Aggregator

A vulnerability has been found in Tiki up to 27.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Create a Wiki Pages. The manipulation of the argument description leads to cross site scripting. This vulnerability is known as CVE-2024-51506. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Tiki up to 27.0. Affected is an unknown function of the file tiki-admin_modules.php of the component Module Handler. The manipulation of the argument Name leads to cross site scripting. This vulnerability is traded as CVE-2024-51509. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in ZTE MF258 Pro ZTE_MF258PRO_STD_V1.0.0B03. This issue affects some unknown processing of the component Ping Diagnosis Interface. The manipulation leads to os command injection. The identification of this vulnerability is CVE-2024-22065. Access to the local network is required for this attack. There is no exploit available.

A vulnerability classified as very critical was found in IBM Flexible Service Processor up to FW860.B3/FW950.C0/FW1030.61/FW1050.21/FW1060.10. This vulnerability affects unknown code of the component FSP. The manipulation leads to hard-coded credentials. This vulnerability was named CVE-2024-45656. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Ronin是Ronin是一款免费的开源Ruby工具包，旨在用于安全研究和开发。

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.113/6.6.57/6.11.4. This affects the function session_lock of the component ksmbd. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2024-50086. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.227/5.15.168/6.1.113/6.6.57/6.11.4. It has been rated as critical. Affected by this issue is the function rq_qos_wake_function of the component blk-rq-qos. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2024-50082. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.57/6.11.4. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component ublk. The manipulation leads to buffer overflow. This vulnerability is known as CVE-2024-50080. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.11.4. It has been classified as problematic. Affected is the function io_uring_cancel_generic. The manipulation leads to state issue. This vulnerability is traded as CVE-2024-50079. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.113/6.6.57/6.11.4 and classified as problematic. This issue affects the function iso_exit of the component Bluetooth. The manipulation leads to Privilege Escalation. The identification of this vulnerability is CVE-2024-50078. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.113/6.6.57/6.11.4 and classified as problematic. This vulnerability affects the function iso_init of the component Bluetooth. The manipulation leads to information disclosure. This vulnerability was named CVE-2024-50077. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.6.57/6.11.4. This affects the function con_font_get. The manipulation leads to improper initialization. This vulnerability is uniquely identified as CVE-2024-50076. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.11.4. Affected by this issue is the function ma35_pinctrl_dt_node_to_map_func of the component pinctrl. The manipulation leads to double free. This vulnerability is handled as CVE-2024-50071. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.6.57/6.11.4. Affected by this vulnerability is the function devm_kasprintf of the component pinctrl. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-50070. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.11.4. Affected is the function damon_sysfs_test_add_targets in the library mm/damon/tests/sysfs-kunit.h. The manipulation leads to memory leak. This vulnerability is traded as CVE-2024-50068. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.113/6.6.57/6.11.4. It has been rated as problematic. This issue affects the function add_inode_ref of the component btrfs. The manipulation leads to uninitialized pointer. The identification of this vulnerability is CVE-2024-50088. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.113/6.6.57/6.11.4. It has been declared as problematic. This vulnerability affects the function read_alloc_one_name of the component btrfs. The manipulation of the argument name leads to uninitialized pointer. This vulnerability was named CVE-2024-50087. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.57/6.11.4. It has been classified as problematic. This affects an unknown part of the component xhci. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2024-50075. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.227/5.15.168/6.1.113/6.6.57/6.11.4 and classified as problematic. Affected by this issue is the function sprintf of the component parport. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2024-50074. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.10.227/5.15.168/6.1.113/6.6.57/6.11.4 and classified as critical. Affected by this vulnerability is an unknown functionality of the file net/mptcp/protocol.c of the component request_sock_subflow_v4. The manipulation leads to denial of service. This vulnerability is known as CVE-2024-50083. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.