|
781
|
5.3 |
MEDIUM
Network
iowacomputergurus
|
aspnetcore.utilities.cloudstorage
|
ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with …
Update
|
NVD-CWE-noinfo
|
CVE-2024-50353
|
2024-11-14 00:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
782
|
7.5 |
HIGH
Network
idurarapp
|
idurar
|
IDURAR is open source ERP CRM accounting invoicing software. The vulnerability exists in the corePublicRouter.js file. Using the reference usage here, it is identified that the public endpoint is acc…
Update
|
CWE-22
CWE-23
Path Traversal
Relative Path Traversal
|
CVE-2024-47769
|
2024-11-14 00:12 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
783
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
blk_iocost: fix more out of bound shifts
Recently running UBSAN caught few out of bound shifts in the
ioc_forgive_debts() functio…
Update
|
NVD-CWE-noinfo
|
CVE-2024-49933
|
2024-11-14 00:09 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
784
|
9.8 |
CRITICAL
Network
yarpp
|
yet_another_related_posts_plugin
|
Access Control vulnerability in YARPP YARPP allows .
This issue affects YARPP: from n/a through 5.30.10.
Update
|
CWE-862
Missing Authorization
|
CVE-2024-43919
|
2024-11-14 00:02 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
785
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't readahead the relocation inode on RST
On relocation we're doing readahead on the relocation inode, but if the
filesy…
Update
|
CWE-617
Reachable Assertion
|
CVE-2024-49932
|
2024-11-14 00:01 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
786
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
x86/ioapic: Handle allocation failures gracefully
Breno observed panics when using failslab under certain conditions during
runti…
Update
|
NVD-CWE-noinfo
|
CVE-2024-49927
|
2024-11-13 23:58 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
787
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
rcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb()
For kernels built with CONFIG_FORCE_NR_CPUS=y, …
Update
|
NVD-CWE-noinfo
|
CVE-2024-49926
|
2024-11-13 23:57 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
788
|
8.1 |
HIGH
Network
|
lifplatforms
|
lif_authentication_server
|
Lif Authentication Server is a server used by Lif to do various tasks regarding Lif accounts. This vulnerability has to do with the account recovery system where there does not appear to be a check t…
Update
|
CWE-862
Missing Authorization
|
CVE-2024-47768
|
2024-11-13 23:55 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
789
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix a sdiv overflow issue
Zac Ecob reported a problem where a bpf program may cause kernel crash due
to the following error:…
Update
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2024-49888
|
2024-11-13 23:54 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
790
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to don't panic system for no free segment fault injection
f2fs: fix to don't panic system for no free segment fault inj…
Update
|
NVD-CWE-noinfo
|
CVE-2024-49887
|
2024-11-13 23:50 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
