|
312871
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Validate passed in drm syncobj handles in the performance extension
If userspace provides an unknown or invalid handle a…
|
-
|
CVE-2024-42260
|
2024-08-19 21:59 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312872
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: make cow_file_range_inline() honor locked_page on error
The btrfs buffered write path runs through __extent_writepage() wh…
|
-
|
CVE-2024-42266
|
2024-08-19 21:59 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312873
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
|
-
|
CVE-2024-42675
|
2024-08-19 18:15 |
2024-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312874
|
6.1 |
MEDIUM
Network
|
10web
|
form_maker
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in 10Web Form Builder Team Form Maker by 10Web allows Reflected XSS.This issue affects Form M…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43220
|
2024-08-13 21:58 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312875
|
7.8 |
HIGH
Local
|
dell
|
peripheral_manager
|
Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-37142
|
2024-08-9 06:17 |
2024-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312876
|
7.8 |
HIGH
Local
|
dell
|
peripheral_manager
|
Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-32857
|
2024-08-9 06:10 |
2024-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312877
|
7.5 |
HIGH
Network
|
janobe
|
school_attendence_monitoring_system
school_event_management_system
paypal
credit_card
debit_card_payment
|
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re…
|
CWE-89
SQL Injection
|
CVE-2024-33959
|
2024-08-9 06:02 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312878
|
9.8 |
CRITICAL
Network
|
tenda
|
i22_firmware
|
A vulnerability classified as critical was found in Tenda i22 1.0.0.3(4687). This vulnerability affects the function formApPortalAccessCodeAuth of the file /goform/apPortalAccessCodeAuth. The manipul…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-7582
|
2024-08-9 05:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312879
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
cachefiles: add missing lock protection when polling
Add missing lock protection in poll routine when iterating xarray,
otherwise…
|
CWE-667
Improper Locking
|
CVE-2024-42250
|
2024-08-9 05:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312880
|
3.3 |
LOW
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
spi: don't unoptimize message in spi_async()
Calling spi_maybe_unoptimize_message() in spi_async() is wrong because
the message i…
|
NVD-CWE-noinfo
|
CVE-2024-42249
|
2024-08-9 05:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
