8.6

CVSS3.1

CVE-2024-25187 -

Server Side Request Forgery (SSRF) vulnerability in 71cms v1.0.0, allows remote unauthenticated attackers to obtain sensitive information via getweather.html.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: June 10, 2025, 12:46 a.m.

9.8

CVSS3.1

CVE-2024-30620 -

Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName parameter in the function fromAdvSetMacMtuWan.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: March 25, 2025, 3:15 p.m.

2.9

CVSS3.1

CVE-2024-3247 - Stack overflow in Xpdf 4.05 due to object loop in PDF object stream

In Xpdf 4.05 (and earlier), a PDF object loop in an object stream leads to infinite recursion and a stack overflow.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: Jan. 29, 2025, 4:19 p.m.

8.8

CVSS3.1

CVE-2024-31004 -

An issue in Bento4 Bento v.1.6.0-641 allows a remote attacker to execute arbitrary code via the Ap4StsdAtom.cpp,AP4_StsdAtom::AP4_StsdAtom,mp4fragment.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: March 27, 2025, 5:15 p.m.

7.5

CVSS3.1

CVE-2024-30809 -

An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There is a heap-use-after-free in Ap4Sample.h in AP4_Sample::GetOffset() const, leading to a Denial of Service (DoS), as demonstrated by mp42ts.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: May 27, 2025, 2 p.m.

2.9

CVSS3.1

CVE-2024-3248 - Stack overflow in Xpdf 4.05 due to object loop in attachments

In Xpdf 4.05 (and earlier), a PDF object loop in the attachments leads to infinite recursion and a stack overflow.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: Jan. 29, 2025, 4:18 p.m.

7.5

CVSS3.1

CVE-2024-30807 -

An issue was discovered in Bento4 v1.6.0-641-2-g1529b83. There is a heap-use-after-free in AP4_UnknownAtom::~AP4_UnknownAtom at Ap4Atom.cpp, leading to a Denial of Service (DoS), as demonstrated by mp42ts.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: May 27, 2025, 1:55 p.m.

7.1

CVSS3.1

CVE-2024-26664 - hwmon: (coretemp) Fix out-of-bounds memory access

In the Linux kernel, the following vulnerability has been resolved: hwmon: (coretemp) Fix out-of-bounds memory access Fix a bug that pdata->cpu_map[] is set before out-of-bounds check. The problem might be triggered on systems with more than 128 cores per package.

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 12:54 p.m.

6.4

CVSS3.1

CVE-2024-29834 - Apache Pulsar: Improper Authorization For Namespace and Topic Management Endpoints

This vulnerability allows authenticated users with produce or consume permissions to perform unauthorized operations on partitioned topics, such as unloading topics and triggering compaction. These management operations should be restricted to users with the tenant admin role or superuser role. An …

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: Feb. 13, 2025, 5:47 p.m.

5.5

CVSS3.1

CVE-2024-26670 - arm64: entry: fix ARM64_WORKAROUND_SPECULATIVE_UNPRIV_LOAD

In the Linux kernel, the following vulnerability has been resolved: arm64: entry: fix ARM64_WORKAROUND_SPECULATIVE_UNPRIV_LOAD Currently the ARM64_WORKAROUND_SPECULATIVE_UNPRIV_LOAD workaround isn't quite right, as it is supposed to be applied after the last explicit memory access, but is immedia…

πŸ“… Published: April 2, 2024, midnight πŸ”„ Last Modified: Oct. 1, 2025, 6:15 p.m.
Total resulsts: 349182
Page 10479 of 34,919
Β« previous page Β» next page
Filters