|
251401
|
- |
|
-
|
-
|
An insufficient bounds check in PMFW (Power Management Firmware) may allow an attacker to utilize a malicious VF (virtualization function) to send a malformed message, potentially resulting in a deni…
|
-
|
CVE-2023-20513
|
2024-10-30 04:35 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251402
|
- |
|
-
|
-
|
A vulnerability has been found in Telestream Sentry 6.0.9 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /?page=reports of the component Reports…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10276
|
2024-10-30 03:15 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251403
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
afs: Fix the setting of the server responding flag
In afs_wait_for_operation(), we set transcribe the call responded flag to
the …
|
NVD-CWE-noinfo
|
CVE-2024-49999
|
2024-10-30 03:03 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251404
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: gso: fix tcp fraglist segmentation after pull from frag_list
Detect tcp gso fraglist skbs with corrupted geometry (see below…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49979
|
2024-10-30 03:02 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251405
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
gso: fix udp gso fraglist segmentation after pull from frag_list
Detect gso fraglist skbs with corrupted geometry (see below) and…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49978
|
2024-10-30 03:01 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251406
|
5.8 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense_software
adaptive_security_appliance_software
|
A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote a…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2024-20481
|
2024-10-30 02:47 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251407
|
9.6 |
CRITICAL
Network
|
apple
|
ipados
iphone_os
|
A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1. A remote attacker may be able to break out of Web Content sandbox.
|
NVD-CWE-noinfo
|
CVE-2024-40867
|
2024-10-30 02:41 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251408
|
8.8 |
HIGH
Local
|
apple
|
macos
|
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. An application may be able to break out of its sandbox.
|
NVD-CWE-noinfo
|
CVE-2024-44122
|
2024-10-30 02:38 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251409
|
5.5 |
MEDIUM
Local
|
hp
|
oneview
|
This vulnerability could be exploited, leading to unauthorized disclosure of information to authenticated users.
|
NVD-CWE-noinfo
|
CVE-2024-42508
|
2024-10-30 02:38 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251410
|
2.3 |
LOW
Local
|
apple
|
macos
iphone_os
ipados
|
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15, iOS 18 and iPadOS 18. A malicious app with root privileges may be able to access keyboard inpu…
|
NVD-CWE-noinfo
|
CVE-2024-44123
|
2024-10-30 02:37 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
