|
250941
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix UAF in async decryption
Doing an async decryption (large read) crashes with a
slab-use-after-free way down in th…
|
-
|
CVE-2024-50047
|
2024-10-24 00:12 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250942
|
- |
|
-
|
-
|
Buffer Overflow vulnerability in IrfanView 32bit v.4.66 allows a local attacker to cause a denial of service via a crafted file. Affected component is IrfanView 32bit 4.66 with plugin formats.dll.
|
-
|
CVE-2024-31007
|
2024-10-24 00:12 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250943
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Skip Recompute DSC Params if no Stream on Link
[why]
Encounter NULL pointer dereference uner mst + dsc setup.
B…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47683
|
2024-10-24 00:02 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250944
|
8.8 |
HIGH
Network
|
fabianros
|
hospital_management_system
|
A vulnerability classified as critical was found in code-projects Hospital Management System 1.0. This vulnerability affects unknown code of the file change-password.php. The manipulation of the argu…
|
CWE-89
SQL Injection
|
CVE-2024-10169
|
2024-10-24 00:01 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250945
|
8.2 |
HIGH
Network
|
wikimedia
|
wikimedia-extensions-css
|
Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - CSS Extension allows Code Injection.This issue affects Mediawiki - CSS Extension: from 1.39.X before 1.39…
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2024-47845
|
2024-10-24 00:00 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250946
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: sd: Fix off-by-one error in sd_read_block_characteristics()
Ff the device returns page 0xb1 with length 8 (happens with qem…
|
CWE-193
Off-by-one Error
|
CVE-2024-47682
|
2024-10-23 23:57 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250947
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Disable DMCUB timeout for DCN35
[Why]
DMCUB can intermittently take longer than expected to process commands.
O…
|
CWE-362
Race Condition
|
CVE-2024-46870
|
2024-10-23 23:26 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250948
|
5.5 |
MEDIUM
Local
|
adobe
|
substance_3d_sampler
|
Substance3D - Sampler versions 4.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47459
|
2024-10-23 23:17 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250949
|
9.8 |
CRITICAL
Network
|
litespeedtech
|
litespeed_cache
|
Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Authentication Bypass.This issue affects LiteSpeed Cache: from n/a before 6.5.0.1.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2024-44000
|
2024-10-23 23:16 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250950
|
7.8 |
HIGH
Local
|
siemens
|
jt2go
|
A vulnerability has been identified in JT2Go (All versions < V2406.0003). The affected application contains a stack-based buffer overflow vulnerability that could be triggered while parsing specially…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-41902
|
2024-10-23 23:16 |
2024-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
