4.3

CVSS3.1

CVE-2025-22828 - Apache CloudStack: Unauthorised access to annotations

CloudStack users can add and read comments (annotations) on resources they are authorised to access.Β  Due to an access validation issue that affects Apache CloudStack versions from 4.16.0, users who have access, prior access or knowledge of resource UUIDs can list and add comments (annotations) to…

πŸ“… Published: Jan. 13, 2025, 12:47 p.m. πŸ”„ Last Modified: July 1, 2025, 7:20 p.m.

6.5

CVSS3.1

CVE-2024-11734 - Org.keycloak:keycloak-quarkus-server: denial of service in keycloak server via security headers

A denial of service vulnerability was found in Keycloak that could allow an administrative user with the right to change realm settings to disrupt the service. This action is done by modifying any of the security headers and inserting newlines, which causes the Keycloak server to write to a request…

πŸ“… Published: Jan. 13, 2025, 12:22 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-52938 - GPU DDK - rgxfw_pm_add_freelist_for_reconstruction OOB write

Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to subvert reconstruction activities to trigger a write of data outside the Guest's virtualised GPU memory.

πŸ“… Published: Jan. 13, 2025, 11:50 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.7

CVSS3.1

CVE-2024-52937 - GPU DDK - rgxfw_kernel_CMD_DISABLE_ZSSTORE OOB write via ui32WriteOffsetOfDisableZSStore

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory.

πŸ“… Published: Jan. 13, 2025, 10:37 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.4

CVSS3.1

CVE-2024-52936 - GPU DDK - rgxfw_hwperf_config OOB read & write

Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to write data outside the Guest's virtualised GPU memory.

πŸ“… Published: Jan. 13, 2025, 10:35 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.1

CVSS3.1

CVE-2024-52935 - GPU DDK - psContext->eDM gives OOB write

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory.

πŸ“… Published: Jan. 13, 2025, 10:33 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.1

CVSS3.1

CVE-2024-47895 - GPU DDK - OOB read into fwlog due to unchecked block count

Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory.

πŸ“… Published: Jan. 13, 2025, 10:31 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.1

CVSS3.1

CVE-2024-47894 - GPU DDK - Out of bounds read into fwlog due to unchecked loop bounds

Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory.

πŸ“… Published: Jan. 13, 2025, 10:30 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.8

CVSS3.1

CVE-2024-47897 - GPU DDK - PVRSRVRGXGetEnabledHWPerfBlocksKM off-by-one OOB write

Software installed and run as a non-privileged user may conduct improper GPU system calls resulting in platform instability and reboots.

πŸ“… Published: Jan. 13, 2025, 10:28 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.8

CVSS3.1

CVE-2024-12568 - Email Subscribers < 5.7.45 - Admin+ Stored XSS

The Email Subscribers by Icegram Express WordPress plugin before 5.7.45 does not sanitise and escape some of its Workflow settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for exampl…

πŸ“… Published: Jan. 13, 2025, 6 a.m. πŸ”„ Last Modified: May 8, 2025, 7:38 p.m.
Total resulsts: 347732
Page 7024 of 34,774
Β« previous page Β» next page
Filters