|
311761
|
5.7 |
MEDIUM
Adjacent
|
intel
|
raid_web_console
|
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
|
NVD-CWE-noinfo
|
CVE-2024-32940
|
2024-09-23 23:44 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311762
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bonding: change ipsec_lock from spin lock to mutex
In the cited commit, bond->ipsec_lock is added to protect ipsec_list,
hence xd…
|
CWE-667
Improper Locking
|
CVE-2024-46678
|
2024-09-23 23:44 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311763
|
5.5 |
MEDIUM
Local
|
intel
|
raid_web_console
|
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access.
|
NVD-CWE-Other
|
CVE-2024-33848
|
2024-09-23 23:43 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311764
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfc: pn533: Add poll mod list filling check
In case of im_protocols value is 1 and tm_protocols value is 0 this
combination succe…
|
CWE-369
Divide By Zero
|
CVE-2024-46676
|
2024-09-23 23:42 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311765
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
mantra
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Mantra allows Stored XSS.This issue affects Mantra: from n/a through 3.3.2.
|
CWE-79
Cross-site Scripting
|
CVE-2024-44056
|
2024-09-23 23:39 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311766
|
7.8 |
HIGH
Local
|
intel
|
raid_web_console
|
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-34153
|
2024-09-23 23:35 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311767
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
nirvana
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Nirvana allows Stored XSS.This issue affects Nirvana: from n/a through 1.6…
|
CWE-79
Cross-site Scripting
|
CVE-2024-44057
|
2024-09-23 23:33 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311768
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
parabola
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Parabola allows Stored XSS.This issue affects Parabola: from n/a through 2…
|
CWE-79
Cross-site Scripting
|
CVE-2024-44058
|
2024-09-23 23:28 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311769
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
fluida
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Fluida allows Stored XSS.This issue affects Fluida: from n/a through 1.8.8.
|
CWE-79
Cross-site Scripting
|
CVE-2024-44054
|
2024-09-23 23:23 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311770
|
7.8 |
HIGH
Local
|
intel
|
raid_web_console
|
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
|
NVD-CWE-noinfo
|
CVE-2024-34543
|
2024-09-23 23:17 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
