|
303871
|
7.3 |
HIGH
Local
|
samsung
|
android
|
Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. User interaction is required for triggering this …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-34676
|
2024-11-13 00:31 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303872
|
7.8 |
HIGH
Local
|
samsung
|
android
|
Out-of-bounds write in libsapeextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-34678
|
2024-11-13 00:30 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303873
|
4.6 |
MEDIUM
Physics
|
samsung
|
android
|
Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers to access data across multiple user profiles.
|
NVD-CWE-noinfo
|
CVE-2024-49402
|
2024-11-13 00:09 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303874
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
x86: fix user address masking non-canonical speculation issue
It turns out that AMD has a "Meltdown Lite(tm)" issue with non-cano…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-50102
|
2024-11-13 00:08 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303875
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfsd: fix race between laundromat and free_stateid
There is a race between laundromat handling of revoked delegations
and a clien…
|
CWE-416
Use After Free
|
CVE-2024-50106
|
2024-11-13 00:07 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303876
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc
Commit 15c7fab0e047 ("ASoC: qcom: Move Soundwire runtime stream al…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50105
|
2024-11-13 00:06 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303877
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: qcom: sdm845: add missing soundwire runtime stream alloc
During the migration of Soundwire runtime stream allocation from
t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50104
|
2024-11-13 00:05 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303878
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices
Previously, the domain_context_clear() function incorrectl…
|
NVD-CWE-noinfo
|
CVE-2024-50101
|
2024-11-12 23:59 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303879
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
USB: gadget: dummy-hcd: Fix "task hung" problem
The syzbot fuzzer has been encountering "task hung" problems ever
since the dummy…
|
NVD-CWE-noinfo
|
CVE-2024-50100
|
2024-11-12 23:57 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303880
|
- |
|
-
|
-
|
A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204. It has been classified as critical. Affected is an unknown function of the file /manager/frontdesk/online_status…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2024-11051
|
2024-11-12 22:56 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
