Lucene search
+L

916 matches found

NVD
NVD
added 2024/08/01 10:15 p.m.16 views

CVE-2024-41965

Vim is an open source command line text editor. double-free in dialogchanged in Vim v9.1.0648. When abandoning a buffer, Vim may ask the user what to do with the modified buffer. If the user wants the changed buffer to be saved, Vim may create a new Untitled file, if the buffer did not have a nam...

4.2CVSS0.00289EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/07/29 4:3 p.m.26 views

CVE-2024-41819 Note Mark has a stored XSS in the note link href attribute

Note Mark is a web-based Markdown notes app. A stored cross-site scripting XSS vulnerability in Note Mark allows attackers to execute arbitrary web scripts via a crafted payload injected into the URL value of a link in the markdown content. This vulnerability is fixed in 0.13.1...

8.7CVSS7.5AI score0.00824EPSS
Exploits4References2
RedhatCVE
RedhatCVE
added 2024/07/16 3:55 p.m.21 views

CVE-2024-40920

A vulnerability was found in the Linux kernel's bridge subsystem, related to Multiple Spanning Tree MST. The brmstsetstate function was converted to use RCU to prevent a VLAN use-after-free, but fails to update the VLAN group dereference helper. This leads to warnings about improper RCU usage...

5.5CVSS8.2AI score0.00291EPSS
Exploits0References4
OSV
OSV
added 2024/07/11 3:37 p.m.20 views

CVE-2024-39904 Code Execution Vulnerability via Local File Path Traversal in Vnote

VNote is a note-taking platform. Prior to 3.18.1, a code execution vulnerability existed in VNote, which allowed an attacker to execute arbitrary programs on the victim's system. A crafted URI can be used in a note to perform this attack using file:/// as a link. For example,...

8.8CVSS7.6AI score0.00657EPSS
Exploits0References4
OSV
OSV
added 2024/07/10 6:25 p.m.33 views

CVE-2024-27090 Decidim vulnerable to data disclosure through the embed feature

Decidim is a participatory democracy framework, written in Ruby on Rails, originally developed for the Barcelona City government online and offline participation website. If an attacker can infer the slug or URL of an unpublished or private resource, and this resource can be embbeded such as a...

5.3CVSS6.5AI score0.00492EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2024/07/10 11:7 a.m.38 views

CVE-2024-39487

In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bondoptionarpiptargetsset In function bondoptionarpiptargetsset, if newval-string is an empty string, newval-string+1 will point to the byte after the string, causing an out-of-bound read. BUG:...

5.5CVSS6.6AI score0.0024EPSS
Exploits0References4
NVD
NVD
added 2024/07/06 6:15 p.m.36 views

CVE-2024-6095

A vulnerability in the /models/apply endpoint of mudler/localai versions 2.15.0 allows for Server-Side Request Forgery SSRF and partial Local File Inclusion LFI. The endpoint supports both https:// and file:// schemes, where the latter can lead to LFI. However, the output is limited due to the...

5.8CVSS0.02475EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/06/24 8:48 p.m.36 views

CVE-2023-45196

Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration limits. Adminer is no longer supported, but this issue was fixed in...

7.5CVSS5.5AI score0.00582EPSS
Exploits0
CVE
CVE
added 2024/06/24 1:52 p.m.183 views

CVE-2024-39291

CVE-2024-39291 (Linux kernel) affects the amdgpu path in gfx_v9_4_3.c. The vulnerable code path is gfx_v9_4_3_init_microcode() and related rlc/mec microcode init, where the ucode_prefix buffer was too small, risking truncation when writing strings like amdgpu/%s_rlc.bin or amdgpu/%s_mec.bin with ...

7.8CVSS8.6AI score0.00245EPSS
Exploits0References3Affected Software1
Rosalinux
Rosalinux
added 2024/06/17 9:9 a.m.38 views

Advisory ROSA-SA-2024-2434

Software: giflib 5.2.1 OS: ROSA-CHROME packageevrstring: giflib-5.2.1-4 CVE-ID: CVE-2023-39742 BDU-ID: 2023-05863 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the getarg.c component of the GIFLIB library for handling GIF files is related to a segmentation error. Exploitation of the vulnerabilit...

