|
661
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
vfs: fix race between evice_inodes() and find_inode()&iput()
Hi, all
Recently I noticed a bug[1] in btrfs, after digged it into
…
New
|
CWE-362
Race Condition
|
CVE-2024-47679
|
2024-10-23 23:49 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
662
|
7.8 |
HIGH
Local
|
apple
|
macos
|
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. Processing a file may lead to unexpected app termination or arbit…
Update
|
NVD-CWE-noinfo
|
CVE-2023-32418
|
2024-10-23 23:35 |
2023-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
663
|
6.5 |
MEDIUM
Adjacent
|
fortinet
|
fortios
|
A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the LDAP server.
Update
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5591
|
2024-10-23 23:35 |
2020-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
664
|
7.5 |
HIGH
Network
fortinet
|
fortios
fortiproxy
|
An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web p…
Update
|
CWE-863
Incorrect Authorization
|
CVE-2018-13382
|
2024-10-23 23:35 |
2019-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
665
|
9.8 |
CRITICAL
Network
fortinet
|
fortiproxy
fortios
|
An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to…
Update
|
CWE-22
Path Traversal
|
CVE-2018-13379
|
2024-10-23 23:35 |
2019-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
666
|
6.5 |
MEDIUM
Network
|
fortinet
|
fortios
fortiproxy
|
A heap buffer overflow in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.10, 5.4.0 through 5.4.12, 5.2.14 and earlier and FortiProxy 2.0.0, 1.2.8 and earlier in the SSL VPN web portal may ca…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2018-13383
|
2024-10-23 23:35 |
2019-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
667
|
4.3 |
MEDIUM
Network
|
fortinet
|
fortios
fortiadc
|
A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 allows attacker to obtain the LDAP server login credentials configured in FortiGa…
Update
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-13374
|
2024-10-23 23:35 |
2019-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
668
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Disable DMCUB timeout for DCN35
[Why]
DMCUB can intermittently take longer than expected to process commands.
O…
Update
|
CWE-362
Race Condition
|
CVE-2024-46870
|
2024-10-23 23:26 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
669
|
5.5 |
MEDIUM
Local
|
adobe
|
substance_3d_sampler
|
Substance3D - Sampler versions 4.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit …
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47459
|
2024-10-23 23:17 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
670
|
9.8 |
CRITICAL
Network
litespeedtech
|
litespeed_cache
|
Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a before 6.5.0.1.
Update
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2024-44000
|
2024-10-23 23:16 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
