Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.7

    MEDIUM
    CVE-2024-33039

    Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.... Read more

    • Published: Dec. 02, 2024
    • Modified: Dec. 11, 2024

  • 6.1

    MEDIUM
    CVE-2024-33037

    Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.... Read more

    • Published: Dec. 02, 2024
    • Modified: Dec. 11, 2024

  • 6.7

    MEDIUM
    CVE-2024-33036

    Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.... Read more

    • Published: Dec. 02, 2024
    • Modified: Dec. 11, 2024

  • 8.4

    HIGH
    CVE-2024-10490

    An “Authentication Bypass Using an Alternate Path or Channel” vulnerability in the OPC UA Server configuration required for B&R mapp Cockpit before 6.0, B&R mapp View before 6.0, B&R mapp Services before 6.0, B&R mapp Motion before 6.0 and B&R mapp Vision... Read more

    Affected Products :
    • Published: Dec. 02, 2024
    • Modified: Dec. 02, 2024

  • 7.8

    HIGH
    CVE-2024-53104

    In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format This can lead to out of bounds writes since frames of this type were not taken into account when calcul... Read more

    Affected Products : linux_kernel
    • Actively Exploited
    • Published: Dec. 02, 2024
    • Modified: Feb. 06, 2025

  • 7.8

    HIGH
    CVE-2024-53103

    In the Linux kernel, the following vulnerability has been resolved: hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer When hvs is released, there is a possibility that vsk->trans may not be initialized to NULL, which could lead to a... Read more

    Affected Products : linux_kernel
    • Published: Dec. 02, 2024
    • Modified: Jan. 07, 2025

  • 6.5

    MEDIUM
    CVE-2024-20139

    In Bluetooth firmware, there is a possible firmware asssert due to improper handling of exceptional conditions. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Pat... Read more

    Affected Products :
    • Published: Dec. 02, 2024
    • Modified: Dec. 02, 2024

  • 7.5

    HIGH
    CVE-2024-20138

    In wlan driver, there is a possible out of bound read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS0899829... Read more

    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 7.5

    HIGH
    CVE-2024-20137

    In wlan driver, there is a possible client disconnection due to improper handling of exceptional conditions. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch... Read more

    Affected Products :
    • Published: Dec. 02, 2024
    • Modified: Dec. 02, 2024

  • 6.2

    MEDIUM
    CVE-2024-20136

    In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09121847; Issue ID:... Read more

    Affected Products : android openwrt rdk-b mt6781 mt6789 mt6855 mt6878 mt6879 mt6880 mt6886 +22 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 6.7

    MEDIUM
    CVE-2024-20135

    In soundtrigger, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09142526; Issu... Read more

    Affected Products : android mt6781 mt6833 mt6853 mt6877 mt6878 mt6893 mt6897 mt6989 mt6768 +3 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 6.7

    MEDIUM
    CVE-2024-20134

    In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09154589; Issue ID: MSV... Read more

    Affected Products : android mt6835 mt6878 mt6879 mt6895 mt6896 mt6897 mt6985 mt6989 mt6983 +4 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 6.7

    MEDIUM
    CVE-2024-20133

    In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issu... Read more

    Affected Products : nr16 mt6879 mt6886 mt6895 mt6895t mt6896 mt6980 mt6983 mt8673 mt8798 +2 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 6.7

    MEDIUM
    CVE-2024-20132

    In Modem, there is a possible out of bonds write due to a mission bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00957388; Issue... Read more

    Affected Products : nr16 mt6879 mt6886 mt6895 mt6895t mt6896 mt6980 mt6980d mt6985 mt6989 +8 more products
    • Published: Dec. 02, 2024
    • Modified: Jun. 25, 2025

  • 6.7

    MEDIUM
    CVE-2024-20131

    In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issu... Read more

    Affected Products : nr16 nr17 mt6789 mt6813 mt6835 mt6855 mt6878 mt6879 mt6886 mt6895 +23 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 6.7

    MEDIUM
    CVE-2024-20130

    In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09193374; Issue ID: M... Read more

    Affected Products : android mt6781 mt6789 mt6833 mt6835 mt6853 mt6855 mt6877 mt6878 mt6879 +20 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 7.5

    HIGH
    CVE-2024-20129

    In Telephony, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09289881; Issue ... Read more

    Affected Products : android mt6779 mt6781 mt6785 mt6789 mt6833 mt6835 mt6853 mt6855 mt6873 +37 more products
    • Published: Dec. 02, 2024
    • Modified: Mar. 13, 2025

  • 7.5

    HIGH
    CVE-2024-20128

    In Telephony, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09289881; Issue ... Read more

    Affected Products : android mt6779 mt6781 mt6785 mt6789 mt6833 mt6835 mt6853 mt6855 mt6873 +37 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 7.5

    HIGH
    CVE-2024-20127

    In Telephony, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09289881; Issue ... Read more

    Affected Products : android mt6779 mt6781 mt6785 mt6789 mt6833 mt6835 mt6853 mt6855 mt6873 +37 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025

  • 6.7

    MEDIUM
    CVE-2024-20125

    In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained System privileges. User interaction is not needed for exploitation. Patch ID: ALPS09... Read more

    Affected Products : android mt6779 mt6781 mt6785 mt6789 mt6833 mt6835 mt6853 mt6855 mt6873 +35 more products
    • Published: Dec. 02, 2024
    • Modified: Apr. 22, 2025
Showing 20 of 291531 Results