5.5CVSS5.7AI score0.01253EPSS
Exploits2
CVE
CVE
added 2024/06/06 6:8 p.m.72 views

CVE-2024-5128

CVE-2024-5128 affects lunary-ai/lunary up to version 1.2.2, with an IDOR in dataset management endpoints that lets unauthorized users view, update, or delete any dataset_prompt or dataset_prompt_variation. Root cause: insufficient access control checks via direct object IDs. Impact is information...

9.4CVSS9AI score0.00509EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2024/05/30 3:29 p.m.19 views

CVE-2024-36930 spi: fix null pointer dereference within spi_sync

In the Linux kernel, the following vulnerability has been resolved: spi: fix null pointer dereference within spisync If spisync is called with the non-empty queue and the same spimessage is then reused, the complete callback for the message remains set while the context is cleared, leading to a...

5.5CVSS6.1AI score0.00227EPSS
Exploits0References7
NVD
NVD
added 2024/05/30 1:15 p.m.26 views

CVE-2024-3584

qdrant/qdrant version 1.9.0-dev is vulnerable to path traversal due to improper input validation in the /collections/name/snapshots/upload endpoint. By manipulating the name parameter through URL encoding, an attacker can upload a file to an arbitrary location on the system, such as /root/poc.txt...

9.8CVSS9.3AI score0.00578EPSS
Exploits1References2
CVE
CVE
added 2024/05/21 3:31 p.m.157 views

CVE-2023-52837

In CVE-2023-52837, the Linux kernel fixed a use-after-free in nbd_open triggered when a disk is opened after nbd_put() because disk->private_data could still reference freed memory. The fix adds a dedicated ->free_disk hook that frees the private data as part of disk cleanup (blk_cleanup_di...

7.8CVSS6.7AI score0.00248EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2024/05/21 3:31 p.m.179 views

CVE-2023-52831

CVE-2023-52831 (Linux kernel) : The issue resides in cpu/hotplug logic when CPUs are isolated with isolcpus=. Offline-ing the last non-isolated (housekeeping) CPU can cause a WARN_ON in build_sched_domains and a subsequent panic due to an empty CPU mask in partition_sched_domains_locked(), leadin...

5.5CVSS6.7AI score0.0024EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/05/21 3:15 p.m.21 views

CVE-2021-47372

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use after free on rmmod platdev-dev-platformdata is released by platformdeviceunregister, use of pclk and hclk is a use-after-free. Since device unregister won't need a clk device we adjust the function call sequen...

7.8CVSS6.6AI score0.00242EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/05/21 3:3 p.m.14 views

CVE-2021-47373

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Fix potential VPE leak on error In itsvpeirqdomainalloc, when itsvpeinit returns an error, there is an off-by-one in the number of VPEs to be freed. Fix it by simply passing the number of VPEs allocated, which...

5.5CVSS6.6AI score0.00251EPSS
Exploits0
OSV
OSV
added 2024/05/20 9:59 p.m.25 views

CVE-2024-34710 Wiki.js Stored XSS through Client Side Template Injection

Wiki.js is al wiki app built on Node.js. Client side template injection was discovered, that could allow an attacker to inject malicious JavaScript into the content section of pages that would execute once a victim loads the page that contains the payload. This was possible through the injection ...

7.1CVSS6.9AI score0.00395EPSS
Exploits0References4
CVE
CVE
added 2024/05/17 2:47 p.m.135 views

CVE-2024-35849

CVE-2024-35849 affects the Linux kernel btrfs_ioctl_logical_to_ino path. The issue is an information leak: a struct btrfs_data_container allocated with kvmalloc() is copied back to user space without zero-filling, exposing uninitialized memory (Bytes 40-65535) to user-space. The root cause is lac...

7.1CVSS6.4AI score0.00256EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2024/05/09 2:29 p.m.49 views

CVE-2024-32655 Npgsql Vulnerable to SQL Injection via Protocol Message Size Overflow

Npgsql is the .NET data provider for PostgreSQL. The WriteBind method in src/Npgsql/Internal/NpgsqlConnector.FrontendMessages.cs uses int variables to store the message length and the sum of parameter lengths. Both variables overflow when the sum of parameter lengths becomes too large. This cause...

8.1CVSS8.4AI score0.01716EPSS
Exploits0References15
Rows per page
Query Builder