1121
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mm: shmem: fix data-race in shmem_getattr()
I got the following KCSAN report during syzbot testing:
============================…
|
CWE-362
Race Condition
|
CVE-2024-50228
|
2024-11-14 03:38 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1122
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix potential deadlock with newly created symlinks
Syzbot reported that page_symlink(), called by nilfs_symlink(), trigge…
|
CWE-667
Improper Locking
|
CVE-2024-50229
|
2024-11-14 03:35 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1123
|
- |
|
-
|
-
|
vditor v.3.9.8 and before is vulnerable to Arbitrary file read via a crafted data packet.
|
-
|
CVE-2024-39150
|
2024-11-14 03:35 |
2024-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1124
|
- |
|
-
|
-
|
A SQL injection vulnerability in /model/get_events.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the event_id parameter.
|
-
|
CVE-2024-33403
|
2024-11-14 03:35 |
2024-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1125
|
3.7 |
LOW
Network
|
-
|
-
|
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java…
|
-
|
CVE-2024-21012
|
2024-11-14 03:35 |
2024-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1126
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix kernel bug due to missing clearing of checked flag
Syzbot reported that in directory operations after nilfs2 detects
…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-50230
|
2024-11-14 03:31 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1127
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()
modprobe iio-test-gts and rmmod it, then the following mem…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-50231
|
2024-11-14 03:30 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1128
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()
In the ad9832_write_frequency() function, clk_get_…
|
CWE-369
Divide By Zero
|
CVE-2024-50233
|
2024-11-14 03:25 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1129
|
9.8 |
CRITICAL
Network
level1
|
wbr-6012_firmware
|
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-31151
|
2024-11-14 03:19 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1130
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
In the ad7124_write_raw() function, parameter val can potentia…
|
CWE-369
Divide By Zero
|
CVE-2024-50232
|
2024-11-14 03:17 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|