91
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Inappropriate implementation in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-7535
|
2024-10-25 05:35 |
2024-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
92
|
- |
|
-
|
-
|
A mass assignment vulnerability exists in Pantera CRM versions 401.152 and 402.072. This flaw allows authenticated users to modify any user attribute, including roles, by injecting additional paramet…
Update
|
-
|
CVE-2024-40531
|
2024-10-25 05:35 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
93
|
- |
|
-
|
-
|
This High severity File Inclusion vulnerability was introduced in versions 9.0.0, 9.1.0, 9.2.0, 9.3.0, 9.4.0, 9.5.0 and 9.6.0 of Bamboo Data Center and Server.
This File Inclusion vulnerability, wit…
Update
|
-
|
CVE-2024-21687
|
2024-10-25 05:35 |
2024-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
94
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: send: fix buffer overflow detection when copying path to cache entry
Starting with commit c0247d289e73 ("btrfs: send: anno…
Update
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-49869
|
2024-10-25 05:28 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
95
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition
In the svc_i3c_master_probe fun…
Update
|
CWE-416
Use After Free
|
CVE-2024-49874
|
2024-10-25 05:27 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
96
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
Input: adp5589-keys - fix NULL pointer dereference
We register a devm action to call adp5589_clear_config() and then pass
the i2c…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49871
|
2024-10-25 05:22 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
97
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mm/filemap: fix filemap_get_folios_contig THP panic
Patch series "memfd-pin huge page fixes".
Fix multiple bugs that occur when …
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49873
|
2024-10-25 05:22 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
98
|
- |
|
-
|
-
|
An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. By intercepting an HTTP request and changing the filename property in the download int…
New
|
-
|
CVE-2024-45259
|
2024-10-25 05:15 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
99
|
- |
|
-
|
-
|
EnGenius ENH1350EXT A8J-ENH1350EXT devices through 3.9.3.2_c1.9.51 allow (blind) OS Command Injection via shell metacharacters to the Ping or Speed Test utility. During the time of initial setup, the…
New
|
-
|
CVE-2024-45242
|
2024-10-25 05:15 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
100
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfsd: map the EBADMSG to nfserr_io to avoid warning
Ext4 will throw -EBADMSG through ext4_readdir when a checksum error
occurs, r…
Update
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2024-49875
|
2024-10-25 05:13 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|