|
309101
|
8.0 |
HIGH
Adjacent
|
autel
|
maxicharger_ac_elite_business_c50_firmware
|
Autel MaxiCharger AC Elite Business C50 WebSocket Base64 Decoding Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbi…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23967
|
2024-10-4 02:37 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309102
|
8.8 |
HIGH
Adjacent
|
autel
|
maxicharger_ac_elite_business_c50_firmware
|
Autel MaxiCharger AC Elite Business C50 DLB_HostHeartBeat Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary co…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23957
|
2024-10-4 02:37 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309103
|
4.3 |
MEDIUM
Network
|
hasthemes
|
ht_mega
|
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.5 via the render function in includes/widget…
|
NVD-CWE-noinfo
|
CVE-2024-8910
|
2024-10-4 02:34 |
2024-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309104
|
8.8 |
HIGH
Adjacent
|
silabs
|
gecko_os
|
Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected insta…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23938
|
2024-10-4 02:29 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309105
|
5.3 |
MEDIUM
Network
|
wpfactory
|
eu\/uk_vat_manager_for_woocommerce
|
The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the alg_wc_eu_vat_exempt_vat_from_admin() function i…
|
CWE-862
Missing Authorization
|
CVE-2024-9189
|
2024-10-4 02:26 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309106
|
6.1 |
MEDIUM
Network
|
wpfactory
|
eu\/uk_vat_manager_for_woocommerce
|
The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up t…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8788
|
2024-10-4 02:25 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309107
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: do not clear page dirty inside extent_write_locked_range()
[BUG]
For subpage + zoned case, the following workload can lead…
|
NVD-CWE-noinfo
|
CVE-2024-44972
|
2024-10-4 01:10 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309108
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
usbnet: ipheth: do not stop RX on failing RX callback
RX callbacks can fail for multiple reasons:
* Payload too short
* Payload …
|
NVD-CWE-noinfo
|
CVE-2024-46861
|
2024-10-4 00:36 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309109
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: Intel: soc-acpi-intel-mtl-match: add missing empty item
There is no links_num in struct snd_soc_acpi_mach {}, and we test
!…
|
NVD-CWE-noinfo
|
CVE-2024-46862
|
2024-10-4 00:34 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309110
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: Intel: soc-acpi-intel-lnl-match: add missing empty item
There is no links_num in struct snd_soc_acpi_mach {}, and we test
!…
|
NVD-CWE-noinfo
|
CVE-2024-46863
|
2024-10-4 00:32 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
