CVE-2024-47025

In ppmpprotectbuf of drmfw.c, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-49927 x86/ioapic: Handle allocation failures gracefully

In the Linux kernel, the following vulnerability has been resolved: x86/ioapic: Handle allocation failures gracefully Breno observed panics when using failslab under certain conditions during runtime: can not alloc irqpinlist -1,0,20 Kernel panic - not syncing: IO-APIC: failed to add irq-pin. Can...

CVE-2024-47712

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix potential RCU dereference issue in wilcparsejoinbssparam In the wilcparsejoinbssparam function, the TSF field of the ies structure is accessed after the RCU read-side critical section is unlocked. According to...

Acronis Cyber Files 代码问题漏洞

Acronis Cyber Files is a secure file synchronization and sharing solution from Acronis Switzerland. A code issue vulnerability exists in Acronis Cyber Files versions prior to 9.0.0x24 that stems from DLL hijacking leading to local elevation of privilege...

VSO ConvertXtoDvd 代码问题漏洞

VSO ConvertXtoDvd is a software from VSO that can convert video to any format. A code issue vulnerability exists in VSO ConvertXtoDvd version 7.0.0.83, which stems from a function avcodec.dll in the file ConvertXtoDvd.exe that results in an uncontrolled search path. No details of the vulnerabilit...

WordPress plugin Creates 3D Flipbook, PDF Flipbook 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin Creates 3D Flipbook, PDF...

WordPress plugin External featured image from bing 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. WordPress plugin External featured image from bing A code...

IBM WebSphere Application Server 代码问题漏洞

IBM WebSphere Application Server WAS is an application server product from International Business Machines IBM. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform. A code issue vulnerability exists in IBM WebSphere...

Juniper Networks Junos OS 代码问题漏洞

Juniper Networks Junos OS is a Juniper Networks, Inc. network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in Juniper Networks Junos OS that stems from a null pointer...

Juniper Networks Junos OS 代码问题漏洞

Juniper Networks Junos OS is a Juniper Networks, Inc. network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in Juniper Networks Junos OS that arises from improper...

Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 代码问题漏洞

Juniper Networks Junos OS and Juniper Networks Junos OS Evolved are both products of Juniper Networks, Inc.Juniper Networks Junos OS is a network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper...

Adobe Framemaker 代码问题漏洞

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A code issue vulnerability exists in Adobe Framemaker. An attacker could exploit this vulnerability to execute...

Adobe InDesign 代码问题漏洞

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from a code issue vulnerability that originates from the unrestricted upload of a dangerous type of file. An attacker could exploit the vulnerability to execute arbitrary cod...

Apache XML Graphics FOP 代码问题漏洞

Apache XML Graphics FOP is a Java application for converting XSL-FO files to PDF or other printable formats from the Apache Foundation USA. A code issue vulnerability exists in Apache XML Graphics FOP version 2.9, which stems from the presence of an incorrectly restricted XML external entity...

WordPress plugin Bit File Manager 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

PT-2024-29682 · Unknown · Smart-Tab Android App

Name of the Vulnerable Software and Affected Versions: Smart-tab Android app versions prior to May 2023 Description: The issue concerns an active debug code vulnerability in the Smart-tab Android app. If exploited, an attacker with physical access to the device may use the debug function to acces...

IBM ManageIQ 代码问题漏洞

IBM ManageIQ is an open source cloud management platform from International Business Machines IBM. A code issue vulnerability exists in IBM ManageIQ that stems from allowing a remotely authenticated attacker to execute arbitrary commands on the system by sending a specially constructed request fo...

CVE-2024-44167

The CVE-2024-44167 issue involves a vulnerability in macOS/iOS variants where an app may overwrite arbitrary files. The root cause is described as being mitigated by removing the vulnerable code. Affected platforms include macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15, visionOS 2, iOS 1...

CVE-2024-45824

CVE-2024-45824 affects Rockwell Automation FactoryTalk View Site Edition. A remote code execution vulnerability exists when chained with path traversal, command injection, and XSS vulnerabilities, enabling unauthenticated remote code execution. Affected FactoryTalk View Site Edition versions (per...

Microsoft Windows 代码问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A code issue vulnerability exists in Microsoft Windows. Attackers have exploited the vulnerability to cause a denial of service on the system. The following products...