|
312611
|
5.4 |
MEDIUM
Network
|
jetbrains
|
teamcity
|
In JetBrains TeamCity before 2024.07.1 self XSS was possible in the HashiCorp Vault plugin
|
CWE-79
Cross-site Scripting
|
CVE-2024-43808
|
2024-08-20 06:10 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312612
|
5.4 |
MEDIUM
Network
|
jetbrains
|
teamcity
|
In JetBrains TeamCity before 2024.07.1 multiple stored XSS was possible on Clouds page
|
CWE-79
Cross-site Scripting
|
CVE-2024-43807
|
2024-08-20 06:09 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312613
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: iptables: Fix potential null-ptr-deref in ip6table_nat_table_init().
ip6table_nat_table_init() accesses net->gen->ptr[…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42269
|
2024-08-20 05:53 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312614
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5: Fix missing lock on sync reset reload
On sync reset reload work, when remote host updates devlink on reload
actions per…
|
CWE-667
Improper Locking
|
CVE-2024-42268
|
2024-08-20 05:52 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312615
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Fix potential memory leak in the timestamp extension
If fetching of userspace memory fails during the main loop, all drm…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-42263
|
2024-08-20 05:41 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312616
|
- |
|
-
|
-
|
In setTransactionState of SurfaceFlinger.cpp, there is a possible way to perform tapjacking due to a logic error in the code. This could lead to local escalation of privilege with no additional execu…
|
-
|
CVE-2024-34743
|
2024-08-20 05:35 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312617
|
- |
|
-
|
-
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
-
|
CVE-2024-7958
|
2024-08-20 05:15 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312618
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Fix potential memory leak in the performance extension
If fetching of userspace memory fails during the main loop, all d…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-42262
|
2024-08-20 05:05 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312619
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net/iucv: fix use after free in iucv_sock_close()
iucv_sever_path() is called from process context and from bh context.
iucv->pat…
|
CWE-416
Use After Free
|
CVE-2024-42271
|
2024-08-20 05:03 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312620
|
7.8 |
HIGH
Local
|
ofono_project
|
ofono
|
oFono SMS Decoder Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker m…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-7547
|
2024-08-20 05:03 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
