6.3

CVSS3.1

CVE-2024-32282 -

Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: April 9, 2025, 2:20 p.m.

8.8

CVSS3.1

CVE-2024-32281 -

Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand function via the cmdinput parameter.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: March 17, 2025, 2:35 p.m.

7.8

CVSS3.1

CVE-2024-31582 -

FFmpeg version n6.1 was discovered to contain a heap buffer overflow vulnerability in the draw_block_rectangle function of libavfilter/vf_codecview.c. This vulnerability allows attackers to cause undefined behavior or a Denial of Service (DoS) via crafted input.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: Nov. 4, 2025, 6:16 p.m.

6

CVSS3.1

CVE-2024-26894 - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()

In the Linux kernel, the following vulnerability has been resolved: ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() After unregistering the CPU idle device, the memory associated with it is not freed, leading to a memory leak: unreferenced object 0xffff896282f6c000 (size 102…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:59 a.m.

2.9

CVSS3.1

CVE-2024-3900 - Out-of-bounds stack array write in Xpdf 4.05 due to missing zero check

Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by long Unicode sequence in ActualText.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: Jan. 29, 2025, 4:16 p.m.

5.5

CVSS3.1

CVE-2024-26820 - hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed

In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed If hv_netvsc driver is unloaded and reloaded, the NET_DEVICE_REGISTER handler cannot perform VF register successfully as the register call is received before ne…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:57 a.m.

5.5

CVSS3.1

CVE-2024-26844 - block: Fix WARNING in _copy_from_iter

In the Linux kernel, the following vulnerability has been resolved: block: Fix WARNING in _copy_from_iter Syzkaller reports a warning in _copy_from_iter because an iov_iter is supposedly used in the wrong direction. The reason is that syzcaller managed to generate a request with a transfer direct…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: Jan. 5, 2026, 10:34 a.m.

6.1

CVSS3.1

CVE-2024-32342 -

A cross-site scripting (XSS) vulnerability in the Create Page of Boid CMS v2.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Permalink parameter.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 5, 2025, 5:41 p.m.

8.1

CVSS3.1

CVE-2024-31452 - OpenFGA Authorization Bypass

OpenFGA is a high-performance and flexible authorization/permission engine. Some end users of OpenFGA v1.5.0 or later are vulnerable to authorization bypass when calling Check or ListObjects APIs. You are very likely affected if your model involves exclusion (e.g. `a but not b`) or intersection (e.…

πŸ“… Published: April 16, 2024, 9:40 p.m. πŸ”„ Last Modified: Jan. 5, 2026, 4:20 p.m.

3.9

CVSS3.1

CVE-2024-27086 - MSAL.NET applications targeting Xamarin Android and .NET Android (MAUI) susceptible to local denial…

The MSAL library enabled acquisition of security tokens to call protected APIs. MSAL.NET applications targeting Xamarin Android and .NET Android (e.g., MAUI) using the library from versions 4.48.0 to 4.60.0 are impacted by a low severity vulnerability. A malicious application running on a custom…

πŸ“… Published: April 16, 2024, 9:34 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 10255 of 34,919
Β« previous page Β» next page
Filters