ROOT-APP-PYPI-CVE-2024-30251 CVE-2024-30251 in rootio-aiohttp - Patched by Root

Root has patched CVE-2024-30251 in the rootio-aiohttp package for Root:PyPI. Multiple fixed versions available...

CVE-2024-2865

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Mergen Software Quality Management System allows SQL Injection. This issue affects Quality Management System: through 25032024...

Siemens SIMATIC Devices Improper Check for Unusual or Exceptional Conditions (CVE-2024-44948)

In the Linux kernel, the following vulnerability has been resolved: x86/mtrr: Check if fixed MTRRs exist before saving them MTRRs have an obsolete fixed variant for fine grained caching control of the 640K-1MB region that uses separate MSRs. This fixed variant has a separate capability bit in the...

EUVD-2024-43806

Malicious code in bioql PyPI...

EUVD-2024-26113

Malicious code in bioql PyPI...

EUVD-2024-54430

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-4775

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior...

CVE-2024-56966

An issue in Shanghai Xuan Ting Entertainment Information & Technology Co., Ltd Qidian Reader iOS 5.9.384 allows attackers to access sensitive user information via supplying a crafted link...

CLSA-2025-1745530850 libvirt: Fix of CVE-2024-2496

CVE-2024-2496: Fix NULL pointer dereference in udevConnectListAllInterfaces function...

CVE-2024-55930

Xerox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files...

Security update for libqt5-qtwebkit

This update for libqt5-qtwebkit fixes the following issues: CVE-2024-40779: Fixed heap buffer overflow in computeSampleUsingLinearInterpolation bsc1228693 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

BELL-CVE-2024-56690

Bulletin has no description...

BELL-CVE-2024-53238

Bulletin has no description...

CVE-2024-12958

A vulnerability classified as critical has been found in 1000 Projects Portfolio Management System MCA 1.0. This affects an unknown part of the file /updateprodetails.php. The manipulation of the argument q leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

CVE-2024-54528

creationtimestamp| type| source ---|---|--- 2024-12-12 00:59:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113637140279133378 2024-12-12 03:46:52+00:00| seen| https://t.me/cvedetector/12669...

CVE-2024-53098

In the Linux kernel, the following vulnerability has been resolved: drm/xe/ufence: Prefetch ufence addr to catch bogus address accessok only checks for addr overflow so also try to read the addr to catch invalid addr sent from userspace. cherry picked from commit...

CVE-2024-51711

creationtimestamp| type| source ---|---|--- 2024-11-09 14:08:47+00:00| seen| https://t.me/cvedetector/10343...

CVE-2024-10756

creationtimestamp| type| source ---|---|--- 2024-11-04 05:13:56+00:00| seen| https://t.me/cvedetector/9691...

CVE-2024-10615

creationtimestamp| type| source ---|---|--- 2024-11-01 04:38:50+00:00| seen| https://t.me/cvedetector/9556...

CVE-2024-49978

In the Linux kernel, the following vulnerability has been resolved: gso: fix udp gso fraglist segmentation after pull from fraglist Detect gso fraglist skbs with corrupted geometry see below and pass these to skbsegment instead of skbsegmentlist, as the first can segment them correctly. Valid...