|
309091
|
8.8 |
HIGH
Adjacent
|
alpsalpine
|
ilx-f509_firmware
|
Alpine Halo9 prh_l2_sar_data_ind Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine…
|
CWE-416
Use After Free
|
CVE-2024-23923
|
2024-10-4 03:07 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309092
|
6.8 |
MEDIUM
Physics
|
alpsalpine
|
ilx-f509_firmware
|
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations…
|
CWE-78
OS Command
|
CVE-2024-23961
|
2024-10-4 03:06 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309093
|
4.6 |
MEDIUM
Physics
|
alpsalpine
|
ilx-f509_firmware
|
Alpine Halo9 Improper Verification of Cryptographic Signature Vulnerability. This vulnerability allows physically present attackers to bypass signature validation mechanism on affected installations …
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2024-23960
|
2024-10-4 03:06 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309094
|
6.8 |
MEDIUM
Physics
|
alpsalpine
|
ilx-f509_firmware
|
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installatio…
|
CWE-78
OS Command
|
CVE-2024-23924
|
2024-10-4 03:06 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309095
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tick/broadcast: Move per CPU pointer access into the atomic section
The recent fix for making the take over of the broadcast time…
|
NVD-CWE-noinfo
|
CVE-2024-44968
|
2024-10-4 03:04 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309096
|
7.4 |
HIGH
Adjacent
|
cisco
|
ios_xr
|
A vulnerability in the handling of specific Ethernet frames by Cisco IOS XR Software for various Cisco Network Convergence System (NCS) platforms could allow an unauthenticated, adjacent attacker to …
|
NVD-CWE-noinfo
|
CVE-2024-20317
|
2024-10-4 02:58 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309097
|
5.4 |
MEDIUM
Network
|
cisco
|
catalyst_sd-wan_manager
|
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a cross-site scripting …
|
CWE-79
Cross-site Scripting
|
CVE-2024-20475
|
2024-10-4 02:49 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309098
|
8.0 |
HIGH
Adjacent
|
autel
|
maxicharger_ac_elite_business_c50_firmware
|
Autel MaxiCharger AC Elite Business C50 BLE AppChargingControl Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitra…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23959
|
2024-10-4 02:42 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309099
|
8.8 |
HIGH
Adjacent
|
autel
|
maxicharger_ac_elite_business_c50_firmware
|
Autel MaxiCharger AC Elite Business C50 BLE Hardcoded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected instal…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-23958
|
2024-10-4 02:42 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309100
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
s390/sclp: Prevent release of buffer in I/O
When a task waiting for completion of a Store Data operation is
interrupted, an attem…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-44969
|
2024-10-4 02:38 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
