Latest CVE Feed
-
5.3
MEDIUMCVE-2024-43350
Authorization Bypass Through User-Controlled Key vulnerability in Propovoice Propovoice CRM.This issue affects Propovoice CRM: from n/a through 1.7.6.4.... Read more
Affected Products :- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
6.5
MEDIUMCVE-2024-43305
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Code Amp Custom Layouts – Post + Product grids made easy allows Stored XSS.This issue affects Custom Layouts – Post + Product grids made easy: fro... Read more
Affected Products :- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-43832
In the Linux kernel, the following vulnerability has been resolved: s390/uv: Don't call folio_wait_writeback() without a folio reference folio_wait_writeback() requires that no spinlocks are held and that a folio reference is held, as documented. After ... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-43816
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Revise lpfc_prep_embed_io routine with proper endian macro usages On big endian architectures, it is possible to run into a memory out of bounds pointer dereference when FCP... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-42317
In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: avoid PMD-size page cache if needed xarray can't support arbitrary page cache size. the largest and supported page cache size is defined as MAX_PAGECACHE_ORDER by commi... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
5.3
MEDIUMCVE-2024-35686
Missing Authorization vulnerability in Automattic Sensei LMS, Automattic Sensei Pro (WC Paid Courses).This issue affects Sensei LMS: from n/a through 4.23.1; Sensei Pro (WC Paid Courses): from n/a through 4.23.1.1.23.1.... Read more
Affected Products : sensei_lms- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
5.9
MEDIUMCVE-2024-39666
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Automattic WooCommerce.This issue affects WooCommerce: from n/a through 9.1.2.... Read more
Affected Products : woocommerce- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-43830
In the Linux kernel, the following vulnerability has been resolved: leds: trigger: Unregister sysfs attributes before calling deactivate() Triggers which have trigger specific sysfs attributes typically store related data in trigger-data allocated by th... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-42299
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Update log->page_{mask,bits} if log->page_size changed If an NTFS file system is mounted to another system with different PAGE_SIZE from the original system, log->page_size wi... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-43820
In the Linux kernel, the following vulnerability has been resolved: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume rm-raid devices will occasionally trigger the following warning when being resumed after a table load because DM_RECOVERY_... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-42260
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Validate passed in drm syncobj handles in the performance extension If userspace provides an unknown or invalid handle anywhere in the handle array the rest of the driver will ... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
6.9
MEDIUMCVE-2024-7709
A vulnerability, which was classified as problematic, has been found in OcoMon 4.0RC1/4.0/5.0RC1. This issue affects some unknown processing of the file /includes/common/require_access_recovery.php of the component URL Handler. The manipulation leads to c... Read more
Affected Products : ocomon- Published: Aug. 13, 2024
- Modified: Aug. 17, 2024
-
7.8
HIGHCVE-2024-43373
webcrack is a tool for reverse engineering javascript. An arbitrary file write vulnerability exists in the webcrack module when processing specifically crafted malicious code on Windows systems. This vulnerability is triggered when using the unpack bundle... Read more
- Published: Aug. 15, 2024
- Modified: Aug. 16, 2024
-
7.0
HIGHCVE-2022-23817
Insufficient checking of memory buffer in ASP Secure OS may allow an attacker with a malicious TA to read/write to the ASP Secure OS kernel virtual address space, potentially leading to privilege escalation.... Read more
Affected Products :- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
6.8
MEDIUMCVE-2024-38161
Windows Mobile Broadband Driver Remote Code Execution Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
9.1
CRITICAL- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
9.1
CRITICAL- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
8.8
HIGHCVE-2024-38154
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
7.5
HIGHCVE-2024-38148
Windows Secure Channel Denial of Service Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
7.8
HIGHCVE-2024-38147
Microsoft DWM Core Library Elevation of Privilege Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024