Lucene search
K

144 matches found

osv
osv
added 2024/06/28 1:15 p.m.3 views

CVE-2024-3816

Sites managed in S@M CMS Concept Intermedia might be vulnerable to a blind SQL Injection executed using the search bar. Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears...

9.8CVSS5.9AI score0.00483EPSS
Exploits0References2
osv
osv
added 2024/06/28 1:15 p.m.4 views

CVE-2024-3801

Sites managed in S@M CMS Concept Intermedia might be vulnerable to Reflected XSS via including scripts in one of GET header parameters. Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears...

6.1CVSS5.8AI score0.00294EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/06/28 12:0 a.m.5 views

PT-2024-27894 · Concept Intermedia · S@M Cms

Name of the Vulnerable Software and Affected Versions: S@M CMS Concept Intermedia affected versions not specified Description: The issue concerns a blind SQL Injection that can be executed using the search bar in sites managed by S@M CMS. It is noted that only a part of the observed services is...

9.8CVSS8.2AI score0.00483EPSS
Exploits0References3
redhatcve
redhatcve
added 2024/06/03 9:2 a.m.18 views

CVE-2024-36028

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix DEBUGLOCKSWARNON1 when dissolvefreehugetlbfolio When I did memory failure tests recently, below warning occurs: DEBUGLOCKSWARNON1 WARNING: CPU: 8 PID: 1011 at kernel/locking/lockdep.c:232 lockacquire+0xccb/0x1ca0...

4.7CVSS6.5AI score0.00181EPSS
Exploits0References4
cvelist
cvelist
added 2024/05/30 3:19 p.m.23 views

CVE-2024-36028 mm/hugetlb: fix DEBUG_LOCKS_WARN_ON(1) when dissolve_free_hugetlb_folio()

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix DEBUGLOCKSWARNON1 when dissolvefreehugetlbfolio When I did memory failure tests recently, below warning occurs: DEBUGLOCKSWARNON1 WARNING: CPU: 8 PID: 1011 at kernel/locking/lockdep.c:232 lockacquire+0xccb/0x1ca0...

6.4AI score0.00181EPSS
Exploits0References4
nvd
nvd
added 2024/05/19 9:15 a.m.15 views

CVE-2024-35894

In the Linux kernel, the following vulnerability has been resolved: mptcp: prevent BPF accessing lowat from a subflow socket. Alexei reported the following splat: WARNING: CPU: 32 PID: 3276 at net/mptcp/subflow.c:1430 subflowdataready+0x147/0x1c0 Modules linked in: dummy bpftestmodO last unloaded...

7.8CVSS6.5AI score0.0022EPSS
Exploits0References4
cvelist
cvelist
added 2024/05/19 8:34 a.m.23 views

CVE-2024-35894 mptcp: prevent BPF accessing lowat from a subflow socket.

In the Linux kernel, the following vulnerability has been resolved: mptcp: prevent BPF accessing lowat from a subflow socket. Alexei reported the following splat: WARNING: CPU: 32 PID: 3276 at net/mptcp/subflow.c:1430 subflowdataready+0x147/0x1c0 Modules linked in: dummy bpftestmodO last unloaded...

6.4AI score0.0022EPSS
Exploits0References3
githubexploit
githubexploit
added 2024/05/17 12:7 p.m.313 views

Exploit for OS Command Injection in Fortinet Fortisiem

CVE-2023-34992: Fortinet FortiSIEM Unauthenticated Command Inj...

9.8CVSS10AI score0.65509EPSS
Exploits1
wizblog
wizblog
added 2024/05/14 3:30 p.m.83 views

Unveiling the power of Wiz's Security Graph with automated blast radius and root cause analysis for cloud incident response

Wiz assists Incident Response IR and SOC teams with containment through automated assessment of security incidents by identifying possible root causes and calculating the potential blast radius of compromised resources...

7.4AI score
Exploits0
ubuntucve
ubuntucve
added 2024/05/01 6:15 a.m.45 views

CVE-2024-26932

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix double-free issue in tcpmportunregisterpd When unregister pd capabilitie in tcpm, KASAN will capture below double -free issue. The root cause is the same capabilitiy will be kfreed twice, the first time is...

