|
313331
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
exfat: fix potential deadlock on __exfat_get_dentry_set
When accessing a file with more entries than ES_MAX_ENTRY_NUM, the bh-arr…
|
CWE-667
Improper Locking
|
CVE-2024-42315
|
2024-08-23 00:51 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313332
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix null pointer dereference in resolve_prog_type() for BPF_PROG_TYPE_EXT
When loading a EXT program without specifying `att…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43837
|
2024-08-23 00:44 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313333
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: ethtool: pse-pd: Fix possible null-deref
Fix a possible null dereference when a PSE supports both c33 and PoDL, but
only one…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43836
|
2024-08-23 00:43 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313334
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: v4l: async: Fix NULL pointer dereference in adding ancillary links
In v4l2_async_create_ancillary_links(), ancillary links…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43833
|
2024-08-23 00:42 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313335
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix infinite loop when replaying fast_commit
When doing fast_commit replay an infinite loop may occur due to an
uninitializ…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2024-43828
|
2024-08-23 00:41 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313336
|
- |
|
-
|
-
|
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a me…
|
-
|
CVE-2024-45169
|
2024-08-23 00:35 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313337
|
- |
|
-
|
-
|
The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command and control) server. Unauthenticated sessions remain open, causing resource consumption. For example, a…
|
-
|
CVE-2024-45163
|
2024-08-23 00:35 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313338
|
- |
|
-
|
-
|
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the book_id parameter at admin_room_history.php.
|
-
|
CVE-2024-42552
|
2024-08-23 00:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313339
|
9.8 |
CRITICAL
Network
|
secom
|
dr.id_access_control
|
Dr.ID Access Control System from SECOM does not properly validate a specific page parameter, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database cont…
|
CWE-89
SQL Injection
|
CVE-2024-7731
|
2024-08-22 23:40 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313340
|
9.8 |
CRITICAL
Network
|
traccar
|
traccar
|
Use of Default Credentials vulnerability in Tananaev Solutions Traccar Server on Administrator Panel modules allows Authentication Abuse.This issue affects the privileged transactions implemented by …
|
CWE-287
Improper Authentication
|
CVE-2024-7746
|
2024-08-22 23:40 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
