CVE-2024-50107 platform/x86/intel/pmc: Fix pmc_core_iounmap to call iounmap for valid addresses

In the Linux kernel, the following vulnerability has been resolved: platform/x86/intel/pmc: Fix pmccoreiounmap to call iounmap for valid addresses Commit 50c6dbdfd16e "x86/ioremap: Improve iounmap address range checks" introduces a WARN when adrress ranges of iounmap are invalid. On Thinkpad P1 G...

CVE-2024-50107 platform/x86/intel/pmc: Fix pmc_core_iounmap to call iounmap for valid addresses

In the Linux kernel, the following vulnerability has been resolved: platform/x86/intel/pmc: Fix pmccoreiounmap to call iounmap for valid addresses Commit 50c6dbdfd16e "x86/ioremap: Improve iounmap address range checks" introduces a WARN when adrress ranges of iounmap are invalid. On Thinkpad P1 G...

CVE-2024-50107 platform/x86/intel/pmc: Fix pmc_core_iounmap to call iounmap for valid addresses

In the Linux kernel, the following vulnerability has been resolved: platform/x86/intel/pmc: Fix pmccoreiounmap to call iounmap for valid addresses Commit 50c6dbdfd16e "x86/ioremap: Improve iounmap address range checks" introduces a WARN when adrress ranges of iounmap are invalid. On Thinkpad P1 G...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which originates in the platform/x86/intel/pmc module, where the pmccoreiounmap function fails to properly handle invalid...

CVE-2024-6553

The WP Meteor Website Speed Optimization Addon plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.3.This is due to the plugin utilizing wpdesk and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to...

CVE-2024-6553

The WP Meteor Website Speed Optimization Addon plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.3.This is due to the plugin utilizing wpdesk and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to...

CVE-2024-6553

Summary of CVE-2024-6553 : The WP Meteor Website Speed Optimization Addon for WordPress is vulnerable to Full Path Disclosure in all versions up to and including 3.4.3. Root cause: the plugin uses wpdesk and leaves test files with display_errors enabled, allowing unauthenticated access to the web...

CVE-2024-6553 WP Meteor Website Speed Optimization Addon <= 3.4.3 - Unauthenticated Full Path Disclosure

The WP Meteor Website Speed Optimization Addon plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.3.This is due to the plugin utilizing wpdesk and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to...

WordPress WP Meteor Website Speed Optimization Addon plugin <= 3.4.3 - Unauthenticated Full Path Disclosure vulnerability

Unauthenticated Full Path Disclosure vulnerability discovered by stealthcopter in WordPress Plugin WP Meteor Page Speed Optimization Topping versions = 3.4.3...

WordPress WP Meteor Page Speed Optimization Topping Plugin <= 3.4.3 is vulnerable to Sensitive Data Exposure

Software WP Meteor Page Speed Optimization Topping Type Plugin Vulnerable versions = 3.4.3 Fixed in 3.4.4 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6553 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 1299014de04b Credits...

SUSE CVE-2024-36887

In the Linux kernel, the following vulnerability has been resolved: e1000e: change usleeprange to udelay in PHY mdic access This is a partial revert of commit 6dbdd4de0362 "e1000e: Workaround for sporadic MDI error on Meteor Lake systems". The referenced commit used usleeprange inside the PHY...

UBUNTU-CVE-2024-36887

In the Linux kernel, the following vulnerability has been resolved: e1000e: change usleeprange to udelay in PHY mdic access This is a partial revert of commit 6dbdd4de0362 "e1000e: Workaround for sporadic MDI error on Meteor Lake systems". The referenced commit used usleeprange inside the PHY...

CVE-2024-0762

Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ fo...

CVE-2024-0762

CVE-2024-0762 affects Phoenix SecureCore UEFI firmware across Intel families (Kaby Lake through Meteor Lake) with a buffer overflow in unsafe UEFI variable handling that could allow local privilege escalation and firmware code execution. Affected Cisco? No, Phoenix SecureCore versions: Kaby Lake ...

CVE-2023-26543

Cross-Site Request Forgery CSRF vulnerability in Aleksandr Guidrevitch WP Meteor Website Speed Optimization Addon plugin = 3.1.4 versions...

CVE-2023-26543

Cross-Site Request Forgery CSRF vulnerability in Aleksandr Guidrevitch WP Meteor Website Speed Optimization Addon plugin = 3.1.4 versions...

CVE-2023-26543 WordPress WP Meteor Page Speed Optimization Topping Plugin <= 3.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Aleksandr Guidrevitch WP Meteor Website Speed Optimization Addon plugin = 3.1.4 versions...

CVE-2023-26543

CVE-2023-26543 affects the WP Meteor Website Speed Optimization Addon for WordPress, versioned

CVE-2023-26543 WordPress WP Meteor Page Speed Optimization Topping Plugin <= 3.1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Aleksandr Guidrevitch WP Meteor Website Speed Optimization Addon plugin = 3.1.4 versions...

WordPress Plugin WP Meteor Website Speed Optimization Addon Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...