|
319241
|
7.8 |
HIGH
Local
|
w1.fi
|
wpa_supplicant
|
An issue was discovered in Ubuntu wpa_supplicant that resulted in loading of arbitrary shared objects, which allows a local unprivileged attacker to escalate privileges to the user that wpa_supplican…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-5290
|
2024-09-17 22:09 |
2024-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319242
|
6.5 |
MEDIUM
Network
|
fish-shop
|
syntax-check
|
fish-shop/syntax-check is a GitHub action for syntax checking fish shell files. Improper neutralization of delimiters in the `pattern` input (specifically the command separator `;` and command substi…
|
NVD-CWE-Other
|
CVE-2024-42482
|
2024-09-17 21:20 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319243
|
7.8 |
HIGH
Local
|
nvidia
|
gpu_display_driver
virtual_gpu
cloud_gaming
|
NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds read. A successful exploit of this vulnerability m…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-0107
|
2024-09-17 21:10 |
2024-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319244
|
7.1 |
HIGH
Local
|
huawei
|
emui
harmonyos
|
Access control vulnerability in the security verification module
mpact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
|
NVD-CWE-noinfo
|
CVE-2024-42033
|
2024-09-17 21:06 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319245
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink: Initialise extack before use in ACKs
Add missing extack initialisation when ACKing BATCH_BEGIN and BATCH_EN…
|
NVD-CWE-noinfo
|
CVE-2024-44945
|
2024-09-17 20:42 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319246
|
8.8 |
HIGH
Network
|
syscomgo
|
omflow
|
OMFLOW from The SYSCOM Group does not properly restrict access to the system settings modification functionality, allowing remote attackers with regular privileges to update system settings or create…
|
NVD-CWE-Other
|
CVE-2024-8779
|
2024-09-17 20:27 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319247
|
9.8 |
CRITICAL
Network
|
code-projects
|
crud_operation_system
|
A vulnerability was found in code-projects Crud Operation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file savedata.php. The manipulation of the argum…
|
CWE-89
SQL Injection
|
CVE-2024-8868
|
2024-09-17 19:59 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319248
|
5.4 |
MEDIUM
Network
|
perfexcrm
|
perfex_crm
|
A vulnerability was found in Perfex CRM 3.1.6. It has been declared as problematic. This vulnerability affects unknown code of the file application/controllers/Clients.php of the component Parameter …
|
CWE-79
Cross-site Scripting
|
CVE-2024-8867
|
2024-09-17 19:55 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319249
|
4.9 |
MEDIUM
Network
|
composio
|
composio
|
A vulnerability was found in composiohq composio up to 0.5.8 and classified as problematic. Affected by this issue is the function path of the file composio\server\api.py. The manipulation of the arg…
|
CWE-22
Path Traversal
|
CVE-2024-8865
|
2024-09-17 19:50 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319250
|
8.8 |
HIGH
Network
|
composio
|
composio
|
A vulnerability has been found in composiohq composio up to 0.5.6 and classified as critical. Affected by this vulnerability is the function Calculator of the file python/composio/tools/local/mathema…
|
CWE-94
Code Injection
|
CVE-2024-8864
|
2024-09-17 19:38 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
