|
251431
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
igb: Initialize mailbox message for VF reset
When a MAC address is not assigned to the VF, that portion of the message
sent to th…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2022-48949
|
2024-10-30 01:32 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251432
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
riscv, bpf: Fix out-of-bounds issue when preparing trampoline image
We get the size of the trampoline image during the dry run ph…
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2024-43843
|
2024-10-30 01:29 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251433
|
3.3 |
LOW
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: virt_wifi: avoid reporting connection success with wrong SSID
When user issues a connection with a different SSID than the …
|
NVD-CWE-noinfo
|
CVE-2024-43841
|
2024-10-30 01:27 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251434
|
6.1 |
MEDIUM
Network
|
sunshinephotocart
|
sunshine_photo_cart
|
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo Cart.This issue affects Sunshine Photo Cart: from n/a through 3.2.9.
|
CWE-601
Open Redirect
|
CVE-2024-50463
|
2024-10-30 01:25 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251435
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf, arm64: Fix trampoline for BPF_TRAMP_F_CALL_ORIG
When BPF_TRAMP_F_CALL_ORIG is set, the trampoline calls
__bpf_tramp_enter() …
|
NVD-CWE-noinfo
|
CVE-2024-43840
|
2024-10-30 01:25 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251436
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: fix overflow check in adjust_jmp_off()
adjust_jmp_off() incorrectly used the insn->imm field for all overflow check,
which i…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2024-43838
|
2024-10-30 01:24 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251437
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
When calling ext4_force_split_extent_at() in ext4_ext_repl…
|
CWE-415
Double Free
|
CVE-2024-49983
|
2024-10-30 01:23 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251438
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/v3d: Prevent out of bounds access in performance query extensions
Check that the number of perfmons userspace is passing in t…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-49984
|
2024-10-30 01:22 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251439
|
6.1 |
MEDIUM
Network
|
rollupjs
|
rollup
|
Rollup is a module bundler for JavaScript. Versions prior to 2.79.2, 3.29.5, and 4.22.4 are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` (e.g…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47068
|
2024-10-30 01:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251440
|
9.8 |
CRITICAL
Network
|
acnoo
|
flutter_api
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in Acnoo Acnoo Flutter API allows Authentication Bypass.This issue affects Acnoo Flutter API: from n/a through 1.0.5.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2024-50486
|
2024-10-30 01:07 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
