|
313271
|
4.6 |
MEDIUM
Physics
|
samsung
|
pass
|
Improper authentication in Private Info in Samsung Pass in prior to version 4.4.04.7 allows physical attackers to access sensitive information in a specific scenario.
|
NVD-CWE-noinfo
|
CVE-2024-49405
|
2024-11-13 09:54 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313272
|
4.6 |
MEDIUM
Physics
|
samsung
|
flow
|
Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to access data across multiple user profiles.
|
NVD-CWE-noinfo
|
CVE-2024-49407
|
2024-11-13 09:53 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313273
|
6.7 |
MEDIUM
Local
|
samsung
|
galaxy_s24_firmware
|
Out-of-bounds write in Battery Full Capacity node prior to Firmware update Sep-2024 Release on Galaxy S24 allows local attackers to write out-of-bounds memory. System privilege is required for trigge…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-49409
|
2024-11-13 09:51 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313274
|
6.7 |
MEDIUM
Local
|
samsung
|
galaxy_s24_firmware
|
Out-of-bounds write in usb driver prior to Firmware update Sep-2024 Release on Galaxy S24 allows local attackers to write out-of-bounds memory. System privilege is required for triggering this vulner…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-49408
|
2024-11-13 09:51 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313275
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: prevent nf_skb_duplicated corruption
syzbot found that nf_dup_ipv4() or nf_dup_ipv6() could write
per-cpu v…
|
NVD-CWE-noinfo
|
CVE-2024-49952
|
2024-11-13 09:46 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313276
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
sfc: Don't invoke xdp_do_flush() from netpoll.
Yury reported a crash in the sfc driver originated from
netpoll_send_udp(). The ne…
|
NVD-CWE-noinfo
|
CVE-2024-50094
|
2024-11-13 09:42 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313277
|
3.3 |
LOW
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: netconsole: fix wrong warning
A warning is triggered when there is insufficient space in the buffer
for userdata. However, t…
|
NVD-CWE-noinfo
|
CVE-2024-50092
|
2024-11-13 09:40 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313278
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
dm vdo: don't refer to dedupe_context after releasing it
Clear the dedupe_context pointer in a data_vio whenever ownership of
the…
|
NVD-CWE-noinfo
|
CVE-2024-50091
|
2024-11-13 06:44 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313279
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/oa: Fix overflow in oa batch buffer
By default xe_bb_create_job() appends a MI_BATCH_BUFFER_END to batch
buffer, this is n…
|
NVD-CWE-noinfo
|
CVE-2024-50090
|
2024-11-13 06:41 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313280
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ppp: do not assume bh is held in ppp_channel_bridge_input()
Networking receive path is usually handled from BH handler.
However, …
|
NVD-CWE-noinfo
|
CVE-2024-49946
|
2024-11-13 06:37 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
