|
306141
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe: Use reserved copy engine for user binds on faulting devices
User binds map to engines with can fault, faults depend on us…
|
NVD-CWE-noinfo
|
CVE-2024-47729
|
2024-10-24 05:40 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306142
|
9.8 |
CRITICAL
Network
|
piyushmca
|
shipyaari_shipping_management
|
Deserialization of Untrusted Data vulnerability in Piyushmca Shipyaari Shipping Management allows Object Injection.This issue affects Shipyaari Shipping Management: from n/a through 1.2.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-49626
|
2024-10-24 05:37 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306143
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error
For all non-tracing helpers which formerly had ARG_PTR_TO_{LONG,INT}…
|
CWE-459
Incomplete Cleanup
|
CVE-2024-47728
|
2024-10-24 05:36 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306144
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
x86/tdx: Fix "in-kernel MMIO" check
TDX only supports kernel-initiated MMIO operations. The handle_mmio()
function checks if the …
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2024-47727
|
2024-10-24 05:32 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306145
|
8.1 |
HIGH
Network
|
jsbroks
|
coco_annotator
|
A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRE…
|
NVD-CWE-Other
|
CVE-2024-10141
|
2024-10-24 05:27 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306146
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: pause TCM when the firmware is stopped
Not doing so will make us send a host command to the transport while t…
|
NVD-CWE-noinfo
|
CVE-2024-47673
|
2024-10-24 05:19 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306147
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability
|
CWE-449
The UI Performs the Wrong Action
|
CVE-2024-43577
|
2024-10-24 04:15 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306148
|
7.3 |
HIGH
Network
|
djangoproject
|
django
|
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. QuerySet.values() and values_list() methods on models with a JSONField are subject to SQL injection in column aliases via a c…
|
CWE-89
SQL Injection
|
CVE-2024-42005
|
2024-10-24 03:22 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306149
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
icmp: change the order of rate limits
ICMP messages are ratelimited :
After the blamed commits, the two rate limiters are applie…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-47678
|
2024-10-24 02:58 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306150
|
- |
|
-
|
-
|
Buffer Overflow in coap_msg.c in FreeCoAP allows remote attackers to execute arbitrary code or cause a denial of service (stack buffer overflow) via a crafted packet.
|
-
|
CVE-2024-40494
|
2024-10-24 02:35 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
