821
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()
Use {READ,WRITE}_ONCE() to access kvm->last_boosted_vcpu to ensur…
Update
|
-
|
CVE-2024-40953
|
2024-10-23 00:15 |
2024-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
822
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
dm-crypt, dm-verity: disable tasklets
Tasklets have an inherent problem with memory corruption. The function
tasklet_action_commo…
Update
|
-
|
CVE-2024-26718
|
2024-10-23 00:15 |
2024-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
823
|
8.8 |
HIGH
Network
|
cisco
|
ata_191_firmware ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an authenticated, remote attacker with low privileges to run commands as an…
Update
|
NVD-CWE-Other
|
CVE-2024-20420
|
2024-10-23 00:12 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
824
|
5.4 |
MEDIUM
Network
|
phpgurukul
|
ifsc_code_finder
|
A vulnerability has been found in PHPGurukul IFSC Code Finder Project 1.0 and classified as problematic. This vulnerability affects unknown code of the file search.php. The manipulation leads to cros…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-10192
|
2024-10-23 00:09 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
825
|
5.4 |
MEDIUM
Network
|
wpzest
|
easy_menu_manager
|
The Easy Menu Manager | WPZest plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.1 due to insufficient input sanitizatio…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-9366
|
2024-10-23 00:09 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
826
|
5.4 |
MEDIUM
Network
|
dankedev
|
elemenda
|
The Elemenda plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 0.0.2 due to insufficient input sanitization and output escap…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-9373
|
2024-10-23 00:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
827
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tcp: check skb is non-NULL in tcp_rto_delta_us()
We have some machines running stock Ubuntu 20.04.6 which is their 5.4.0-174-gene…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47684
|
2024-10-22 23:59 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
828
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he
Fix the NULL pointer dereference in mt7996_mcu_sta_bfe…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47681
|
2024-10-22 23:57 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
829
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
exfat: resolve memory leak from exfat_create_upcase_table()
If exfat_load_upcase_table reaches end and returns -EINVAL,
allocated…
New
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-47677
|
2024-10-22 23:55 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
830
|
7.3 |
HIGH
Local
|
citrix
|
workspace
|
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
Update
|
NVD-CWE-noinfo
|
CVE-2024-7890
|
2024-10-22 23:53 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|