|
751
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
unicode: Don't special case ignorable code points
We don't need to handle them separately. Instead, just let them
decompose/casef…
Update
|
NVD-CWE-noinfo
|
CVE-2024-50089
|
2024-11-14 01:59 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
752
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: ethernet: mtk_eth_soc: fix memory corruption during fq dma init
The loop responsible for allocating up to MTK_FQ_DMA_LENGTH …
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-50206
|
2024-11-14 01:56 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
753
|
7.2 |
HIGH
Network
|
dell
|
enterprise_sonic_distribution
|
Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker w…
Update
|
CWE-78
OS Command
|
CVE-2024-45763
|
2024-11-14 01:52 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
754
|
6.5 |
MEDIUM
Network
|
oretnom23
|
cab_management_system
|
A SQL injection vulnerability in manage_client.php and view_cab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading…
Update
|
CWE-89
SQL Injection
|
CVE-2024-51030
|
2024-11-14 01:47 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
755
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: bcmasp: fix potential memory leak in bcmasp_xmit()
The bcmasp_xmit() returns NETDEV_TX_OK without freeing skb
in case of map…
Update
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-50170
|
2024-11-14 01:44 |
2024-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
756
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: Check the remaining info_cnt before repeating btf fields
When trying to repeat the btf fields for array of nested struct, it…
Update
|
CWE-129
Improper Validation of Array Index
|
CVE-2024-50161
|
2024-11-14 01:36 |
2024-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
757
|
- |
|
-
|
-
|
An issue Hoosk v1.7.1 allows a remote attacker to execute arbitrary code via a crafted script to the config.php component.
Update
|
-
|
CVE-2024-51055
|
2024-11-14 01:35 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
758
|
- |
|
-
|
-
|
An incorrect access control issue in HomeServe Home Repair' android app - 3.3.4 allows a physically proximate attacker to escalate privileges via the fingerprint authentication function.
Update
|
-
|
CVE-2024-40240
|
2024-11-14 01:35 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
759
|
- |
|
-
|
-
|
Potential vulnerabilities have been identified in the HP Display Control software component within the HP Application Enabling Software Driver which might allow escalation of privilege.
Update
|
-
|
CVE-2024-29080
|
2024-11-14 01:35 |
2024-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
760
|
- |
|
-
|
-
|
A Cross Site Scripting vulnerability exists in Piwigo before 14.3.0 script because of missing sanitization in create_tag in admin/include/functions.php.
Update
|
-
|
CVE-2024-28662
|
2024-11-14 01:35 |
2024-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
