulnerability in reputeinfosystems ARForms.This issue affects ARForms: from n/a through 6.4.
|
CWE-862
Missing Authorization
|
CVE-2024-32703
|
2024-09-25 23:42 |
2024-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1866
|
6.7 |
MEDIUM
Local
|
parallels
|
parallels_desktop
|
Parallels Desktop Toolgate Heap-based Buffer Overflow Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-6154
|
2024-09-25 23:40 |
2024-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1867
|
8.8 |
HIGH
Network
|
instawp
|
instawp_connect
|
Missing Authorization vulnerability in InstaWP Team InstaWP Connect.This issue affects InstaWP Connect: from n/a through 0.1.0.24.
|
CWE-862
Missing Authorization
|
CVE-2024-32701
|
2024-09-25 23:39 |
2024-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1868
|
9.8 |
CRITICAL
Network
icegram
|
email_subscribers_\&_newsletters
|
Missing Authorization vulnerability in Email Subscribers & Newsletters.This issue affects Email Subscribers & Newsletters: from n/a through 5.7.13.
|
CWE-862
Missing Authorization
|
CVE-2024-31352
|
2024-09-25 23:37 |
2024-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1869
|
8.8 |
HIGH
Network
|
strategy11
|
awp_classifieds
|
Missing Authorization vulnerability in AWP Classifieds Team AWP Classifieds.This issue affects AWP Classifieds: from n/a through 4.3.1.
|
CWE-862
Missing Authorization
|
CVE-2024-31350
|
2024-09-25 23:36 |
2024-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1870
|
- |
|
-
|
-
|
An insufficient boundary validation in the USB code could lead to an out-of-bounds read on the heap, which could potentially lead to an arbitrary write and remote code execution.
|
-
|
CVE-2024-41721
|
2024-09-25 23:35 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|