|
256781
|
7.8 |
HIGH
Local
|
dell
|
peripheral_manager
|
Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-32857
|
2024-08-9 06:10 |
2024-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256782
|
7.5 |
HIGH
Network
|
janobe
|
school_attendence_monitoring_system
school_event_management_system
paypal
credit_card
debit_card_payment
|
SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re…
|
CWE-89
SQL Injection
|
CVE-2024-33959
|
2024-08-9 06:02 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256783
|
9.8 |
CRITICAL
Network
|
tenda
|
i22_firmware
|
A vulnerability classified as critical was found in Tenda i22 1.0.0.3(4687). This vulnerability affects the function formApPortalAccessCodeAuth of the file /goform/apPortalAccessCodeAuth. The manipul…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-7582
|
2024-08-9 05:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256784
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
cachefiles: add missing lock protection when polling
Add missing lock protection in poll routine when iterating xarray,
otherwise…
|
CWE-667
Improper Locking
|
CVE-2024-42250
|
2024-08-9 05:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256785
|
3.3 |
LOW
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
spi: don't unoptimize message in spi_async()
Calling spi_maybe_unoptimize_message() in spi_async() is wrong because
the message i…
|
NVD-CWE-noinfo
|
CVE-2024-42249
|
2024-08-9 05:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256786
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tty: serial: ma35d1: Add a NULL check for of_node
The pdev->dev.of_node can be NULL if the "serial" node is absent.
Add a NULL ch…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42248
|
2024-08-9 05:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256787
|
9.8 |
CRITICAL
Network
|
tenda
|
i22_firmware
|
A vulnerability, which was classified as critical, has been found in Tenda i22 1.0.0.3(4687). This issue affects the function formApPortalOneKeyAuth of the file /goform/apPortalOneKeyAuth. The manipu…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-7583
|
2024-08-9 05:54 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256788
|
7.5 |
HIGH
Network
|
djangoproject
|
django
|
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The floatformat template filter is subject to significant memory consumption when given a string representation of a number i…
|
NVD-CWE-noinfo
|
CVE-2024-41989
|
2024-08-9 05:35 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256789
|
- |
|
-
|
-
|
Incorrect garbage collection interaction could have led to a use-after-free. This vulnerability affects Firefox < 129.
|
-
|
CVE-2024-7530
|
2024-08-9 03:35 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256790
|
- |
|
-
|
-
|
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware contained multiple XSS vulnerabilities in the version of JavaScript used.
|
-
|
CVE-2024-41910
|
2024-08-9 03:15 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
