|
312791
|
7.8 |
HIGH
Local
|
qualcomm
|
fastconnect_6200_firmware
fastconnect_6700_firmware
fastconnect_6900_firmware
fastconnect_7800_firmware
flight_rb5_5g_platform_firmware
qam8255p_firmware
qam8295p_firmware
qam862…
|
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
|
CWE-416
Use After Free
|
CVE-2024-33034
|
2024-11-20 22:54 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312792
|
- |
|
-
|
-
|
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid…
|
-
|
CVE-2024-11086
|
2024-11-20 22:15 |
2024-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312793
|
- |
|
-
|
-
|
Improper Validation of Specified Type of Input vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET versions 1.100 and later and FX5-ENET/IP versions 1.100 to 1.104 allows a r…
|
CWE-1287
Improper Validation of Specified Type of Input
|
CVE-2024-8403
|
2024-11-20 10:15 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312794
|
5.3 |
MEDIUM
Network
|
-
|
-
|
The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 2.8.6. This is due to publicly accessible print_php_information.php file.…
|
CWE-862
Missing Authorization
|
CVE-2024-10486
|
2024-11-20 06:57 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312795
|
- |
|
-
|
-
|
The WesHacks GitHub repository provides the official Hackathon competition website source code for the Muweilah Wesgreen Hackathon. The page `schedule.html` before 17 November 2024 or commit 93dfb83 …
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2024-52583
|
2024-11-20 06:57 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312796
|
- |
|
-
|
-
|
MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write vulnerability accessible via the update_files method of the Subm…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-51499
|
2024-11-20 06:57 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312797
|
- |
|
-
|
-
|
MarkUs, a web application for the submission and grading of student assignments, is vulnerable to path traversal in versions prior to 2.4.8. Authenticated instructors may download any file on the web…
|
CWE-22
Path Traversal
|
CVE-2024-47820
|
2024-11-20 06:57 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312798
|
- |
|
-
|
-
|
Cobbler, a Linux installation server that allows for rapid setup of network installation environments, has an improper authentication vulnerability starting in version 3.0.0 and prior to versions 3.2…
|
CWE-287
Improper Authentication
|
CVE-2024-47533
|
2024-11-20 06:57 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312799
|
- |
|
-
|
-
|
GLPI is a free asset and IT management software package. Starting in version 0.80 and prior to version 10.0.17, an unauthenticated user can use an application endpoint to check if an email address co…
|
CWE-200
Information Exposure
|
CVE-2024-43416
|
2024-11-20 06:57 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312800
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Elfsight Telegram Chat CC plugin for WordPress is vulnerable to unauthorized modification of data to a missing capability check on the 'updatePreferences' function in all versions up to, and incl…
|
CWE-862
Missing Authorization
|
CVE-2024-10390
|
2024-11-20 06:57 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
