|
307981
|
- |
|
-
|
-
|
A specially crafted filename containing a large number of spaces could obscure the file's extension when displayed in the download dialog.
*This bug only affects Firefox for Android. Other versions o…
|
-
|
CVE-2024-9395
|
2024-11-9 17:35 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307982
|
- |
|
-
|
-
|
An authorized RCE vulnerability exists in the DrayTek Vigor2960 router version 1.4.4, where an attacker can place a malicious command into the table parameter of the doPPPoE function in the cgi-bin/m…
|
-
|
CVE-2024-48074
|
2024-11-9 07:15 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307983
|
7.8 |
HIGH
Local
|
microsoft
|
visual_studio_code
|
Visual Studio Code for Linux Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43601
|
2024-11-9 07:15 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307984
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
md/raid10: fix null ptr dereference in raid10_size()
In raid10_run() if raid10_set_queue_limits() succeed, the return value
is se…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50109
|
2024-11-9 06:30 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307985
|
6.5 |
MEDIUM
Network
|
eclipse
|
jetty
|
Jetty PushSessionCacheFilter can be exploited by unauthenticated users
to launch remote DoS attacks by exhausting the server’s memory.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-6762
|
2024-11-9 06:29 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307986
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too
Stuart Hayhurst has found that both at bootup and fullscreen VA-API vide…
|
NVD-CWE-noinfo
|
CVE-2024-50108
|
2024-11-9 06:28 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307987
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
platform/x86/intel/pmc: Fix pmc_core_iounmap to call iounmap for valid addresses
Commit 50c6dbdfd16e ("x86/ioremap: Improve iounm…
|
NVD-CWE-noinfo
|
CVE-2024-50107
|
2024-11-9 06:27 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307988
|
7.2 |
HIGH
Network
|
netgear
|
ex3700_firmware
|
Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operating_mode.cgi via the ap_mode parameter with ap_24g_manual set to 1 a…
|
CWE-77
Command Injection
|
CVE-2024-35522
|
2024-11-9 06:25 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307989
|
7.2 |
HIGH
Network
|
netgear
|
xr1000_firmware
|
Netgear XR1000 v1.0.0.64 is vulnerable to command injection in usb_remote_smb_conf.cgi via the share_name parameter.
|
CWE-77
Command Injection
|
CVE-2024-35517
|
2024-11-9 06:24 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307990
|
7.5 |
HIGH
Network
|
everestthemes
|
everest_backup
|
The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.13 via …
|
CWE-922
Insecure Storage of Sensitive Information
|
CVE-2024-10028
|
2024-11-9 06:21 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
