All CVEs — 2024 (Page 307/307)

Browse all CVEs by publication year. Use filters to refine.

CVSS ≥ 0.0

2024-01-02

Medium

CVE-2023-51652

OWASP AntiSamy .NET is a library for performing cleansing of HTML coming from untrusted sources. Prior to version 1.2.0, there is a potential for a mutation cross-site scripting (mXSS) vulnerability…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2023-50711

vmm-sys-util is a collection of modules that provides helpers and utilities used by multiple rust-vmm components. Starting in version 0.5.0 and prior to version 0.12.0, an issue in the `FamStructWrap…

CVSS: 5.7 CWE: CWE-787

Medium

CVE-2023-49794

KernelSU is a Kernel-based root solution for Android devices. In versions 0.7.1 and prior, the logic of get apk path in KernelSU kernel module can be bypassed, which causes any malicious apk named `m…

CVSS: 6.7 CWE: CWE-290

Low

CVE-2024-0190

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0 and classified as problematic. This issue affects some unknown processing of the file add_quiz.php of the component Quiz Handle…

CVSS: 3.5 CWE: CWE-79

Medium

CVE-2023-7192

A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This issue may allow a local attacker with CAP_NET_ADMIN privileges to cause…

CVSS: 5.5 CWE: CWE-401

Critical

CVE-2023-48419

An attacker in the wifi vicinity of a target Google Home can spy on the victim, resulting in Elevation of Privilege

CVSS: 10.0 CWE: CWE-269

High

CVE-2022-3010

The Priva TopControl Suite contains predictable credentials for the SSH service, based on the Serial number. Which makes it possible for an attacker to calculate the login credentials for the Priva T…

CVSS: 7.5 CWE: CWE-1391

High

CVE-2024-0193

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This…

CVSS: 7.8 CWE: CWE-416

Low

CVE-2024-0189

A vulnerability has been found in RRJ Nueva Ecija Engineer Online Portal 1.0 and classified as problematic. This vulnerability affects unknown code of the file teacher_message.php of the component Cr…

CVSS: 3.5 CWE: CWE-79

Critical

CVE-2023-4280

An unvalidated input in Silicon Labs TrustZone implementation in v4.3.x and earlier of the Gecko SDK allows an attacker to access the trusted region of memory from the untrusted region.

CVSS: 9.3 CWE: CWE-125

Low

CVE-2018-25097

A vulnerability, which was classified as problematic, was found in Acumos Design Studio up to 2.0.7. Affected is an unknown function. The manipulation leads to cross site scripting. It is possible to…

CVSS: 3.5 CWE: CWE-79

Low

CVE-2024-0188

A vulnerability, which was classified as problematic, was found in RRJ Nueva Ecija Engineer Online Portal 1.0. This affects an unknown part of the file change_password_teacher.php. The manipulation l…

CVSS: 3.1 CWE: CWE-521

Low

CVE-2017-20188

A vulnerability has been found in Zimbra zm-ajax up to 8.8.1 and classified as problematic. Affected by this vulnerability is the function XFormItem.prototype.setError of the file WebRoot/js/ajax/dwt…

CVSS: 2.6 CWE: CWE-79

Low

CVE-2015-10128

A vulnerability was found in rt-prettyphoto Plugin up to 1.2 on WordPress and classified as problematic. Affected by this issue is the function royal_prettyphoto_plugin_links of the file rt-prettypho…

CVSS: 3.5 CWE: CWE-79

Critical

CVE-2023-6436

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ekol Informatics Website Template allows SQL Injection.This issue affects Website Template: throu…

CVSS: 9.8 CWE: CWE-89

Medium

CVE-2023-6693

A stack based buffer overflow was found in the virtio-net device of QEMU. This issue occurs when flushing TX in the virtio_net_flush_tx function if guest features VIRTIO_NET_F_HASH_REPORT, VIRTIO_F_V…

CVSS: 4.9 CWE: CWE-121

Low

CVE-2023-50333

Mattermost fails to update the permissions of the current session for a user who was just demoted to guest, allowing freshly demoted guests to change group names.

CVSS: 3.7 CWE: CWE-284

Medium

CVE-2023-48732

Mattermost fails to scope the WebSocket response around notified users to a each user separately resulting in the WebSocket broadcasting the information about who was notified about a post to everyon…

CVSS: 4.3 CWE: CWE-200

Medium

CVE-2023-47858

Mattermost fails to properly verify the permissions needed for viewing archived public channels, allowing a member of one team to get details about the archived public channels of another team via t…

CVSS: 4.3 CWE: CWE-284

Medium

CVE-2023-49142

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia audio crash through modify a released pointer.

