711
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)
Lack of check for copy-on-write (COW) mapping in drm_gem_shmem_mm…
Update
|
-
|
CVE-2024-39497
|
2024-10-23 00:15 |
2024-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
712
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
dm-crypt, dm-verity: disable tasklets
Tasklets have an inherent problem with memory corruption. The function
tasklet_action_commo…
Update
|
-
|
CVE-2024-26718
|
2024-10-23 00:15 |
2024-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
713
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: fix potential key use-after-free
When ieee80211_key_link() is called by ieee80211_gtk_rekey_add()
but returns 0 d…
Update
|
-
|
CVE-2023-52530
|
2024-10-23 00:15 |
2024-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
714
|
8.8 |
HIGH
Network
|
cisco
|
ata_191_firmware ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an authenticated, remote attacker with low privileges to run commands as an…
Update
|
NVD-CWE-Other
|
CVE-2024-20420
|
2024-10-23 00:12 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
715
|
5.4 |
MEDIUM
Network
|
phpgurukul
|
ifsc_code_finder
|
A vulnerability has been found in PHPGurukul IFSC Code Finder Project 1.0 and classified as problematic. This vulnerability affects unknown code of the file search.php. The manipulation leads to cros…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-10192
|
2024-10-23 00:09 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
716
|
5.4 |
MEDIUM
Network
|
wpzest
|
easy_menu_manager
|
The Easy Menu Manager | WPZest plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.1 due to insufficient input sanitizatio…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-9366
|
2024-10-23 00:09 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
717
|
5.4 |
MEDIUM
Network
|
dankedev
|
elemenda
|
The Elemenda plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 0.0.2 due to insufficient input sanitization and output escap…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-9373
|
2024-10-23 00:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
718
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tcp: check skb is non-NULL in tcp_rto_delta_us()
We have some machines running stock Ubuntu 20.04.6 which is their 5.4.0-174-gene…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47684
|
2024-10-22 23:59 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
719
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he
Fix the NULL pointer dereference in mt7996_mcu_sta_bfe…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47681
|
2024-10-22 23:57 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
720
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
exfat: resolve memory leak from exfat_create_upcase_table()
If exfat_load_upcase_table reaches end and returns -EINVAL,
allocated…
New
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-47677
|
2024-10-22 23:55 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|