5.5

CVSS3.1

CVE-2024-26812 - vfio/pci: Create persistent INTx handler

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Create persistent INTx handler A vulnerability exists where the eventfd for INTx signaling can be deconfigured, which unregisters the IRQ handler but still allows eventfds to be signaled with a NULL context through the โ€ฆ

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:57 a.m.

0.0

CVE-2024-31576 -

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2024, 4:15 p.m.

8.8

CVSS3.1

CVE-2023-52235 -

SpaceX Starlink Wi-Fi router GEN 2 before 2023.53.0 and Starlink Dish before 07dd2798-ff15-4722-a9ee-de28928aed34 allow CSRF (e.g., for a reboot) via a DNS Rebinding attack.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.8

CVSS3.1

CVE-2023-49965 -

SpaceX Starlink Wi-Fi router Gen 2 before 2023.48.0 allows XSS via the ssid and password parameters on the Setup Page.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-30977 -

An issue in Secnet Security Network Intelligent AC Management System v.1.02.040 allows a local attacker to escalate privileges via the password component.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.2

CVSS3.1

CVE-2024-26329 -

Chilkat before v9.5.0.98, allows attackers to obtain sensitive information via predictable PRNG in ChilkatRand::randomBytes function.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.7

CVSS3.1

CVE-2024-2312 - grub2: grub-efi crashes upon `exit`

GRUB2 does not call the module fini functions on exit, leading to Debian/Ubuntu's peimage GRUB2 module leaving UEFI system table hooks after exit. This lead to a use-after-free condition, and could possibly lead to secure boot bypass.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: Aug. 26, 2025, 5:17 p.m.

5.5

CVSS3.1

CVE-2024-31745 - libdwarf: use after free in dw_empty_errlist_item in dwarf_alloc.c

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-2002. Reason: This candidate is a duplicate of CVE-2024-2002. Notes: All CVE users should reference CVE-2024-2002 instead of this candidate.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 25, 2024, 4:15 p.m.

9.1

CVSS3.1

CVE-2024-27448 -

MailDev 2 through 2.1.0 allows Remote Code Execution via a crafted Content-ID header for an e-mail attachment, leading to lib/mailserver.js writing arbitrary code into the routes.js file.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.8

CVSS3.1

CVE-2024-29672 -

Directory Traversal vulnerability in zly2006 Reden before v.0.2.514 allows a remote attacker to execute arbitrary code via the DEBUG_RTC_REQUEST_SYNC_DATA in KeyCallbacks.kt.

๐Ÿ“… Published: April 5, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 10428 of 34,919
ยซ previous page ยป next page
Filters