|
1061
|
9.8 |
CRITICAL
Network
level1
|
wbr-6012_firmware
|
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc…
Update
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-31151
|
2024-11-14 03:19 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1062
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
In the ad7124_write_raw() function, parameter val can potentia…
Update
|
CWE-369
Divide By Zero
|
CVE-2024-50232
|
2024-11-14 03:17 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1063
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fs/ntfs3: Fix general protection fault in run_is_mapped_full
Fixed deleating of a non-resident attribute in ntfs_create_inode()
r…
Update
|
NVD-CWE-noinfo
|
CVE-2024-50243
|
2024-11-14 03:16 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1064
|
7.5 |
HIGH
Network
level1
|
wbr-6012_firmware
|
The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation within its web application, where a series of crafted HTTP requests can cause a reboot. This could lea…
Update
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-31152
|
2024-11-14 03:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1065
|
8.1 |
HIGH
Network
|
level1
|
wbr-6012_firmware
|
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc…
Update
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-28875
|
2024-11-14 03:10 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1066
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ntfs3: Add bounds checking to mi_enum_attr()
Added bounds checking to make sure that every attr don't stray beyond
valid memory r…
Update
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-50248
|
2024-11-14 03:07 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1067
|
7.5 |
HIGH
Network
level1
|
wbr-6012_firmware
|
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet gateway for homes and small offices while aiming to be easy to configure and operate. In addition to pro…
Update
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2024-28052
|
2024-11-14 03:07 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1068
|
5.4 |
MEDIUM
Network
|
themepunch
|
slider_revolution
|
The Slider Revolution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.7.18 due to insufficient input sanitization and ou…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-8107
|
2024-11-14 03:06 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1069
|
5.4 |
MEDIUM
Network
|
benjaminzekavica
|
easy_svg_support
|
The Easy SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG File uploads in all versions up to, and including, 3.7 due to insufficient input sanitization a…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-10269
|
2024-11-14 02:59 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1070
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fs/ntfs3: Check if more than chunk-size bytes are written
A incorrectly formatted chunk may decompress into
more than LZNT_CHUNK_…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2024-50247
|
2024-11-14 02:58 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
