Lucene search
K

4718 matches found

Positive Technologies
Positive Technologies
added 2024/05/07 12:0 a.m.4 views

PT-2024-29600 · WordPress · Build App Online

Name of the Vulnerable Software and Affected Versions: Build App Online plugin for WordPress versions up to, and including, 3.0.5 Description: The issue is due to the eb user email verification key default value being empty and the missing not empty check in the eb user email verify function. Thi...

9.8CVSS7.3AI score0.00902EPSS
Exploits0References7
Patchstack
Patchstack
added 2024/05/06 11:55 p.m.4 views

WordPress Edwiser Bridge plugin <= 3.0.5 - Authentication Bypass due to Missing Empty Value Check vulnerability

Authentication Bypass due to Missing Empty Value Check vulnerability discovered by István Márton in WordPress Plugin Edwiser Bridge versions = 3.0.5...

9.8CVSS7AI score0.00902EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.1 views

SUSE CVE-2024-26967

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: camcc-sc8280xp: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid...

5.5CVSS7.6AI score0.00193EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.2 views

SUSE CVE-2024-26968

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq9574: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid...

5.5CVSS7.7AI score0.00224EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.2 views

SUSE CVE-2024-26970

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq6018: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid...

5.5CVSS6.4AI score0.00226EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2024/05/01 8:58 p.m.26 views

CVE-2024-27047

A vulnerability was found in the Linux kernel's net driver phydevice.c in the phygetinternaldelay function, where a lack of proper checks can cause a potential NULL pointer dereference to occur when the function attempts to access an empty array. The error occurs if the driver calls...

5.5CVSS8.1AI score0.00281EPSS
Exploits0References4
OSV
OSV
added 2024/05/01 1:15 p.m.2 views

DEBIAN-CVE-2024-27047

In the Linux kernel, the following vulnerability has been resolved: net: phy: fix phygetinternaldelay accessing an empty array The phygetinternaldelay function could try to access to an empty array in the case that the driver is calling phygetinternaldelay without defining delayvalues and...

5.5CVSS5.3AI score0.00281EPSS
Exploits0References1
OSV
OSV
added 2024/05/01 1:15 p.m.6 views

UBUNTU-CVE-2024-27047

In the Linux kernel, the following vulnerability has been resolved: net: phy: fix phygetinternaldelay accessing an empty array The phygetinternaldelay function could try to access to an empty array in the case that the driver is calling phygetinternaldelay without defining delayvalues and...

5.5CVSS6AI score0.00281EPSS
Exploits0References25
OSV
OSV
added 2024/05/01 6:15 a.m.1 views

DEBIAN-CVE-2024-26967

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: camcc-sc8280xp: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid...

5.5CVSS5.3AI score0.00193EPSS
Exploits0References1
NVD
NVD
added 2024/05/01 6:15 a.m.15 views

CVE-2024-26969

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid...

5.5CVSS7.4AI score0.00249EPSS
Exploits0References11
OSV
OSV
added 2024/05/01 6:15 a.m.1 views

DEBIAN-CVE-2024-26966

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid...

5.5CVSS5.3AI score0.00251EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/04/30 4:54 p.m.7 views

zstd: mysql: buffer overrun in util.c

A vulnerability was found in zstd. This flaw allows an attacker to supply an empty string as an argument to the command line tool to cause a buffer overrun...

7.5CVSS7.5AI score0.01588EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/04/30 10:36 a.m.4 views

openssl: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries

A vulnerability was found in OpenSSL. The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries, which are unauthenticated as a consequence. Applications that use the AES-SIV algorithm and want to authenticate empty data entries as associated data can...

5.3CVSS7.2AI score0.00525EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/04/30 2:22 a.m.2 views

SUSE CVE-2024-3860

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox 125...

5.3CVSS8.5AI score0.00172EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/04/29 12:0 a.m.7 views

DHCP Server 安全漏洞

Open DHCP Server is an open source software from an individual developer that provides DHCP services. A security vulnerability exists in DHCP Server ec976d2 and prior versions, which stems from the presence of a NULL pointer dereference that allows remote attackers to cause a denial of service by...

5.3CVSS6.6AI score0.00458EPSS
Exploits0References2
Broadcom
Broadcom
added 2024/04/17 12:0 a.m.10 views

AES-SIV implementation ignores empty associated data entries (CVE-2023-2975)

Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are unauthenticated as a consequence. Impact summary: Applications that use the AES-SIV algorithm and want to authenticate empty data entries as associated data can be...

5.3CVSS7.3AI score0.00525EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/17 12:0 a.m.24 views

RHEL 8 / 9 : OpenShift Container Platform 4.14.4 (RHSA-2023:7473)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7473 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

8CVSS7.1AI score0.01815EPSS
Exploits1References8
OSV
OSV
added 2024/04/16 4:15 p.m.4 views

CVE-2024-3860

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox 125...

6.2CVSS7AI score0.00172EPSS
Exploits0References2
OSV
OSV
added 2024/04/16 4:15 p.m.0 views

UBUNTU-CVE-2024-3860

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox 125...

6.2CVSS7.3AI score0.00172EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/04/16 3:14 p.m.27 views

CVE-2024-3860

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox 125...

6AI score0.00172EPSS
Exploits0References2
Rows per page
Query Builder