CVE-2020-35877

An issue was discovered in the ozone crate through 2020-07-04 for Rust. Memory safety is violated because of out-of-bounds access...

Linux Distros Unpatched Vulnerability : CVE-2024-35877

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/mm/pat: fix VMPAT handling in COW mappings PAT handling won't do the right thing in COW mappings: the first PTE or, in fact, all PTEs can be replaced durin...

AlmaLinux 8 : kernel (ALSA-2024:7000)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:7000 advisory. CVE-2023-6040 CVE-2024-26595 CVE-2024-26600 CVE-2021-46984 CVE-2023-52478 CVE-2023-52476 CVE-2023-52522 CVE-2021-47101 CVE-2021-47097 CVE-2023-52605...

SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2019-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2019-1 advisory. The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following securit...

SUSE-SU-2024:2019-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-35924: Limit read size on v1.2 bsc1224657. - CVE-2024-26921: Preserve kabi for skbuff bsc1223138. - CVE-2024-35976: Validate user input for...

SUSE SLES12 Security Update : kernel (SUSE-SU-2024:1979-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1979-1 advisory. The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were...

SUSE-SU-2024:1979-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-26921: Preserve kabi for skbuff bsc1223138. - CVE-2022-48686: Fix UAF when detecting digest errors bsc1223948. Update blacklist.conf: remove entry -...

CVE-2024-35877

In the Linux kernel, the following vulnerability has been resolved: x86/mm/pat: fix VMPAT handling in COW mappings PAT handling won't do the right thing in COW mappings: the first PTE or, in fact, all PTEs can be replaced during write faults to point at anon folios. Reliably recovering the correc...

CVE-2024-35877

In the Linux kernel, the following vulnerability has been resolved: x86/mm/pat: fix VMPAT handling in COW mappings PAT handling won't do the right thing in COW mappings: the first PTE or, in fact, all PTEs can be replaced during write faults to point at anon folios. Reliably recovering the correc...

CVE-2023-35877

Cross-Site Request Forgery CSRF vulnerability in Vadym K. Extra User Details allows Stored XSS.This issue affects Extra User Details: from n/a through 0.5...

CVE-2023-35877

CVE-2023-35877 pertains to the WordPress plugin Extra User Details (<= 0.5). The issue is a CSRF vulnerability that can enable Stored XSS. Affected product/version: Extra User Details

WordPress Extra User Details Plugin <= 0.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software Extra User Details Type Plugin Vulnerable versions = 0.5 Fixed in 0.5.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-35877 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 568fb5c7f9dd Credits LEE SE HYOUNG...

CVE-2022-35877

Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. Specially-crafted configuration values can lead to memory corruption, information disclosure and denial of service. An attacker can modify a...

CVE-2022-35877

Abode Systems iota All-In-One Security Kit (versions 6.9X and 6.9Z) contains four format string injection flaws in the XCMD handler testWifiAP, caused by improper handling of the default_key_id configuration parameter. This leads to memory corruption, information disclosure, and denial of service...

CVE-2022-35877

Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. Specially-crafted configuration values can lead to memory corruption, information disclosure and denial of service. An attacker can modify a...

CVE-2020-35877

An issue was discovered in the ozone crate through 2020-07-04 for Rust. Memory safety is violated because of out-of-bounds access...

CVE-2020-35877

CVE-2020-35877 affects the Rust ozone crate (up to version 0.1.0) with memory-safety violations caused by out-of-bounds access. Documents consistently describe an out-of-bounds read/write risk but do not provide concrete exploit details or a stated fixed version. Remediation/fixes are not specifi...