|
2321
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
The `nouveau_dmem_copy_one` function ensures that the copy push…
|
NVD-CWE-noinfo
|
CVE-2024-50096
|
2024-11-13 01:16 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2322
|
- |
|
-
|
-
|
A vulnerability, which was classified as problematic, was found in ???????????? Lingdang CRM up to 8.6.4.3. This affects an unknown part of the file /crm/data/pdf.php. The manipulation of the argumen…
|
CWE-22
Path Traversal
|
CVE-2024-11123
|
2024-11-13 01:15 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2323
|
- |
|
-
|
-
|
A vulnerability, which was classified as critical, has been found in ???????????? Lingdang CRM up to 8.6.4.3. Affected by this issue is some unknown functionality of the file /crm/wechatSession/index…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-11122
|
2024-11-13 01:15 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2324
|
- |
|
-
|
-
|
A vulnerability classified as critical was found in ???????????? Lingdang CRM up to 8.6.4.3. Affected by this vulnerability is an unknown functionality of the file /crm/WeiXinApp/marketing/index.php?…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2024-11121
|
2024-11-13 01:15 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2325
|
- |
|
-
|
-
|
A vulnerability classified as critical has been found in Jinher Network Collaborative Management Platform ??????????? 1.0. Affected is an unknown function of the file /C6/JHSoft.Web.AcceptAip/AcceptS…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2024-11060
|
2024-11-13 01:15 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2326
|
5.5 |
MEDIUM
Local
|
debian
redhat
fedoraproject
linux
|
debian_linux
enterprise_linux
fedora
linux_kernel
|
A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of code push recursively calls into the code block. The OVS module does …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-1151
|
2024-11-13 01:15 |
2024-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2327
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A vulnerability was found in vhost_new_msg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating sys…
|
NVD-CWE-noinfo
|
CVE-2024-0340
|
2024-11-13 01:15 |
2024-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2328
|
7.1 |
HIGH
Local
|
samsung
|
android
|
Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities.
|
NVD-CWE-noinfo
|
CVE-2024-49401
|
2024-11-13 01:10 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2329
|
7.1 |
HIGH
Local
|
samsung
|
android
|
Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege.
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-34679
|
2024-11-13 01:09 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2330
|
4.6 |
MEDIUM
Physics
|
samsung
|
android
|
Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen.
|
NVD-CWE-noinfo
|
CVE-2024-34675
|
2024-11-13 01:08 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
