|
11
|
6.1 |
MEDIUM
Network
|
ujangrohidin
|
localserver
|
Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through …
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-10286
|
2024-10-24 13:08 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
12
|
6.1 |
MEDIUM
Network
|
ujangrohidin
|
localserver
|
Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through …
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-10289
|
2024-10-24 13:07 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
13
|
6.1 |
MEDIUM
Network
|
ujangrohidin
|
localserver
|
Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through …
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-10288
|
2024-10-24 13:07 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
14
|
6.1 |
MEDIUM
Network
|
ujangrohidin
|
localserver
|
Cross-Site Scripting (XSS) vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through …
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-10287
|
2024-10-24 13:07 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
15
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
serial: protect uart_port_dtr_rts() in uart_shutdown() too
Commit af224ca2df29 (serial: core: Prevent unsafe uart port access, pa…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50058
|
2024-10-24 12:56 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
16
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: pci: cx23885: check cx23885_vdev_init() return
cx23885_vdev_init() can return a NULL pointer, but that pointer
is used in …
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-52918
|
2024-10-24 12:55 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
17
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition
In the switchtec_ntb_add fu…
New
|
CWE-416
Use After Free
|
CVE-2024-50059
|
2024-10-24 12:55 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
18
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfc: nci: fix possible NULL pointer dereference in send_acknowledge()
Handle memory allocation failure from nci_skb_alloc() (call…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-52919
|
2024-10-24 12:53 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
19
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
can: m_can: pci: add missing m_can_class_free_dev() in probe/remove methods
In m_can_pci_remove() and error handling path of m_ca…
New
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2022-49024
|
2024-10-24 12:50 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
20
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: cfg80211: fix buffer overflow in elem comparison
For vendor elements, the code here assumes that 5 octets
are present witho…
New
|
CWE-120
Classic Buffer Overflow
|
CVE-2022-49023
|
2024-10-24 12:50 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
