Aggregator

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Wearables and Snapdragon Wired Infrastructure and Networking. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Beacon Frame Handler. The manipulation leads to buffer over-read. This vulnerability is known as CVE-2024-33049. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Qualcomm Snapdragon Auto and Snapdragon Mobile. It has been classified as critical. Affected is an unknown function of the component fastrpc map. The manipulation leads to double free. This vulnerability is traded as CVE-2024-23379. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Qualcomm Snapdragon Auto on MSM and classified as critical. This issue affects some unknown processing of the component MSM Module. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2024-23378. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Qualcomm Snapdragon Auto and Snapdragon Wearables and classified as critical. This vulnerability affects unknown code of the component Network Scan Request Handler. The manipulation leads to buffer overflow. This vulnerability was named CVE-2024-23375. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Qualcomm Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Wearables. This affects an unknown part of the component Haptics Effects Pattern Handler. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2024-23374. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Qualcomm Snapdragon Auto, Snapdragon Industrial IOT and Snapdragon Wearables. Affected by this issue is some unknown functionality of the component HAB Virtual Channel Handler. The manipulation leads to use after free. This vulnerability is handled as CVE-2024-23370. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile and Snapdragon Technology. Affected by this vulnerability is an unknown functionality of the component Response Buffer Handler. The manipulation leads to memory corruption. This vulnerability is known as CVE-2024-23369. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Qualcomm Snapdragon Auto, Snapdragon Compute and Snapdragon Industrial IOT. Affected is an unknown function of the component IOCTL Call Handler. The manipulation leads to untrusted pointer dereference. This vulnerability is traded as CVE-2024-21455. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Qualcomm Snapdragon Auto MDM9628/QCA6564A/QCA6564AU/QCA6574A/QCA6574AU. It has been rated as critical. This issue affects some unknown processing of the component Beacon Handler. The manipulation leads to buffer over-read. The identification of this vulnerability is CVE-2024-33064. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Qualcomm Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile and Snapdragon Wearables. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to use after free. This vulnerability was named CVE-2024-23376. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

U.S. CISA adds Synacor Zimbra Collaboration flaw to its Known Exploited Vulnerabilities catalog

美国科学家 Victor Ambros 和 Gary Ruvkun 获得 2024 年诺贝尔生理学或医学奖，以表彰他们“发现 microRNA 及其在转录后基因调控中的作用”。染色体储存了细胞的使用手册，我们的每一个细胞都包含相同的染色体，因此包含完全相同的基因组和指令集。但不同的细胞类型有着不同的特性。这一切是如何发生的？答案是基因调控。Victor Ambros 和 Gary Ruvkun 发现了在基因调控中起关键作用的微小 RNA 分子 microRNA，揭示了一种全新的基因调控原理，它对人类在内的多细胞生物至关重要。人类基因组已知编码了超过千个 microRNA。microRNA 对生物体的发育和功能至关重要。

A vulnerability has been found in Softpedia LiveAlbum 0.9.0 and classified as critical. This vulnerability affects unknown code of the file common.php. The manipulation of the argument livealbum_dir leads to code injection. This vulnerability was named CVE-2007-5315. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Softbizscripts Softbiz Jobs and Recruitment Script and classified as critical. This issue affects some unknown processing of the file browsecats.php. The manipulation of the argument cid leads to sql injection. The identification of this vulnerability is CVE-2007-5316. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Quoc-Huy MP3 Allopass 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file allopass.php. The manipulation of the argument mosConfig_live_site leads to code injection. This vulnerability is known as CVE-2007-5412. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in LightBlog 8.4.1.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file cp_memberedit.php. The manipulation leads to improper authentication. This vulnerability is known as CVE-2007-5374. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Microsoft Visual FoxPro 6.0. This issue affects the function FoxDoCmd of the file fpole.ocx of the component ActiveX Control. The manipulation leads to os command injection. The identification of this vulnerability is CVE-2007-5322. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in PHP Homepage M 1.0. It has been classified as critical. This affects an unknown part of the file galerie.php. The manipulation of the argument id leads to sql injection. This vulnerability is uniquely identified as CVE-2007-5308. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in TorrentTrader 1.07. Affected by this vulnerability is an unknown functionality of the file pjirc/css.php. The manipulation of the argument cat leads to cross site scripting. This vulnerability is known as CVE-2007-5312. The attack can be launched remotely. Furthermore, there is an exploit available.