|
312651
|
7.5 |
HIGH
Network
|
microfocus
|
netiq_access_manager
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in OpenText NetIQ Access Manager allows access the sensitive information. This issue affects NetIQ Access …
|
CWE-22
Path Traversal
|
CVE-2024-4556
|
2024-09-13 00:09 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312652
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix potential NULL dereference
Fix potential NULL dereference, in the case when "man", the resource manager
might be …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-52908
|
2024-09-12 23:54 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312653
|
7.8 |
HIGH
Local
|
beckhoff
|
ipc_diagnostics_package
twincat\/bsd
|
The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local authentication bypass by a low privileged attacker.
|
NVD-CWE-Other
|
CVE-2024-41173
|
2024-09-12 23:52 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312654
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfsd: fix handling of cached open files in nfsd4_open codepath
Commit fb70bf124b05 ("NFSD: Instantiate a struct file when creatin…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-52909
|
2024-09-12 23:52 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312655
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/msm: another fix for the headless Adreno GPU
Fix another oops reproducible when rebooting the board with the Adreno
GPU worki…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-52911
|
2024-09-12 23:49 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312656
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iommu/iova: Fix alloc iova overflows issue
In __alloc_and_insert_iova_range, there is an issue that retry_pfn
overflows. The valu…
|
NVD-CWE-noinfo
|
CVE-2023-52910
|
2024-09-12 23:47 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312657
|
6.3 |
MEDIUM
Local
|
sap
|
netweaver_abap
netweaver_java
content_server
web_dispatcher
|
Due to the missing authorization checks in the
local systems, the admin users of SAP Web Dispatcher, SAP NetWeaver Application
Server (ABAP and Java), and SAP Content Server can impersonate other use…
|
CWE-862
Missing Authorization
|
CVE-2024-33005
|
2024-09-12 23:39 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312658
|
- |
|
-
|
-
|
In wifi_item_edit_content of styles.xml , there is a possible FRP bypass due to Missing check for FRP state. This could lead to local escalation of privilege with no additional execution privileges n…
|
-
|
CVE-2024-40650
|
2024-09-12 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312659
|
- |
|
-
|
-
|
In DevmemIntPFNotify of devicemem_server.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution pri…
|
-
|
CVE-2024-23716
|
2024-09-12 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312660
|
- |
|
-
|
-
|
An attacker with authenticated access to VICIdial as an "agent" can execute arbitrary shell commands as the "root" user. This attack can be chained with CVE-2024-8503 to execute arbitrary shell comma…
|
-
|
CVE-2024-8504
|
2024-09-12 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
