Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13587 matches found

AlpineLinux
AlpineLinuxadded 2024/12/09 9:36 a.m.7 views

CVE-2024-46901

Insufficient validation of filenames against control characters in Apache Subversion repositories served via moddavsvn allows authenticated users with commit access to commit a corrupted revision, leading to disruption for users of the repository. All versions of Subversion up to and including...

4.3CVSS6.7AI score0.05806EPSS
Exploits1
CVE
CVEadded 2024/12/09 9:36 a.m.116 views

CVE-2024-46901

CVE-2024-46901 affects Apache Subversion when serving repositories via mod_dav_svn. It arises from insufficient validation of filenames against control characters, allowing authenticated users with commit access to commit a corrupted revision and disrupt repository usage. All Subversion versions ...

4.3CVSS3.9AI score0.05806EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVEadded 2024/12/05 5:13 a.m.14 views

CVE-2024-53127

In the Linux kernel, the following vulnerability has been resolved: Revert "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" The commit 8396c793ffdf "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" increased the maxreqsize, even for 4K pages, causing various issues: - Panic...

5.5CVSS7.6AI score0.00014EPSS
Exploits0References4
OSV
OSVadded 2024/12/04 3:15 p.m.2 views

AZL-54120 CVE-2024-53127 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: Revert "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" The commit 8396c793ffdf "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" increased the maxreqsize, even for 4K pages, causing various issues: - Panic...

5.5CVSS7AI score0.00014EPSS
Exploits0References1
NVD
NVDadded 2024/12/04 3:15 p.m.41 views

CVE-2024-53127

In the Linux kernel, the following vulnerability has been resolved: Revert "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" The commit 8396c793ffdf "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" increased the maxreqsize, even for 4K pages, causing various issues: - Panic...

5.5CVSS0.00014EPSS
Exploits0References10
CVE
CVEadded 2024/12/04 2:20 p.m.172 views

CVE-2024-53127

CVE-2024-53127 involves the Linux kernel where the fix was to revert the change that raised max_req_size for IDMAC operations with pages bigger than 4K. Affected behavior includes panics booting kernel/rootfs from SD on Rockchip RK3566 and StarFive JH7100, and swiotlb buffer/full data corruption ...

5.5CVSS7.2AI score0.00014EPSS
Exploits0References10Affected Software1
OSV
OSVadded 2024/12/04 2:20 p.m.6 views

CVE-2024-53127 Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"

In the Linux kernel, the following vulnerability has been resolved: Revert "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" The commit 8396c793ffdf "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" increased the maxreqsize, even for 4K pages, causing various issues: - Panic...

5.5CVSS6.5AI score0.00014EPSS
Exploits0References13
RedHat Linux
RedHat Linuxadded 2024/12/04 12:56 a.m.2 views

kernel: ext4: regenerate buddy after block freeing failed if under fc replay

A flaw was found in the Linux kernel's ext4 filesystem related to the fast commit replay process. During this process, blocks that are already marked as free can be incorrectly marked as free again, leading to the corruption of the buddy bitmap, which is used to track free and allocated blocks...

5.5CVSS6.8AI score0.00022EPSS
Exploits0References5
UbuntuCve
UbuntuCveadded 2024/12/02 12:0 a.m.13 views

CVE-2024-53103

In the Linux kernel, the following vulnerability has been resolved: hvsock: Initializing vsk-trans to NULL to prevent a dangling pointer When hvs is released, there is a possibility that vsk-trans may not be initialized to NULL, which could lead to a dangling pointer. This issue is resolved by...

7.8CVSS6.4AI score0.0002EPSS
Exploits1References37
CVE
CVEadded 2024/11/29 6:39 p.m.66 views

CVE-2024-53848

The CVE-2024-53848 issue affects the check-jsonschema tool (and related advisories) where the default caching uses the remote schema basename (e.g., https://example.org/schema.json) as the cache filename. This can allow a malicious schema URL to overwrite or be substituted in the cache leading to...

7.1CVSS6.9AI score0.0004EPSS
Exploits0References2
OSV
OSVadded 2024/11/26 5:15 p.m.1 views

DEBIAN-CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS5.7AI score0.00045EPSS
Exploits0References1
OSV
OSVadded 2024/11/26 5:15 p.m.0 views

UBUNTU-CVE-2024-11407

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS7.1AI score0.00045EPSS
Exploits0References3
CVE
CVEadded 2024/11/26 4:59 p.m.156 views

CVE-2024-11407

CVE-2024-11407 describes a denial-of-service in gRPC-C++ servers when transmit zero copy is enabled via GRPC_ARG_TCP_TX_ZEROCOPY_ENABLED, where data may become corrupted before network transmission. Connected advisories referencing grpc (ALAS2023-2025-1357, ALAS2ECS-2025-093, ALAS2023-2025-819, A...

7.5CVSS6.6AI score0.00045EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/25 7:19 p.m.21 views

CVE-2024-53258 download_all_submissions allows student to download another student's submissions in Autolab

Autolab is a course management service that enables auto-graded programming assignments. From Autolab versions v.3.0.0 onward students can download all assignments from another student, as long as they are logged in, using the downloadallsubmissions feature. This can allow for leakage of...

7.1CVSS6.7AI score0.00376EPSS
Exploits0References2
OSV
OSVadded 2024/11/25 2:15 p.m.2 views

DEBIAN-CVE-2024-11498

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

7.5CVSS6.6AI score0.00051EPSS
Exploits0References1
NVD
NVDadded 2024/11/25 2:15 p.m.21 views

CVE-2024-11498

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

7.5CVSS0.00051EPSS
Exploits0References1
OSV
OSVadded 2024/11/25 2:15 p.m.3 views

UBUNTU-CVE-2024-11498

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

7.5CVSS6AI score0.00051EPSS
Exploits0References3
CVE
CVEadded 2024/11/25 1:8 p.m.81 views

CVE-2024-11498

CVE-2024-11498 affects the libjxl (JPEG XL) library. A crafted file can trigger a stack-based overflow, causing the decoder to allocate large stack space (up to 256–512 MB) and potentially exhaust stack memory, leading to denial of service. Multiple advisories and deployable updates reference thi...

7.5CVSS6.9AI score0.00051EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/25 1:8 p.m.18 views

CVE-2024-11498 Resource exhaustion via Stack overflow in libjxl

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

6.9CVSS7.3AI score0.00051EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/11/25 1:8 p.m.22 views

CVE-2024-11498 Resource exhaustion via Stack overflow in libjxl

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

6.9CVSS0.00051EPSS
Exploits0References1
Rows per page
Query Builder