Lucene search
K

82 matches found

OSV
OSV
added 2025/01/11 1:15 p.m.3 views

UBUNTU-CVE-2024-57804

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

5.5CVSS6.2AI score0.00176EPSS
Exploits0References21
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a SCSI mpi3mr driver that may result in a corrupted configuration page when the PHY is quickly...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References4
OSV
OSV
added 2024/10/21 6:15 p.m.6 views

UBUNTU-CVE-2024-49985

In the Linux kernel, the following vulnerability has been resolved: i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume In case there is any sort of clock controller attached to this I2C bus controller, for example Versaclock or even an AIC32x4 I2C codec, then an I2C transf...

5.5CVSS6.2AI score0.00199EPSS
Exploits0References43
OSV
OSV
added 2024/09/10 10:15 a.m.5 views

CVE-2023-2919

The Tutor LMS plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.7.4. This is due to missing or incorrect nonce validation on the 'addonenabledisable' function. This makes it possible for unauthenticated attackers to enable or disable addons via a...

4.3CVSS5.6AI score0.00207EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/09/10 10:15 a.m.1 views

CVE-2023-2919

The Tutor LMS plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.7.4. This is due to missing or incorrect nonce validation on the 'addonenabledisable' function. This makes it possible for unauthenticated attackers to enable or disable addons via a...

4.3CVSS5.8AI score0.00207EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/09/10 1:22 a.m.4 views

WordPress Tutor LMS plugin <= 2.7.4 - Cross-Site Request Forgery via 'addon_enable_disable' vulnerability

Cross-Site Request Forgery via 'addonenabledisable' vulnerability discovered by Ram in WordPress Plugin Tutor LMS versions = 2.7.4...

4.3CVSS7AI score0.00207EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/24 12:0 a.m.5 views

PT-2024-38820 · D Link · Dns-320L +18

Name of the Vulnerable Software and Affected Versions: D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 up to 20240814 Description: A...

9.8CVSS7.5AI score0.08208EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2024/07/30 7:46 a.m.18 views

CVE-2024-42111 btrfs: always do the basic checks for btrfs_qgroup_inherit structure

In the Linux kernel, the following vulnerability has been resolved: btrfs: always do the basic checks for btrfsqgroupinherit structure BUG Syzbot reports the following regression detected by KASAN: BUG: KASAN: slab-out-of-bounds in btrfsqgroupinherit+0x42e/0x2e20 fs/btrfs/qgroup.c:3277 Read of si...

7AI score0.00206EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/30 7:46 a.m.21 views

CVE-2024-42111 btrfs: always do the basic checks for btrfs_qgroup_inherit structure

In the Linux kernel, the following vulnerability has been resolved: btrfs: always do the basic checks for btrfsqgroupinherit structure BUG Syzbot reports the following regression detected by KASAN: BUG: KASAN: slab-out-of-bounds in btrfsqgroupinherit+0x42e/0x2e20 fs/btrfs/qgroup.c:3277 Read of si...

0.00206EPSS
Exploits0References2
NVD
NVD
added 2024/06/19 2:15 p.m.15 views

CVE-2024-38557

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Reload only IB representors upon lag disable/enable On lag disable, the bond IB device along with all of its representors are destroyed, and then the slaves' representors get reloaded. In case the slave IB representor...

5.5CVSS0.00183EPSS
Exploits0References4
WPVulnDB
WPVulnDB
added 2024/05/31 12:0 a.m.8 views

Widget Bundle <= 2.0.0 - Widget Disable/Enable via CSRF

Description The plugin does not have CSRF checks when logging Widgets, which could allow attackers to make logged in admin enable/disable widgets via a CSRF attack PoC This PoC disables the User Registration widget. To do so, make a logged in admin open an HTML file containing:...

6.2AI score0.00199EPSS
Exploits2
OSV
OSV
added 2024/04/04 9:15 a.m.5 views

UBUNTU-CVE-2024-26803

In the Linux kernel, the following vulnerability has been resolved: net: veth: clear GRO when clearing XDP even when down veth sets NETIFFGRO automatically when XDP is enabled, because both features use the same NAPI machinery. The logic to clear NETIFFGRO sits in vethdisablexdp which is called...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References22
OSV
OSV
added 2024/03/13 4:15 p.m.6 views

CVE-2024-1763

The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the /wpsocial/v1/ REST API endpoint in all versions up to, and including, 3.0.0. This makes it possible for unauthenticated attackers to...

5.3CVSS5.8AI score0.0044EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/03/07 4:25 a.m.2 views

SUSE CVE-2023-52586

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add mutex lock in control vblank irq Add a mutex lock to control vblank irq to synchronize vblank enable/disable operations happening from different threads to prevent race conditions while registering/unregistering...

4.7CVSS6.2AI score0.0016EPSS
Exploits0References9
OSV
OSV
added 2024/03/06 7:15 a.m.7 views

AZL-56806 CVE-2023-52586 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add mutex lock in control vblank irq Add a mutex lock to control vblank irq to synchronize vblank enable/disable operations happening from different threads to prevent race conditions while registering/unregistering...

7CVSS5.8AI score0.0016EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 7:15 a.m.3 views

DEBIAN-CVE-2023-52586

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add mutex lock in control vblank irq Add a mutex lock to control vblank irq to synchronize vblank enable/disable operations happening from different threads to prevent race conditions while registering/unregistering...

7CVSS5.5AI score0.0016EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 7:15 a.m.2 views

UBUNTU-CVE-2023-52586

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add mutex lock in control vblank irq Add a mutex lock to control vblank irq to synchronize vblank enable/disable operations happening from different threads to prevent race conditions while registering/unregistering...

7CVSS6AI score0.0016EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/02/28 4:2 a.m.2 views

SUSE CVE-2021-46914

In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix unbalanced device enable/disable in suspend/resume pcidisabledevice called in ixgbeshutdown decreases dev-enablecnt by 1. pcienabledevicemem which increases dev-enablecnt by 1, was removed from ixgberesume in commit...

4.3CVSS7.8AI score0.00232EPSS
Exploits0References5
NVD
NVD
added 2024/02/27 7:15 a.m.14 views

CVE-2021-46914

In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix unbalanced device enable/disable in suspend/resume pcidisabledevice called in ixgbeshutdown decreases dev-enablecnt by 1. pcienabledevicemem which increases dev-enablecnt by 1, was removed from ixgberesume in commit...

5.5CVSS5.3AI score0.00232EPSS
Exploits0References3
OSV
OSV
added 2024/02/27 7:15 a.m.4 views

CVE-2021-46914

In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix unbalanced device enable/disable in suspend/resume pcidisabledevice called in ixgbeshutdown decreases dev-enablecnt by 1. pcienabledevicemem which increases dev-enablecnt by 1, was removed from ixgberesume in commit...

5.5CVSS7.4AI score
Exploits0References3
Rows per page
Query Builder