CVE-2024-21792

Time-of-check Time-of-use race condition in IntelR Neural Compressor software before version 2.5.0 may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2024-21792

The CVE-2024-21792 entry concerns a Time-of-check Time-of-use race condition in Intel Neural Compressor software prior to version 2.5.0 that may allow an authenticated user to disclose information via local access. Affected product: Intel Neural Compressor (before 2.5.0). Root cause: race conditi...

CVE-2024-21792

Time-of-check Time-of-use race condition in IntelR Neural Compressor software before version 2.5.0 may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2024-22476

Improper input validation in some IntelR Neural Compressor software before version 2.5.0 may allow an unauthenticated user to potentially enable escalation of privilege via remote access...

CVE-2024-22476

Improper input validation in some IntelR Neural Compressor software before version 2.5.0 may allow an unauthenticated user to potentially enable escalation of privilege via remote access...

CVE-2024-22476

CVE-2024-22476 affects Intel Neural Compressor before version 2.5.0, due to improper input validation that enables an unauthenticated attacker to potentially achieve remote escalation of privilege via SQL injection. The Nuclei template and Intel advisory corroborate the affected product/version a...

PT-2024-19060 · Intel · Intel Neural Compressor

Name of the Vulnerable Software and Affected Versions: IntelR Neural Compressor versions prior to 2.5.0 Description: A Time-of-check Time-of-use race condition may allow an authenticated user to potentially enable information disclosure via local access. Recommendations: For versions prior to...

PT-2024-3895 · Intel · Intel Neural Compressor

Name of the Vulnerable Software and Affected Versions: Intel Neural Compressor versions prior to 2.5.0 Description: The issue is related to improper input validation in the Intel Neural Compressor software, which may allow an unauthenticated user to potentially enable escalation of privilege via...

Intel Neural Compressor 安全漏洞

Intel Neural Compressor is an open source project from Intel Corporation USA designed to help developers easily implement AI model optimization. A security vulnerability previously existed in Intel Neural Compressor version 2.5.0, which stemmed from the presence of incorrect input validation. It...

Intel Neural Compressor 安全漏洞

Intel Neural Compressor is an open source project from Intel Corporation USA designed to help developers easily implement AI model optimization. A security vulnerability previously existed in Intel Neural Compressor version 2.5.0, which stemmed from the presence of a race condition issue. It coul...

Intel® Neural Compressor Software Advisory

Summary: Potential security vulnerabilities in some Intel® Neural Compressor software may allow escalation of privilege and information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-22476 Description: Improper...

CVE-2024-26647

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix late derefrence 'dsc' check in 'linksetdscppspacket' In linksetdscppspacket, 'struct displaystreamcompressor dsc' was dereferenced in a DCLOGGERINITdsc-ctx-logger; before the 'dsc' NULL pointer check. Fixes t...

DEBIAN-CVE-2024-26647

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix late derefrence 'dsc' check in 'linksetdscppspacket' In linksetdscppspacket, 'struct displaystreamcompressor dsc' was dereferenced in a DCLOGGERINITdsc-ctx-logger; before the 'dsc' NULL pointer check. Fixes t...

CVE-2024-26647

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix late derefrence 'dsc' check in 'linksetdscppspacket' In linksetdscppspacket, 'struct displaystreamcompressor dsc' was dereferenced in a DCLOGGERINITdsc-ctx-logger; before the 'dsc' NULL pointer check. Fixes t...

UBUNTU-CVE-2024-26647

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix late derefrence 'dsc' check in 'linksetdscppspacket' In linksetdscppspacket, 'struct displaystreamcompressor dsc' was dereferenced in a DCLOGGERINITdsc-ctx-logger; before the 'dsc' NULL pointer check. Fixes t...

CVE-2024-26647 drm/amd/display: Fix late derefrence 'dsc' check in 'link_set_dsc_pps_packet()'

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix late derefrence 'dsc' check in 'linksetdscppspacket' In linksetdscppspacket, 'struct displaystreamcompressor dsc' was dereferenced in a DCLOGGERINITdsc-ctx-logger; before the 'dsc' NULL pointer check. Fixes t...

CVE-2024-26647

CVE-2024-26647 affects the Linux kernel DRM/AMD display component. In link_set_dsc_pps_packet(), a dereference of struct display_stream_compressor *dsc could occur (dsc->ctx->logger) before a NULL pointer check, enabling a potential crash when the dsc pointer is NULL. The issue has been fix...

Image Compressor & Optimizer - iLoveIMG < 1.0.6 - Admin+ PHP Object Injection

Description The plugin is vulnerable to PHP Object Injection in all versions up to 1.0.6 exclusive via deserialization of untrusted input. This makes it possible for authenticated attackers, with admin access or higher to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a...

CVE-2024-20805

Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows local attackers to write arbitrary file...

PT-2024-18711 · Google +1 · Android 11 +3

Name of the Vulnerable Software and Affected Versions: MyFiles versions prior to SMR Jan-2024 Release 1 in Android 11 and Android 12 MyFiles version 14.5.00.21 in Android 13 Description: A path traversal vulnerability in the ZipCompressor of MyFiles allows local attackers to write arbitrary files...