|
1171
|
8.0 |
HIGH
Adjacent
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix potential OOBs in smb2_parse_contexts()
Validate offsets and lengths before dereferencing create contexts in
smb…
Update
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-52434
|
2024-11-4 22:16 |
2024-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1172
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
hwmon: (nct6775) Fix crash in clear_caseopen
Pawel Marciniak reports the following crash, observed when clearing
the chassis intr…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2022-48750
|
2024-11-4 22:15 |
2024-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1173
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
firmware: arm_scmi: Harden accesses to the reset domains
Accessing reset domains descriptors by the index upon the SCMI drivers
r…
Update
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2022-48655
|
2024-11-4 22:15 |
2024-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1174
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
vt: fix memory overlapping when deleting chars in the buffer
A memory overlapping copy occurs when deleting a long line. This mem…
Update
|
-
|
CVE-2022-48627
|
2024-11-4 22:15 |
2024-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1175
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
serial: protect uart_port_dtr_rts() in uart_shutdown() too
Commit af224ca2df29 (serial: core: Prevent unsafe uart port access, pa…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50058
|
2024-11-4 21:16 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1176
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
exec: don't WARN for racy path_noexec check
Both i_mode and noexec checks wrapped in WARN_ON stem from an artifact
of the previou…
Update
|
-
|
CVE-2024-50010
|
2024-11-4 21:16 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1177
|
7.5 |
HIGH
Network
gaizhenbiao
|
chuanhuchatgpt
|
A timing attack vulnerability exists in the gaizhenbiao/chuanhuchatgpt repository, specifically within the password comparison logic. The vulnerability is present in version 20240310 of the software,…
Update
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-5124
|
2024-11-4 20:15 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1178
|
8.8 |
HIGH
Network
|
mintplexlabs
|
anythingllm
|
In mintplex-labs/anything-llm, a vulnerability exists in the thread update process that allows users with Default or Manager roles to escalate their privileges to Administrator. The issue arises from…
Update
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2024-3150
|
2024-11-4 20:15 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1179
|
8.8 |
HIGH
Network
|
mintplexlabs
|
anythingllm
|
mintplex-labs/anything-llm is vulnerable to multiple security issues due to improper input validation in several endpoints. An attacker can exploit these vulnerabilities to escalate privileges from a…
Update
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2024-3152
|
2024-11-4 20:15 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1180
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
New
|
-
|
CVE-2024-48342
|
2024-11-4 16:15 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
