9.8

CVSS3.1

CVE-2024-31012 -

An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the upload.php file.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: April 4, 2025, 3:50 p.m.

6.1

CVSS3.1

CVE-2024-24506 -

Cross Site Scripting (XSS) vulnerability in Lime Survey Community Edition Version v.5.3.32+220817, allows remote attackers to execute arbitrary code via the Administrator email address parameter in the General Setting function.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Jan. 30, 2026, 9:02 p.m.

4.7

CVSS3.1

CVE-2023-52639 - KVM: s390: vsie: fix race during shadow creation

In the Linux kernel, the following vulnerability has been resolved: KVM: s390: vsie: fix race during shadow creation Right now it is possible to see gmap->private being zero in kvm_s390_vsie_gmap_notifier resulting in a crash. This is due to the fact that we add gmap->private == kvm after creati…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 7:40 a.m.

5.5

CVSS3.1

CVE-2024-26719 - nouveau: offload fence uevents work to workqueue

In the Linux kernel, the following vulnerability has been resolved: nouveau: offload fence uevents work to workqueue This should break the deadlock between the fctx lock and the irq lock. This offloads the processing off the work from the irq into a workqueue.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Jan. 5, 2026, 10:34 a.m.

5.5

CVSS3.1

CVE-2024-26700 - drm/amd/display: Fix MST Null Ptr for RV

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix MST Null Ptr for RV The change try to fix below error specific to RV platform: BUG: kernel NULL pointer dereference, address: 0000000000000008 PGD 0 P4D 0 Oops: 0000 [#1] PREEMPT SMP NOPTI CPU: 4 PID: 917 Co…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: July 11, 2025, 5:19 p.m.

7.5

CVSS3.1

CVE-2024-27983 - nodejs: CONTINUATION frames DoS

An attacker can make the Node.js HTTP/2 server completely unavailable by sending a small amount of HTTP/2 frames packets with a few HTTP/2 frames inside. It is possible to leave some data in nghttp2 memory after reset when headers with HTTP/2 CONTINUATION frame are sent to the server and then a TCP…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.1

CVSS3.1

CVE-2024-27982 - nodejs: HTTP Request Smuggling via Content Length Obfuscation

The team has identified a critical vulnerability in the http server of the most recent version of Node, where malformed headers can lead to HTTP request smuggling. Specifically, if a space is placed before a content-length header, it is not interpreted correctly, enabling attackers to smuggle in a …

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-26694 - wifi: iwlwifi: fix double-free bug

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix double-free bug The storage for the TLV PC register data wasn't done like all the other storage in the drv->fw area, which is cleared at the end of deallocation. Therefore, the freeing must also be done differe…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:54 a.m.

5.5

CVSS3.1

CVE-2024-26776 - spi: hisi-sfc-v3xx: Return IRQ_NONE if no interrupts were detected

In the Linux kernel, the following vulnerability has been resolved: spi: hisi-sfc-v3xx: Return IRQ_NONE if no interrupts were detected Return IRQ_NONE from the interrupt handler when no interrupt was detected. Because an empty interrupt will cause a null pointer error: Unable to handle kerne…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 21, 2025, 9:12 a.m.

5.5

CVSS3.1

CVE-2024-26770 - HID: nvidia-shield: Add missing null pointer checks to LED initialization

In the Linux kernel, the following vulnerability has been resolved: HID: nvidia-shield: Add missing null pointer checks to LED initialization devm_kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the poi…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:56 a.m.
Total resulsts: 349182
Page 10457 of 34,919
Β« previous page Β» next page
Filters