|
313851
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix potential deadlock with newly created symlinks
Syzbot reported that page_symlink(), called by nilfs_symlink(), trigge…
|
CWE-667
Improper Locking
|
CVE-2024-50229
|
2024-11-14 03:35 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313852
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix kernel bug due to missing clearing of checked flag
Syzbot reported that in directory operations after nilfs2 detects
…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-50230
|
2024-11-14 03:31 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313853
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()
modprobe iio-test-gts and rmmod it, then the following mem…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-50231
|
2024-11-14 03:30 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313854
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg()
In the ad9832_write_frequency() function, clk_get_…
|
CWE-369
Divide By Zero
|
CVE-2024-50233
|
2024-11-14 03:25 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313855
|
9.8 |
CRITICAL
Network
|
level1
|
wbr-6012_firmware
|
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-31151
|
2024-11-14 03:19 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313856
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
In the ad7124_write_raw() function, parameter val can potentia…
|
CWE-369
Divide By Zero
|
CVE-2024-50232
|
2024-11-14 03:17 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313857
|
8.1 |
HIGH
Network
|
level1
|
wbr-6012_firmware
|
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-28875
|
2024-11-14 03:10 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313858
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ntfs3: Add bounds checking to mi_enum_attr()
Added bounds checking to make sure that every attr don't stray beyond
valid memory r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-50248
|
2024-11-14 03:07 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313859
|
5.4 |
MEDIUM
Network
|
themepunch
|
slider_revolution
|
The Slider Revolution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.7.18 due to insufficient input sanitization and ou…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8107
|
2024-11-14 03:06 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313860
|
5.4 |
MEDIUM
Network
|
benjaminzekavica
|
easy_svg_support
|
The Easy SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG File uploads in all versions up to, and including, 3.7 due to insufficient input sanitization a…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10269
|
2024-11-14 02:59 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
