|
307961
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream
This commit addresses a null pointer derefere…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49913
|
2024-10-24 23:39 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307962
|
7.2 |
HIGH
Network
|
princelycesar
|
hospital_management_system
|
SQL Injection vulnerability in hospital management system in php with source code v.1.0.0 allows a remote attacker to execute arbitrary code.
|
CWE-89
SQL Injection
|
CVE-2024-48657
|
2024-10-24 23:38 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307963
|
4.8 |
MEDIUM
Network
|
angeljudesuarez
|
student_management_system
|
Cross Site Scripting vulnerability in student management system in php with source code v.1.0.0 allows a remote attacker to execute arbitrary code.
|
CWE-79
Cross-site Scripting
|
CVE-2024-48656
|
2024-10-24 23:37 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307964
|
9.8 |
CRITICAL
Network
|
brandonclark
|
sitebuilder_dynamic_components
|
Deserialization of Untrusted Data vulnerability in Brandon Clark SiteBuilder Dynamic Components allows Object Injection.This issue affects SiteBuilder Dynamic Components: from n/a through 1.0.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-49625
|
2024-10-24 23:37 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307965
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7915: fix oops on non-dbdc mt7986
mt7915_band_config() sets band_idx = 1 on the main phy for mt7986
with MT7975_ONE…
|
NVD-CWE-noinfo
|
CVE-2024-47715
|
2024-10-24 23:35 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307966
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros
Floating point instructions in userspace can crash some arm kernels
built …
|
NVD-CWE-noinfo
|
CVE-2024-47716
|
2024-10-24 23:34 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307967
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7996: use hweight16 to get correct tx antenna
The chainmask is u16 so using hweight8 cannot get correct tx_ant.
Wit…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-47714
|
2024-10-24 23:33 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307968
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
RISC-V: KVM: Don't zero-out PMU snapshot area before freeing data
With the latest Linux-6.11-rc3, the below NULL pointer crash is…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47717
|
2024-10-24 23:32 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307969
|
9.8 |
CRITICAL
Network
|
tecno-mobile
|
4g_portable_wifi_tr118_firmware
|
A vulnerability was found in Tecno 4G Portable WiFi TR118 V008-20220830. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/goform_get_cm…
|
CWE-89
SQL Injection
|
CVE-2024-10195
|
2024-10-24 23:28 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307970
|
6.5 |
MEDIUM
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to wait dio completion
It should wait all existing dio write IOs before block removal,
otherwise, previous direct write…
|
NVD-CWE-noinfo
|
CVE-2024-47726
|
2024-10-24 23:24 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