CVSS: 4.0 CWE: CWE-416

Medium

CVE-2023-49135

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer.

CVSS: 4.0 CWE: CWE-416

Medium

CVE-2023-48360

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer.

CVSS: 4.0 CWE: CWE-416

Medium

CVE-2023-47857

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia camera crash through modify a released pointer.

CVSS: 4.0 CWE: CWE-416

Low

CVE-2023-47216

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through occupy all resources

CVSS: 2.9 CWE: CWE-772

High

CVE-2023-47039

A vulnerability was found in Perl. This security issue occurs while Perl for Windows relies on the system path environment variable to find the shell (`cmd.exe`). When running an executable that uses…

CVSS: 7.8 CWE: CWE-122

High

CVE-2023-43514

Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.

CVSS: 8.4 CWE: CWE-416

High

CVE-2023-43512

Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer.

CVSS: 7.5 CWE: CWE-126

High

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.

CVSS: 7.5 CWE: CWE-835

High

CVE-2023-33120

Memory corruption in Audio when memory map command is executed consecutively in ADSP.

CVSS: 7.8 CWE: CWE-416

High

CVE-2023-33118

Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL.

CVSS: 7.8 CWE: CWE-416

High

CVE-2023-33117

Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.

CVSS: 7.8 CWE: CWE-416

High

CVE-2023-33116

Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

CVSS: 7.5 CWE: CWE-126

High

CVE-2023-33114

Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.

CVSS: 8.4 CWE: CWE-416

High

CVE-2023-33113

Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.

CVSS: 8.4 CWE: CWE-120

High

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

CVSS: 7.5 CWE: CWE-126

High

CVE-2023-33110

The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event cal…

CVSS: 7.8 CWE: CWE-823

High

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

CVSS: 7.5 CWE: CWE-476

High

CVE-2023-33108

Memory corruption in Graphics Driver when destroying a context with KGSL_GPU_AUX_COMMAND_TIMELINE objects queued.

CVSS: 8.4 CWE: CWE-416

High

CVE-2023-33094

Memory corruption while running VK synchronization with KASAN enabled.

CVSS: 8.4 CWE: CWE-416

High

CVE-2023-33085

Memory corruption in wearables while processing data from AON.

CVSS: 7.8 CWE: CWE-120

High

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

CVSS: 7.5 CWE: CWE-126

High

CVE-2023-33040

Transient DOS in Data Modem during DTLS handshake.

CVSS: 7.5 CWE: CWE-126

Medium

CVE-2023-33038

Memory corruption while receiving a message in Bus Socket Transport Server.

CVSS: 6.7 CWE: CWE-190

High

CVE-2023-33036

Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.

CVSS: 7.1 CWE: CWE-476

High

CVE-2023-33033

Memory corruption in Audio during playback with speaker protection.

CVSS: 8.4 CWE: CWE-823

Critical

CVE-2023-33032

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

CVSS: 9.3 CWE: CWE-190

Critical

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

CVSS: 9.3 CWE: CWE-120

Critical

CVE-2023-33025

Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.

CVSS: 9.8 CWE: CWE-120

High

CVE-2023-33014

Information disclosure in Core services while processing a Diag command.

CVSS: 7.6 CWE: CWE-20

Medium

CVE-2023-28583

Memory corruption when IPv6 prefix timer object`s lifetime expires which are created while Netmgr daemon gets an IPv6 address.

CVSS: 6.7 CWE: CWE-415

High

CVE-2023-26159

Versions of the package follow-redirects before 1.15.4 are vulnerable to Improper Input Validation due to the improper handling of URLs by the url.parse() function. When new URL() throws an error, it…

CVSS: 7.3 CWE: CWE-20

Medium

CVE-2023-26157

Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c.

CVSS: 5.5 CWE: CWE-400

Medium

CVE-2023-32891

In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interact…

CVSS: 6.7 CWE: CWE-787

High

CVE-2023-32890

In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not ne…

CVSS: 7.5 CWE: CWE-20

High

CVE-2023-32889

In Modem IMS Call UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interacti…

CVSS: 7.5 CWE: CWE-787

High

CVE-2023-32888

CVSS: 7.5 CWE: CWE-787

High

CVE-2023-32887

In Modem IMS Stack, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not…

CVSS: 7.5 CWE: CWE-119

High

CVE-2023-32886

In Modem IMS SMS UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interactio…

CVSS: 7.5 CWE: CWE-787

Medium

CVE-2023-32885

In display drm, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not…

CVSS: 6.7 CWE: CWE-119

Medium

CVE-2023-32884

In netdagent, there is a possible information disclosure due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction i…