7.8CVSS6.3AI score0.00216EPSS
Exploits0References9
debiancve
debiancve
added 2024/05/01 5:35 a.m.22 views

CVE-2024-27022

In the Linux kernel, the following vulnerability has been resolved: fork: defer linking file vma until vma is fully initialized Thorvald reported a WARNING 1. And the root cause is below race: CPU 1 CPU 2 fork hugetlbfsfallocate dupmmap hugetlbfspunchhole immaplockwritemapping;...

7.8CVSS7.5AI score0.0027EPSS
Exploits0
cvelist
cvelist
added 2024/05/01 5:17 a.m.28 views

CVE-2024-26932 usb: typec: tcpm: fix double-free issue in tcpm_port_unregister_pd()

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix double-free issue in tcpmportunregisterpd When unregister pd capabilitie in tcpm, KASAN will capture below double -free issue. The root cause is the same capabilitiy will be kfreed twice, the first time is...

7.7AI score0.00216EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/05/01 5:17 a.m.19 views

CVE-2024-26932 usb: typec: tcpm: fix double-free issue in tcpm_port_unregister_pd()

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix double-free issue in tcpmportunregisterpd When unregister pd capabilitie in tcpm, KASAN will capture below double -free issue. The root cause is the same capabilitiy will be kfreed twice, the first time is...

6.7AI score0.00216EPSS
Exploits0References2
nvd
nvd
added 2024/04/03 5:15 p.m.16 views

CVE-2024-26757

In the Linux kernel, the following vulnerability has been resolved: md: Don't ignore read-only array in mdcheckrecovery Usually if the array is not read-write, mdcheckrecovery won't register new syncthread in the first place. And if the array is read-write and syncthread is registered,...

5.5CVSS6.5AI score0.00209EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/04/03 5:0 p.m.17 views

CVE-2024-26757 md: Don't ignore read-only array in md_check_recovery()

In the Linux kernel, the following vulnerability has been resolved: md: Don't ignore read-only array in mdcheckrecovery Usually if the array is not read-write, mdcheckrecovery won't register new syncthread in the first place. And if the array is read-write and syncthread is registered,...

6.9AI score0.00209EPSS
Exploits0References2
thn
thn
added 2024/03/01 11:8 a.m.25 views

4 Instructive Postmortems on Data Downtime and Loss

More than a decade ago, the concept of the 'blameless' postmortem changed how tech companies recognize failures at scale. John Allspaw, who coined the term during his tenure at Etsy, argued postmortems were all about controlling our natural reaction to an incident, which is to point fingers: "One...

6.8AI score
Exploits0
susecve
susecve
added 2024/02/28 3:40 a.m.4 views

SUSE CVE-2024-26604

In the Linux kernel, the following vulnerability has been resolved: Revert "kobject: Remove redundant checks for whether ktype is NULL" This reverts commit 1b28cb81dab7c1eedc6034206f4e8d644046ad31. It is reported to cause problems, so revert it for now until the root cause can be found...

5.5CVSS6.5AI score0.00274EPSS
Exploits0References3
osv
osv
added 2024/02/26 4:28 p.m.5 views

UBUNTU-CVE-2024-26604

In the Linux kernel, the following vulnerability has been resolved: Revert "kobject: Remove redundant checks for whether ktype is NULL" This reverts commit 1b28cb81dab7c1eedc6034206f4e8d644046ad31. It is reported to cause problems, so revert it for now until the root cause can be found...

5.5CVSS5.7AI score0.00274EPSS
Exploits0References3
cvelist
cvelist
added 2024/02/24 2:56 p.m.26 views

CVE-2024-26604 Revert "kobject: Remove redundant checks for whether ktype is NULL"

In the Linux kernel, the following vulnerability has been resolved: Revert "kobject: Remove redundant checks for whether ktype is NULL" This reverts commit 1b28cb81dab7c1eedc6034206f4e8d644046ad31. It is reported to cause problems, so revert it for now until the root cause can be found...

5.8AI score0.00274EPSS
Exploits0References3
thn
thn
added 2024/01/05 10:3 a.m.57 views

Exposed Secrets are Everywhere. Here's How to Tackle Them

Picture this: you stumble upon a concealed secret within your company's source code. Instantly, a wave of panic hits as you grasp the possible consequences. This one hidden secret has the power to pave the way for unauthorized entry, data breaches, and a damaged reputation. Understanding the secr...

7AI score
Exploits0
Rows per page
Query Builder