|
317751
|
- |
|
-
|
-
|
In onCreate of SettingsHomepageActivity.java, there is a possible way to access the Settings app while the device is provisioning due to a missing permission check. This could lead to local escalatio…
|
-
|
CVE-2024-40652
|
2024-09-11 09:15 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317752
|
- |
|
-
|
-
|
An issue was discovered in Matrix libolm through 3.2.16. There is Ed25519 signature malleability due to lack of validation criteria (does not ensure that S < n). This refers to the libolm implementat…
|
-
|
CVE-2024-45193
|
2024-09-11 04:35 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317753
|
- |
|
-
|
-
|
An issue was discovered in Matrix libolm through 3.2.16. Cache-timing attacks can occur due to use of base64 when decoding group session keys. This refers to the libolm implementation of Olm. NOTE: T…
|
-
|
CVE-2024-45192
|
2024-09-11 04:35 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317754
|
- |
|
-
|
-
|
An issue was discovered in Matrix libolm through 3.2.16. The AES implementation is vulnerable to cache-timing attacks due to use of S-boxes. This is related to software that uses a lookup table for t…
|
-
|
CVE-2024-45191
|
2024-09-11 04:35 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317755
|
6.1 |
MEDIUM
Network
|
online_food_ordering_system_project
|
online_food_ordering_system
|
A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. This affects an unknown part of the file index.php of the component Create an Account Page.…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8604
|
2024-09-11 04:14 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317756
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Complete command early within lock
A crash was observed while performing NPIV and FW reset,
BUG: kernel NULL poi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42287
|
2024-09-11 04:05 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317757
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: validate nvme_local_port correctly
The driver load failed with error message,
qla2xxx [0000:04:00.0]-ffff:0: regi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42286
|
2024-09-11 04:02 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317758
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en
In sprd_iommu_cleanup() before calling function sprd_iommu_hw_en()
dom->sdev is…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42277
|
2024-09-11 03:46 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317759
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mISDN: Fix a use after free in hfcmulti_tx()
Don't dereference *sp after calling dev_kfree_skb(*sp).
|
CWE-416
Use After Free
|
CVE-2024-42280
|
2024-09-11 03:43 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317760
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: fsl: fsl_qmc_audio: Check devm_kasprintf() returned value
devm_kasprintf() can return a NULL pointer on failure but this re…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42298
|
2024-09-11 03:42 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
