Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.7

    MEDIUM
    CVE-2024-23370

    Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.... Read more

    • Published: Oct. 07, 2024
    • Modified: Oct. 16, 2024

  • 7.8

    HIGH
    CVE-2024-23369

    Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.... Read more

    • Published: Oct. 07, 2024
    • Modified: Aug. 11, 2025

  • 7.8

    HIGH
    CVE-2024-21455

    Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.... Read more

    • Published: Oct. 07, 2024
    • Modified: Aug. 11, 2025

  • 5.3

    MEDIUM
    CVE-2024-47344

    Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StylemixThemes uListing.This issue affects uListing: from n/a through 2.1.5.... Read more

    Affected Products :
    • Published: Oct. 07, 2024
    • Modified: Oct. 07, 2024

  • 7.6

    HIGH
    CVE-2024-47335

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bit Form Bit Form – Contact Form Plugin allows SQL Injection.This issue affects Bit Form – Contact Form Plugin: from n/a through 2.13.11.... Read more

    Affected Products :
    • Published: Oct. 07, 2024
    • Modified: Oct. 07, 2024

  • 9.8

    CRITICAL
    CVE-2024-20103

    In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; I... Read more

    Affected Products : android mt6985 mt6989 mt6990 mt8183 mt8678 mt8796 mt8695 mt3605 mt7927 +4 more products
    • Published: Oct. 07, 2024
    • Modified: Apr. 24, 2025

  • 4.9

    MEDIUM
    CVE-2024-20102

    In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998892; Iss... Read more

    • Published: Oct. 07, 2024
    • Modified: Mar. 13, 2025

  • 9.8

    CRITICAL
    CVE-2024-20101

    In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998901; Iss... Read more

    Affected Products : android mt6985 mt6989 mt6990 mt8183 mt8676 mt8678 mt8755 mt8775 mt8792 +7 more products
    • Published: Oct. 07, 2024
    • Modified: Apr. 24, 2025

  • 9.8

    CRITICAL
    CVE-2024-20100

    In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Iss... Read more

    Affected Products : android iot_yocto mt6985 mt6989 mt6990 mt8183 mt8676 mt8678 mt8755 mt8775 +9 more products
    • Published: Oct. 07, 2024
    • Modified: Apr. 25, 2025

  • 6.7

    MEDIUM
    CVE-2024-20099

    In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08997492; Issue ID: M... Read more

    • Published: Oct. 07, 2024
    • Modified: Apr. 25, 2025

  • 6.7

    MEDIUM
    CVE-2024-20098

    In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996886; Issue ID: M... Read more

    Affected Products : android yocto mt6779 mt6781 mt6785 mt6833 mt6853 mt6873 mt6877 mt6885 +10 more products
    • Published: Oct. 07, 2024
    • Modified: Apr. 25, 2025

  • 4.4

    MEDIUM
    CVE-2024-20097

    In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-... Read more

    Affected Products : android mt6785 mt6789 mt6853 mt6873 mt6885 mt8675 mt6761 mt6765 mt6768 +4 more products
    • Published: Oct. 07, 2024
    • Modified: Oct. 27, 2024

  • 4.4

    MEDIUM
    CVE-2024-20096

    In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996900; Issue ID: MSV-1... Read more

    Affected Products : android mt6779 mt6781 mt6785 mt6789 mt6833 mt6853 mt6855 mt6873 mt6877 +17 more products
    • Published: Oct. 07, 2024
    • Modified: Oct. 27, 2024

  • 4.4

    MEDIUM
    CVE-2024-20095

    In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996894; Issue ID: MSV-1... Read more

    Affected Products : android mt6779 mt6781 mt6785 mt6789 mt6833 mt6853 mt6855 mt6873 mt6877 +17 more products
    • Published: Oct. 07, 2024
    • Modified: Oct. 27, 2024

  • 7.5

    HIGH
    CVE-2024-20094

    In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00843282; Issue ID: MSV-15... Read more

    Affected Products : nr15 mt2735 mt6833 mt6853 mt6855 mt6873 mt6875 mt6877 mt6880 mt6883 +11 more products
    • Published: Oct. 07, 2024
    • Modified: Apr. 25, 2025

  • 4.4

    MEDIUM
    CVE-2024-20093

    In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-... Read more

    Affected Products : android mt6779 mt6785 mt6853 mt6873 mt6885 mt6761 mt6765 mt6768 mt8667 +7 more products
    • Published: Oct. 07, 2024
    • Modified: Oct. 27, 2024

  • 7.8

    HIGH
    CVE-2024-20092

    In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MS... Read more

    Affected Products : android mt6779 mt6785 mt6853 mt6873 mt6885 mt6761 mt6765 mt6768 mt8667 +7 more products
    • Published: Oct. 07, 2024
    • Modified: Apr. 25, 2025

  • 4.4

    MEDIUM
    CVE-2024-20091

    In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-... Read more

    Affected Products : android mt6779 mt6785 mt6853 mt6873 mt6885 mt6761 mt6765 mt6768 mt8667 +7 more products
    • Published: Oct. 07, 2024
    • Modified: Oct. 27, 2024

  • 6.7

    MEDIUM
    CVE-2024-20090

    In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MS... Read more

    Affected Products : android mt6779 mt6785 mt6853 mt6873 mt6885 mt6761 mt6765 mt6768 mt8667 +7 more products
    • Published: Oct. 07, 2024
    • Modified: Apr. 25, 2025

  • 9.0

    HIGH
    CVE-2024-9565

    A vulnerability has been found in D-Link DIR-605L 2.13B01 BETA and classified as critical. Affected by this vulnerability is the function formSetPassword of the file /goform/formSetPassword. The manipulation of the argument curTime leads to buffer overflo... Read more

    Affected Products : dir-605l_firmware dir-605l
    • Published: Oct. 07, 2024
    • Modified: Oct. 08, 2024
Showing 20 of 294848 Results