6.7

CVSS3.1

CVE-2023-25493 -

A potential vulnerability was reported in the BIOS update tool driver for some Desktop, Smart Edge, Smart Office, and ThinkStation products that could allow a local user with elevated privileges to execute arbitrary code.

πŸ“… Published: April 5, 2024, 8:46 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.7

CVSS3.1

CVE-2023-5912 -

A potential memory leakage vulnerability was reported in some Lenovo Notebook products that may allow a local attacker with elevated privileges to write to NVRAM variables.

πŸ“… Published: April 5, 2024, 8:45 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.5

CVSS3.1

CVE-2023-4605 -

A valid authenticated Lenovo XClarity Administrator (LXCA) user can potentially leverage an unauthenticated API endpoint to retrieve system event information.

πŸ“… Published: April 5, 2024, 8:44 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.3

CVSS3.1

CVE-2024-3355 - SourceCodester Aplaya Beach Resort Online Reservation System sql injection

A vulnerability was found in SourceCodester Aplaya Beach Resort Online Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin/mod_users/controller.php?action=add. The manipulation of the argument name leads to sql injec…

πŸ“… Published: April 5, 2024, 8:31 p.m. πŸ”„ Last Modified: Feb. 11, 2025, 2:49 p.m.

6.7

CVSS3.1

CVE-2024-29783 -

In tmu_get_tr_thresholds, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: April 5, 2024, 8:02 p.m. πŸ”„ Last Modified: June 17, 2025, 8:48 p.m.

5.5

CVSS3.1

CVE-2024-29782 -

In tmu_get_tr_num_thresholds of tmu.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: April 5, 2024, 8:02 p.m. πŸ”„ Last Modified: June 17, 2025, 8:48 p.m.

7.3

CVSS3.1

CVE-2024-29757 -

there is a possible permission bypass due to Debug certs being allowlisted. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: April 5, 2024, 8:02 p.m. πŸ”„ Last Modified: June 17, 2025, 8:48 p.m.

9.8

CVSS3.1

CVE-2024-29756 -

In afe_callback of q6afe.c, there is a possible out of bounds write due to a buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: April 5, 2024, 8:02 p.m. πŸ”„ Last Modified: June 17, 2025, 8:48 p.m.

4.4

CVSS3.1

CVE-2024-29755 -

In tmu_get_pi of tmu.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: April 5, 2024, 8:02 p.m. πŸ”„ Last Modified: June 17, 2025, 8:48 p.m.

6.2

CVSS3.1

CVE-2024-29754 -

In TMU_IPC_GET_TABLE, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: April 5, 2024, 8:02 p.m. πŸ”„ Last Modified: June 17, 2025, 8:48 p.m.
Total resulsts: 349182
Page 10419 of 34,919
Β« previous page Β» next page
Filters