121
|
5.9 |
MEDIUM
Network
|
-
|
-
|
A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause APICast to incorrectly authenticate a request. A malformed basic authentication header containing spec…
New
|
-
|
CVE-2024-10295
|
2024-10-25 04:35 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
122
|
- |
|
-
|
-
|
Llama Stack prior to revision 7a8aa775e5a267cf8660d83140011a0b7f91e005 used pickle as a serialization format for socket communication, potentially allowing for remote code execution. Socket communica…
New
|
-
|
CVE-2024-50050
|
2024-10-25 04:35 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
123
|
8.8 |
HIGH
Network
|
mintplexlabs
|
anythingllm
|
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows users with Default or Manager roles to escalate their privileges to Administrator. The issue arises from…
Update
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2024-3150
|
2024-10-25 04:35 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
124
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfsd: fix possible badness in FREE_STATEID
When multiple FREE_STATEIDs are sent for the same delegation stateid,
it can lead to a…
Update
|
CWE-416
Use After Free
|
CVE-2024-50043
|
2024-10-25 04:32 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
125
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
i40e: Fix macvlan leak by synchronizing access to mac_filter_hash
This patch addresses a macvlan leak issue in the i40e driver ca…
Update
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-50041
|
2024-10-25 04:31 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
126
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ravb: Fix potential use-after-free in ravb_rx_gbeth()
The skb is delivered to napi_gro_receive() which may free it, after calling…
Update
|
CWE-416
Use After Free
|
CVE-2022-48964
|
2024-10-25 04:28 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
127
|
6.5 |
MEDIUM
Adjacent
|
intel
|
system_usage_report_for_gameplay
|
Improper access control in some Intel(R) SUR software before version 2.4.10587 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Update
|
NVD-CWE-noinfo
|
CVE-2023-39941
|
2024-10-25 04:28 |
2024-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
128
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: wwan: iosm: fix memory leak in ipc_mux_init()
When failed to alloc ipc_mux->ul_adb.pp_qlt in ipc_mux_init(), ipc_mux
is not …
Update
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2022-48963
|
2024-10-25 04:27 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
129
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: hisilicon: Fix potential use-after-free in hisi_femac_rx()
The skb is delivered to napi_gro_receive() which may free it, aft…
Update
|
CWE-416
Use After Free
|
CVE-2022-48962
|
2024-10-25 04:27 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
130
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: hisilicon: Fix potential use-after-free in hix5hd2_rx()
The skb is delivered to napi_gro_receive() which may free it, after
…
Update
|
CWE-416
Use After Free
|
CVE-2022-48960
|
2024-10-25 04:24 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|