5.5

CVSS3.1

CVE-2024-57545 -

Linksys E8450 v1.2.00.360516 was discovered to contain a buffer overflow vulnerability. The parsed field (hidden_dhcp_num) is copied to the stack without length verification.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:11 p.m.

4.2

CVSS3.1

CVE-2024-56997 -

PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /doctor/index.php via the 'Email' parameter.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 9, 2025, 6:34 p.m.

5.5

CVSS3.1

CVE-2024-57935 - RDMA/hns: Fix accessing invalid dip_ctx during destroying QP

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix accessing invalid dip_ctx during destroying QP If it fails to modify QP to RTR, dip_ctx will not be attached. And during detroying QP, the invalid dip_ctx pointer will be accessed.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Oct. 15, 2025, 1:51 p.m.

7.5

CVSS3.1

CVE-2024-24422 -

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a stack overflow in the decode_protocol_configuration_options function at /3gpp/3gpp_24.008_sm_ies.c. This vulnerability allows attackers to cause a Denial of Service (DoS) …

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: March 19, 2025, 2:15 p.m.

9.1

CVSS3.1

CVE-2024-55959 -

Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: March 18, 2025, 3:15 p.m.

6.3

CVSS3.1

CVE-2024-57537 -

Linksys E8450 v1.2.00.360516 was discovered to contain a buffer overflow vulnerability. The parsed field (page) is copied to the stack without length verification.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:11 p.m.

5.5

CVSS3.1

CVE-2025-21659 - netdev: prevent accessing NAPI instances from another namespace

In the Linux kernel, the following vulnerability has been resolved: netdev: prevent accessing NAPI instances from another namespace The NAPI IDs were not fully exposed to user space prior to the netlink API, so they were never namespaced. The netlink API must ensure that at the very least NAPI in…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Oct. 15, 2025, 1:47 p.m.

6.5

CVSS3.1

CVE-2023-37038 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `Uplink NAS Transport` packet missing an expected `MME_UE_S1AP_ID` field.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: March 13, 2025, 8:15 p.m.

6.5

CVSS3.1

CVE-2024-57540 -

Linksys E8450 v1.2.00.360516 was discovered to contain a buffer overflow vulnerability. The parsed field (action) is copied to the stack without length verification.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:11 p.m.

5.5

CVSS3.1

CVE-2024-57939 - riscv: Fix sleeping in invalid context in die()

In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die() die() can be called in exception handler, and therefore cannot sleep. However, die() takes spinlock_t which can sleep with PREEMPT_RT enabled. That causes the following warning: BU…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 9:18 p.m.
Total resulsts: 342692
Page 6389 of 34,270
Β« previous page Β» next page
Filters