CVSS: 6.7 CWE: CWE-119

Medium

CVE-2023-32883

In Engineer Mode, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is…

CVSS: 6.7 CWE: CWE-787

Medium

CVE-2023-32882

In battery, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need…

CVSS: 6.7 CWE: CWE-787

Medium

CVE-2023-32881

In battery, there is a possible information disclosure due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not nee…

CVSS: 4.4 CWE: CWE-190

Medium

CVE-2023-32880

In battery, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not…

CVSS: 4.4 CWE: CWE-125

Medium

CVE-2023-32879

In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not ne…

CVSS: 6.7 CWE: CWE-787

Medium

CVE-2023-32878

CVSS: 4.4 CWE: CWE-125

Medium

CVE-2023-32877

CVSS: 6.7 CWE: CWE-787

Medium

CVE-2023-32876

In keyInstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is n…

CVSS: 4.4 CWE: CWE-125

Medium

CVE-2023-32875

CVSS: 4.4 CWE: CWE-125

Critical

CVE-2023-32874

In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is…

CVSS: 9.8 CWE: CWE-787

Medium

CVE-2023-32872

In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not…

CVSS: 6.7 CWE: CWE-787

Medium

CVE-2023-32831

In wlan driver, there is a possible PIN crack due to use of insufficiently random values. This could lead to local information disclosure with no execution privileges needed. User interaction is not…

CVSS: 5.5 CWE: CWE-330

Low

CVE-2024-0186

A vulnerability classified as problematic has been found in HuiRan Host Reseller System up to 2.0.0. Affected is an unknown function of the file /user/index/findpass?do=4 of the component HTTP POST R…

CVSS: 3.7 CWE: CWE-640

Medium

CVE-2024-0185

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been rated as critical. This issue affects some unknown processing of the file dasboard_teacher.php of the component Av…

CVSS: 4.7 CWE: CWE-434

Low

CVE-2024-0184

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/edit_teacher.php of the compon…

CVSS: 2.4 CWE: CWE-79

2024-01-01

Low

CVE-2024-0183

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/students.php of the component NIA Offic…

CVSS: 2.4 CWE: CWE-80

High

CVE-2024-0182

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/ of the component Admin Log…

CVSS: 7.3 CWE: CWE-89

High

CVE-2023-50096

STMicroelectronics STSAFE-A1xx middleware before 3.3.7 allows MCU code execution if an adversary has the ability to read from and write to the I2C bus. This is caused by an StSafeA_ReceiveBytes buffe…

CVSS: 7.5 CWE: CWE-120

High

CVE-2023-50094

reNgine before 2.1.2 allows OS Command Injection if an adversary has a valid session ID. The attack places shell metacharacters in an api/tools/waf_detector/?url= string. The commands are executed as…

CVSS: 8.8 CWE: CWE-78

Low

CVE-2024-0181

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/admin_user.…

CVSS: 2.4 CWE: CWE-79

Medium

CVE-2023-6485

The Html5 Video Player WordPress plugin before 2.5.19 does not sanitise and escape some of its player settings, which combined with missing capability checks around the plugin could allow any authent…

CVSS: 5.4 CWE: CWE-79

High

CVE-2023-6421

The Download Manager WordPress plugin before 3.2.83 does not protect file download's passwords, leaking it upon receiving an invalid one.

CVSS: 7.5 CWE: CWE-522

High

CVE-2023-6064

The PayHere Payment Gateway WordPress plugin before 2.2.12 automatically creates publicly-accessible log files containing sensitive information when transactions occur.

CVSS: 7.5 CWE: CWE-532

Medium

CVE-2023-6037

The WP TripAdvisor Review Slider WordPress plugin before 11.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scri…

CVSS: 4.8 CWE: CWE-79

Medium

CVE-2023-6000

The Popup Builder WordPress plugin before 4.2.3 does not prevent simple visitors from updating existing popups, and injecting raw JavaScript in them, which could lead to Stored XSS attacks.

CVSS: 6.1 CWE: CWE-79

Critical

CVE-2023-5877

The affiliate-toolkit WordPress plugin before 3.4.3 lacks authorization and authentication for requests to it's affiliate-toolkit-starter/tools/atkp_imagereceiver.php endpoint, allowing unauthenticat…

CVSS: 9.8 CWE: CWE-862

Medium

CVE-2024-21732

FlyCms through abbaa5a allows XSS via the permission management feature.

CVSS: 6.1 CWE: CWE-79