|
307351
|
- |
|
-
|
-
|
miniupnp before 4c90b87, as used in Bitcoin Core before 0.12 and other products, lacks checks for snprintf return values, leading to a buffer overflow and significant data leak, a different vulnerabi…
|
-
|
CVE-2015-20111
|
2024-11-18 13:15 |
2024-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307352
|
- |
|
-
|
-
|
A vulnerability, which was classified as critical, has been found in Altenergy Power Control Software up to 20241108. This issue affects some unknown processing of the file /index.php/display/databas…
|
CWE-285
CWE-266
Improper Authorization
Incorrect Privilege Assignment
|
CVE-2024-11306
|
2024-11-18 11:15 |
2024-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307353
|
- |
|
-
|
-
|
A vulnerability classified as critical was found in Altenergy Power Control Software up to 20241108. This vulnerability affects the function get_status_zigbee of the file /index.php/display/status_zi…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2024-11305
|
2024-11-18 10:15 |
2024-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307354
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fs/ntfs3: Fix general protection fault in run_is_mapped_full
Fixed deleating of a non-resident attribute in ntfs_create_inode()
r…
|
NVD-CWE-noinfo
|
CVE-2024-50243
|
2024-11-18 00:15 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307355
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: do not delay dst_entries_add() in dst_release()
dst_entries_add() uses per-cpu data that might be freed at netns
dismantle f…
|
NVD-CWE-noinfo
|
CVE-2024-50036
|
2024-11-18 00:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307356
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer
Pass pointer reference to amdgpu_bo_unref to clear the correct pointer,…
|
CWE-416
Use After Free
|
CVE-2024-49991
|
2024-11-18 00:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307357
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors
x86_android_tablet_remove() frees the …
|
CWE-416
Use After Free
|
CVE-2024-49986
|
2024-11-18 00:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307358
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
uprobe: avoid out-of-bounds memory access of fetching args
Uprobe needs to fetch args into a percpu buffer, and then copy to ring…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-50067
|
2024-11-18 00:15 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307359
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix timer use-after-free on failed mount
Syzbot has found an ODEBUG bug in ext4_fill_super
The del_timer_sync function can…
|
CWE-416
Use After Free
|
CVE-2024-49960
|
2024-11-18 00:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307360
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: L2CAP: Fix uaf in l2cap_connect
[Syzbot reported]
BUG: KASAN: slab-use-after-free in l2cap_connect.constprop.0+0x10d8/…
|
CWE-416
Use After Free
|
CVE-2024-49950
|
2024-11-18 00:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
