|
2041
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
vduse: fix memory corruption in vduse_dev_ioctl()
The "config.offset" comes from the user. There needs to a check to
prevent it …
|
CWE-787
Out-of-bounds Write
|
CVE-2021-47605
|
2024-10-31 22:50 |
2024-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2042
|
4.4 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
audit: improve robustness of the audit queue handling
If the audit daemon were ever to get stuck in a stopped state the
kernel's …
|
CWE-667
Improper Locking
|
CVE-2021-47603
|
2024-10-31 22:46 |
2024-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2043
|
5.4 |
MEDIUM
Network
|
cozythemes
|
cozy_blocks
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CozyThemes Cozy Blocks allows Stored XSS.This issue affects Cozy Blocks: from n/a through …
|
CWE-79
Cross-site Scripting
|
CVE-2024-50502
|
2024-10-31 22:43 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2044
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mac80211: track only QoS data frames for admission control
For admission control, obviously all of that only works for
QoS data f…
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2021-47602
|
2024-10-31 22:41 |
2024-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2045
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: use latest_dev in btrfs_show_devname
The test case btrfs/238 reports the warning below:
WARNING: CPU: 3 PID: 481 at fs/b…
|
CWE-362
Race Condition
|
CVE-2021-47599
|
2024-10-31 22:36 |
2024-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2046
|
7.1 |
HIGH
Network
|
cisco
|
ata_191_firmware
ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to modify the configuration or reboot a…
|
NVD-CWE-Other
|
CVE-2024-20463
|
2024-10-31 22:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2047
|
3.1 |
LOW
Network
|
oracle
|
database_server
|
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.24, 21.3-21.15 and 23.4-23.5. Difficult to exploit vulnerability allows low privil…
|
NVD-CWE-noinfo
|
CVE-2024-21251
|
2024-10-31 22:35 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2048
|
4.3 |
MEDIUM
Network
|
oracle
|
database_server
|
Vulnerability in the Oracle Database Core component of Oracle Database Server. Supported versions that are affected are 19.3-19.24, 21.3-21.15 and 23.4-23.5. Easily exploitable vulnerability allows…
|
NVD-CWE-noinfo
|
CVE-2024-21233
|
2024-10-31 22:35 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2049
|
3.7 |
LOW
Network
|
-
|
-
|
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Compiler). Supported versions that are affected are Oracle Java S…
|
-
|
CVE-2024-21211
|
2024-10-31 22:35 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2050
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite (component: Diagnostics). Supported versions that are affected are ECC:11-13. Easily exploitable vu…
|
-
|
CVE-2024-21206
|
2024-10-31 22:35 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
