|
317291
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86/mmu: make apf token non-zero to fix bug
In current async pagefault logic, when a page is ready, KVM relies on
kvm_arch_c…
|
NVD-CWE-noinfo
|
CVE-2022-48943
|
2024-08-23 03:27 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317292
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
hwmon: Handle failure to register sensor with thermal zone correctly
If an attempt is made to a sensor with a thermal zone and it…
|
CWE-476
NULL Pointer Dereference
|
CVE-2022-48942
|
2024-08-23 03:25 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317293
|
- |
|
-
|
-
|
SeaCMS 13.0 has a remote code execution vulnerability. The reason for this vulnerability is that although admin_editplayer.php imposes restrictions on edited files, attackers can still bypass these r…
|
-
|
CVE-2024-42598
|
2024-08-23 03:15 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317294
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
dma: fix call order in dmam_free_coherent
dmam_free_coherent() frees a DMA allocation, which makes the
freed vaddr available for …
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-43856
|
2024-08-23 02:57 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317295
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
md: fix deadlock between mddev_suspend and flush bio
Deadlock occurs when mddev is being suspended while some flush bio is in
pro…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43855
|
2024-08-23 02:48 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317296
|
8.8 |
HIGH
Network
|
lopalopa
|
music_management_system
|
An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=save_playlist" in Kashipara Music Management System v1.0. This allows attackers to execute arbitrary code via uploading …
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-42778
|
2024-08-23 02:46 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317297
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in Permissions in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
|
NVD-CWE-noinfo
|
CVE-2024-7975
|
2024-08-23 02:40 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317298
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
jfs: Fix array-index-out-of-bounds in diFree
|
CWE-129
Improper Validation of Array Index
|
CVE-2024-43858
|
2024-08-23 02:40 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317299
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix null reference error when checking end of zone
This patch fixes a potentially null pointer being accessed by
is_end_zon…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43857
|
2024-08-23 02:38 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317300
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in Views in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
|
NVD-CWE-noinfo
|
CVE-2024-7981
|
2024-08-23 02:36 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
