Lucene search
K

199 matches found

Vulnrichment
Vulnrichment
added 2025/02/26 2:13 a.m.1 views

CVE-2022-49538 ALSA: jack: Access input_dev under mutex

In the Linux kernel, the following vulnerability has been resolved: ALSA: jack: Access inputdev under mutex It is possible when using ASoC that inputdev is unregistered while calling sndjackreport, which causes NULL pointer dereference. In order to prevent this serialize access to inputdev using...

6AI score0.00255EPSS
Exploits0References9
CVE
CVE
added 2025/02/26 2:13 a.m.145 views

CVE-2022-49538

CVE-2022-49538 affects the Linux kernel’s ALSA jack path in ASoC. The issue arises when input_dev is unregistered while snd_jack_report is called, potentially causing a NULL pointer dereference. The documented fix is to serialize access to input_dev using a mutex. The connected sources confirm th...

5.5CVSS6.5AI score0.00255EPSS
Exploits0References9Affected Software1
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not accessing inputdev under a mutex lock during a call to sndjackreport, which could result in a null point...

5.5CVSS5.2AI score0.00255EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/02/05 5:47 a.m.6 views

CVE-2024-49610

Unrestricted Upload of File with Dangerous Type vulnerability in photokiteditor photokit photokit allows Upload a Web Shell to a Web Server.This issue affects photokit: from n/a through = 1.0...

10CVSS5.9AI score0.00501EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2025/01/12 12:0 a.m.213 views

CISA: Jack Rabbit II Update and Impacts

System About Files News Vote Help | Services API Advertise Contact | Account Join Login ---|---|---...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2025/01/12 12:0 a.m.150 views

CISA: Jack Rabbit III Initiatives

System About Files News Vote Help | Services API Advertise Contact | Account Join Login ---|---|---...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/11/20 12:0 a.m.4 views

The vulnerabilities of AsoC components in the Linux operating system’s kernel allow attackers to trigger service failures.

The vulnerability of the AsoC components in the Linux operating system’s kernel is related to improper input validation in the sofsdwRtsdcajackexit function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00222EPSS
Exploits0References20Affected Software3
CNNVD
CNNVD
added 2024/10/23 12:0 a.m.16 views

Botan 安全漏洞

Botan is a C++ cryptographic library by the individual developer Jack Lloyd. A security vulnerability exists in versions of Botan prior to 3.6.0, which stems from a compiler-caused secret dependency operation when compiling with some versions of GCC. An addition operation could be skipped if the...

5.9CVSS6.7AI score0.00542EPSS
Exploits1References5
NVD
NVD
added 2024/10/20 9:15 a.m.20 views

CVE-2024-49610

Unrestricted Upload of File with Dangerous Type vulnerability in photokiteditor photokit photokit allows Upload a Web Shell to a Web Server.This issue affects photokit: from n/a through = 1.0...

10CVSS0.00501EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/20 8:38 a.m.28 views

CVE-2024-49610 WordPress photokit plugin <= 1.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in photokiteditor photokit photokit allows Upload a Web Shell to a Web Server.This issue affects photokit: from n/a through = 1.0...

10CVSS0.00501EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/20 8:38 a.m.13 views

CVE-2024-49610 WordPress photokit plugin <= 1.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Jack Zhu allows Upload a Web Shell to a Web Server.This issue affects photokit: from n/a through 1.0...

10CVSS9.4AI score0.00501EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/10/04 2:56 p.m.5 views

WordPress Ultimate Member plugin <= 2.8.6 - Cross-Site Request Forgery to Membership Status Change vulnerability

Cross-Site Request Forgery to Membership Status Change vulnerability discovered by Jack Taylor in WordPress Plugin Ultimate Member versions = 2.8.6...

5.3CVSS7AI score0.00314EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/27 5:39 a.m.3 views

WordPress Reviews Feed plugin <= 1.1.2 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by Sajjad Ahmad jacksparrow in WordPress Plugin Reviews Feed versions = 1.1.2...

4.3CVSS7AI score0.00213EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/19 5:10 p.m.4 views

WordPress Custom Field Suite plugin <= 2.6.7 - Authenticated Stored Cross-Site Scripting vulnerability

Authenticated Stored Cross-Site Scripting vulnerability discovered by Jack Taylor in WordPress Plugin Custom Field Suite versions = 2.6.7...

6.4CVSS5.8AI score0.00413EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/06/11 8:8 a.m.6 views

WordPress Download Manager plugin <= 3.2.92 - Authenticated Stored Cross-Site Scripting vulnerability

Authenticated Stored Cross-Site Scripting vulnerability discovered by Jack Taylor in WordPress Plugin Download Manager versions = 3.2.92...

6.4CVSS5.8AI score0.00416EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/11 7:56 a.m.5 views

WordPress Custom Field Suite plugin <= 2.6.7 - Authenticated Stored Cross-Site Scripting vulnerability

Authenticated Stored Cross-Site Scripting vulnerability discovered by Jack Taylor in WordPress Plugin Custom Field Suite versions = 2.6.7...

6.4CVSS5.8AI score0.00336EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/21 2:1 a.m.8 views

SUSE CVE-2023-52697

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sofsdwrtsdcajackcommon: ctx-headsetcodecdev = NULL sofsdwrtsdcajackexit are used by different codecs, and some of them use the same dai name. For example, rt712 and rt713 both use "rt712-sdca-aif1" and...

5.5CVSS6.7AI score0.00222EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2024/04/10 2:16 a.m.8 views

SUSE CVE-2024-26722

In the Linux kernel, the following vulnerability has been resolved: ASoC: rt5645: Fix deadlock in rt5645jackdetectwork There is a path in rt5645jackdetectwork, where rt5645-jdmutex is left locked forever. That may lead to deadlock when rt5645jackdetectwork is called for the second time. Found by...

5.5CVSS6.3AI score0.00182EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2024/04/03 11:45 p.m.38 views

CVE-2024-26722

In the Linux kernel, the following vulnerability has been resolved: ASoC: rt5645: Fix deadlock in rt5645jackdetectwork There is a path in rt5645jackdetectwork, where rt5645-jdmutex is left locked forever. That may lead to deadlock when rt5645jackdetectwork is called for the second time. Found by...

4.4CVSS6.9AI score0.00182EPSS
Exploits0References4
OSV
OSV
added 2024/04/03 3:15 p.m.2 views

DEBIAN-CVE-2024-26722

In the Linux kernel, the following vulnerability has been resolved: ASoC: rt5645: Fix deadlock in rt5645jackdetectwork There is a path in rt5645jackdetectwork, where rt5645-jdmutex is left locked forever. That may lead to deadlock when rt5645jackdetectwork is called for the second time. Found by...

5.5CVSS5.4AI score0.00182EPSS
Exploits0References1
Rows per page
Query Builder