|
309781
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: dax: fix overflowing extents beyond inode size when partially writing
The dax_iomap_rw() does two things in each iteration:…
|
NVD-CWE-noinfo
|
CVE-2024-50015
|
2024-10-29 02:13 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309782
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix access to uninitialised lock in fc replay path
The following kernel trace can be triggered with fstest generic/629 when…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-50014
|
2024-10-29 02:12 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309783
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/hdcp: Check GSC structure validity
Sometimes xe_gsc is not initialized when checked at HDCP capability
check. Add gsc stru…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-49990
|
2024-10-29 01:42 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309784
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: add refcnt to ksmbd_conn struct
When sending an oplock break request, opinfo->conn is used,
But freed ->conn can be used o…
|
CWE-416
Use After Free
|
CVE-2024-49988
|
2024-10-29 01:38 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309785
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpftool: Fix undefined behavior in qsort(NULL, 0, ...)
When netfilter has no entry to display, qsort is called with
qsort(NULL, 0…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49987
|
2024-10-29 01:23 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309786
|
8.8 |
HIGH
Network
|
tenda
|
ac8_firmware
|
A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the …
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-10130
|
2024-10-29 01:08 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309787
|
8.8 |
HIGH
Network
|
tenda
|
ac8_firmware
|
A vulnerability was found in Tenda AC8 16.03.34.06. It has been declared as critical. Affected by this vulnerability is the function compare_parentcontrol_time of the file /goform/saveParentControlIn…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-10123
|
2024-10-29 01:06 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309788
|
9.8 |
CRITICAL
Network
|
clothes_recommendation_system_project
|
clothes_recommendation_system
|
A vulnerability was found in SourceCodeHero Clothes Recommendation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/index.php of the component …
|
CWE-89
SQL Injection
|
CVE-2024-10336
|
2024-10-29 01:01 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309789
|
9.8 |
CRITICAL
Network
|
sadat
|
garbage_collection_management_system
|
A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation…
|
CWE-89
SQL Injection
|
CVE-2024-10335
|
2024-10-29 00:58 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309790
|
6.1 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in HTTP 400 Bad Request. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46995
|
2024-10-29 00:33 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
