|
313191
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
thermal: int340x: fix memory leak in int3400_notify()
It is easy to hit the below memory leaks in my TigerLake platform:
unrefer…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2022-48924
|
2024-08-28 01:07 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313192
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
thermal: core: Fix TZ_GET_TRIP NULL pointer dereference
Do not call get_trip_hyst() from thermal_genl_cmd_tz_get_trip() if
the th…
|
CWE-476
NULL Pointer Dereference
|
CVE-2022-48915
|
2024-08-28 01:07 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313193
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
cifs: fix double free race when mount fails in cifs_get_root()
When cifs_get_root() fails during cifs_smb3_do_mount() we call
dea…
|
CWE-415
Double Free
|
CVE-2022-48919
|
2024-08-28 01:07 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313194
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iwlwifi: mvm: check debugfs_dir ptr before use
When "debugfs=off" is used on the kernel command line, iwiwifi's
mvm module uses a…
|
CWE-476
NULL Pointer Dereference
|
CVE-2022-48918
|
2024-08-28 01:07 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313195
|
9.8 |
CRITICAL
Network
|
fastcom
|
fw300r_firmware
|
A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via a crafted file path.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-41285
|
2024-08-28 01:03 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313196
|
9.8 |
CRITICAL
Network
|
angeljudesuarez
|
tailoring_management_system
|
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file staffcatedit.php. The manipulation of the argumen…
|
CWE-89
SQL Injection
|
CVE-2024-8171
|
2024-08-28 01:02 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313197
|
9.8 |
CRITICAL
Network
|
rems
|
zipped_folder_manager_app
|
A vulnerability classified as problematic has been found in SourceCodester Zipped Folder Manager App 1.0. This affects an unknown part of the file /endpoint/add-folder.php. The manipulation of the ar…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8170
|
2024-08-28 01:02 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313198
|
6.1 |
MEDIUM
Network
|
rems
|
qr_code_attendance_system
|
A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Attendance System 1.0. This issue affects some unknown processing of the file /endpoint/delete-student.p…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8172
|
2024-08-28 01:01 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313199
|
4.3 |
MEDIUM
Network
|
getbrave
|
brave
|
Cross-Site Request Forgery (CSRF) vulnerability in Brave Brave Popup Builder.This issue affects Brave Popup Builder: from n/a through 0.7.0.
|
CWE-352
Origin Validation Error
|
CVE-2024-43337
|
2024-08-28 00:59 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313200
|
6.1 |
MEDIUM
Network
|
webinarpress
|
webinarpress
|
Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress allows Cross-Site Scripting (XSS).This issue affects WebinarPress: from n/a through 1.33.20.
|
CWE-352
Origin Validation Error
|
CVE-2024-43339
|
2024-08-28 00:58 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
