|
303561
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the autofill service, the package name that is provided by the app process is trusted inappropriately. This could lead to information disclosure with no additional execution privileges needed. U…
|
NVD-CWE-noinfo
|
CVE-2017-13227
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303562
|
7.5 |
HIGH
Network
|
adonesevangelista
|
agri-trading_online_shopping_system
|
A business logic vulnerability exists in the Add to Cart function of itsourcecode Agri-Trading Online Shopping System 1.0, which allows remote attackers to manipulate the quant parameter when adding …
|
NVD-CWE-noinfo
|
CVE-2024-50968
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303563
|
7.8 |
HIGH
Local
|
google
|
android
|
In PMRWritePMPageList of pmr.c, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution p…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23715
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303564
|
7.8 |
HIGH
Local
|
google
|
android
|
In PVRSRVRGXKickTA3DKM of rgxta3d.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional e…
|
NVD-CWE-noinfo
|
CVE-2023-35686
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303565
|
7.8 |
HIGH
Local
|
google
|
android
|
In DevmemIntChangeSparse of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no a…
|
NVD-CWE-noinfo
|
CVE-2023-35659
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303566
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu/vcn: remove irq disabling in vcn 5 suspend
We do not directly enable/disable VCN IRQ in vcn 5.0.0.
And we do not handl…
|
NVD-CWE-noinfo
|
CVE-2024-46820
|
2024-11-21 02:34 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303567
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: protect references to superblock parameters exposed in sysfs
The superblock buffers of nilfs2 can not only be overwritten…
|
NVD-CWE-noinfo
|
CVE-2024-46780
|
2024-11-21 02:31 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303568
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mm/slub: add check for s->flags in the alloc_tagging_slab_free_hook
When enable CONFIG_MEMCG & CONFIG_KFENCE & CONFIG_KMEMLEAK, t…
|
NVD-CWE-noinfo
|
CVE-2024-46789
|
2024-11-21 02:27 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303569
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check
The lookup function iwl_mvm_rcu_fw_link_id_to_link_conf() is
normally call…
|
NVD-CWE-noinfo
|
CVE-2024-46825
|
2024-11-21 02:24 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303570
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ELF: fix kernel.randomize_va_space double read
ELF loader uses "randomize_va_space" twice. It is sysctl and can change
at any mom…
|
NVD-CWE-noinfo
|
CVE-2024-46826
|
2024-11-21 02:19 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
