|
251011
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos
In case of malformed relocation record of kind BPF_CORE_TYPE_ID_LOCA…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49850
|
2024-10-23 01:12 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251012
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mm/hugetlb.c: fix UAF of vma in hugetlb fault pathway
Syzbot reports a UAF in hugetlb_fault(). This happens because
vmf_anon_pre…
|
CWE-416
Use After Free
|
CVE-2024-47676
|
2024-10-23 01:12 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251013
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: mediatek: vcodec: Fix H264 stateless decoder smatch warning
Fix a smatch static checker warning on vdec_h264_req_if.c.
Whi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47752
|
2024-10-23 01:11 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251014
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: mediatek: vcodec: Fix VP8 stateless decoder smatch warning
Fix a smatch static checker warning on vdec_vp8_req_if.c.
Which…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47753
|
2024-10-23 01:10 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251015
|
8.8 |
HIGH
Network
|
hikvision
|
hikcentral_professional
|
There is a SQL injection vulnerability in some HikCentral Professional versions. This could allow an authenticated user to execute arbitrary SQL queries.
|
CWE-89
SQL Injection
|
CVE-2024-47487
|
2024-10-23 01:10 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251016
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_server_2019
|
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43611
|
2024-10-23 01:01 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251017
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fuse: use exclusive lock when FUSE_I_CACHE_IO_MODE is set
This may be a typo. The comment has said shared locks are
not allowed w…
|
CWE-667
Improper Locking
|
CVE-2024-47746
|
2024-10-23 01:00 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251018
|
6.8 |
MEDIUM
Network
|
bitdefender
|
total_security
|
A vulnerability has been identified in Bitdefender Safepay's handling of HTTPS connections. The issue arises when the product blocks a connection due to an untrusted server certificate but allows the…
|
CWE-295
Improper Certificate Validation
|
CVE-2023-6058
|
2024-10-23 01:00 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251019
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: set the cipher for secured NDP ranging
The cipher pointer is not set, but is derefereced trying to set its
co…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49857
|
2024-10-23 00:48 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251020
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KEYS: prevent NULL pointer dereference in find_asymmetric_key()
In find_asymmetric_key(), if all NULLs are passed in the id_{0,1,…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47743
|
2024-10-23 00:45 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
