1661
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
x86: fix user address masking non-canonical speculation issue
It turns out that AMD has a "Meltdown Lite(tm)" issue with non-cano…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-50102
|
2024-11-13 00:08 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1662
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfsd: fix race between laundromat and free_stateid
There is a race between laundromat handling of revoked delegations
and a clien…
|
CWE-416
Use After Free
|
CVE-2024-50106
|
2024-11-13 00:07 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1663
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc
Commit 15c7fab0e047 ("ASoC: qcom: Move Soundwire runtime stream al…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50105
|
2024-11-13 00:06 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1664
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: qcom: sdm845: add missing soundwire runtime stream alloc
During the migration of Soundwire runtime stream allocation from
t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50104
|
2024-11-13 00:05 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1665
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices
Previously, the domain_context_clear() function incorrectl…
|
NVD-CWE-noinfo
|
CVE-2024-50101
|
2024-11-12 23:59 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1666
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
USB: gadget: dummy-hcd: Fix "task hung" problem
The syzbot fuzzer has been encountering "task hung" problems ever
since the dummy…
|
NVD-CWE-noinfo
|
CVE-2024-50100
|
2024-11-12 23:57 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1667
|
- |
|
-
|
-
|
A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204. It has been classified as critical. Affected is an unknown function of the file /manager/frontdesk/online_status…
|
CWE-89 CWE-74
SQL Injection Injection
|
CVE-2024-11051
|
2024-11-12 22:56 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1668
|
- |
|
-
|
-
|
A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204 and classified as problematic. This issue affects some unknown processing of the file /language.php. The manipula…
|
CWE-79 CWE-94
Cross-site Scripting Code Injection
|
CVE-2024-11050
|
2024-11-12 22:56 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1669
|
- |
|
-
|
-
|
A vulnerability classified as problematic has been found in ZKTeco ZKBio Time 9.0.1. Affected is an unknown function of the file /auth_files/photo/ of the component Image File Handler. The manipulati…
|
-
|
CVE-2024-11049
|
2024-11-12 22:56 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1670
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kendysond Selar.Co Widget allows DOM-Based XSS.This issue affects Selar.Co Widget: from n/…
|
CWE-79
Cross-site Scripting
|
CVE-2024-51598
|
2024-11-12 22:56 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|