5.9

CVSS3.1

CVE-2024-28065 -

In Unify CP IP Phone firmware 1.10.4.3, files are not encrypted and contain sensitive information such as the root password hash.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.9

CVSS3.1

CVE-2024-31852 - llvm: LR register can be overwritten without data being saved to the stack on ARM

LLVM before 18.1.3 generates code in which the LR register can be overwritten without data being saved to the stack, and thus there can sometimes be an exploitable error in the flow of control. This affects the ARM backend and can be demonstrated with Clang. NOTE: the vendor perspective is "we don'โ€ฆ

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-22363 -

SheetJS Community Edition before 0.20.2 is vulnerable.to Regular Expression Denial of Service (ReDoS).

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2024-27437 - vfio/pci: Disable auto-enable of exclusive INTx IRQ

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Disable auto-enable of exclusive INTx IRQ Currently for devices requiring masking at the irqchip for INTx, ie. devices without DisINTx support, the IRQ is enabled in request_irq() and subsequently disabled as necessary โ€ฆ

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 9:05 a.m.

7.8

CVSS3.1

CVE-2024-29863 -

A race condition in the installer executable in Qlik Qlikview before versions May 2022 SR3 (12.70.20300) and May 2023 SR2 (12,80.20200) may allow an existing lower privileged user to cause code to be executed in the context of a Windows Administrator.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.1

CVSS3.1

CVE-2024-25743 - hw: amd: Instruction raise #VC exception at exit

In the Linux kernel through 6.9, an untrusted hypervisor can inject virtual interrupts 0 and 14 at any point in time and can trigger the SIGFPE signal handler in userspace applications. This affects AMD SEV-SNP and AMD SEV-ES.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.5

CVSS3.1

CVE-2024-25742 - hw: amd: Instruction raise #VC exception at exit

In the Linux kernel before 6.9, an untrusted hypervisor can inject virtual interrupt 29 (#VC) at any point in time and can trigger its handler. This affects AMD SEV-SNP and AMD SEV-ES.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2024-26814 - vfio/fsl-mc: Block calling interrupt handler without trigger

In the Linux kernel, the following vulnerability has been resolved: vfio/fsl-mc: Block calling interrupt handler without trigger The eventfd_ctx trigger pointer of the vfio_fsl_mc_irq object is initially NULL and may become NULL if the user sets the trigger eventfd to -1. The interrupt handler iโ€ฆ

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:57 a.m.

5.5

CVSS3.1

CVE-2024-26813 - vfio/platform: Create persistent IRQ handlers

In the Linux kernel, the following vulnerability has been resolved: vfio/platform: Create persistent IRQ handlers The vfio-platform SET_IRQS ioctl currently allows loopback triggering of an interrupt before a signaling eventfd has been configured by the user, which thereby allows a NULL pointer dโ€ฆ

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:57 a.m.

8.8

CVSS3.1

CVE-2024-30891 -

A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which allows attackers to construct cmdinput parameters for arbitrary command execution.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 10, 2025, 2:25 p.m.
Total resulsts: 349182
Page 10427 of 34,919
ยซ previous page ยป next page
Filters