CVE-2024-25423

An issue in MAXON CINEMA 4D R2024.2.0 allows a local attacker to execute arbitrary code via a crafted c4dbase.xdl64 file...

CVE-2023-7245

The nodejs framework in OpenVPN Connect 3.0 through 3.4.3 Windows/3.4.7 macOS was not properly configured, which allows a local user to execute arbitrary code within the nodejs process context via the ELECTRONRUNASNODE environment variable...

CVE-2023-39683

Cross Site Scripting XSS vulnerability in EasyEmail v.4.12.2 and before allows a local attacker to execute arbitrary code via the user input parameters. NOTE: Researcher claims issue is present in all versions prior and later than tested version...

PT-2024-21143 · Eza · Eza

Name of the Vulnerable Software and Affected Versions: eza versions prior to 0.18.2 Description: The issue is a Buffer Overflow vulnerability that allows local attackers to execute arbitrary code via the .git/HEAD, .git/refs, and .git/objects components. This vulnerability seems to be triggered b...

CVE-2024-20812

Out-of-bounds Write in padmdvldhtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...

CVE-2024-20813

Out-of-bounds Write in padmdvldqtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...

CVE-2024-20812

Out-of-bounds Write in padmdvldhtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code...

Low: jasper

Issue Overview: An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code. CVE-2023-51257 Affected Packages: jasper Issue Correction: Run dnf update jasper --releasever 2023.3.20240205 or dnf update --advisory ALAS2023-2024-511...

PT-2024-18719 · Unknown · Libpadm.So

Name of the Vulnerable Software and Affected Versions: libpadm.so versions prior to SMR Feb-2024 Release 1 Description: The issue is an out-of-bounds write in the padmd vld htbl of libpadm.so, allowing a local attacker to execute arbitrary code. Recommendations: For versions prior to SMR Feb-2024...

PT-2024-18720 · Unknown · Libpadm.So

Name of the Vulnerable Software and Affected Versions: libpadm.so versions prior to SMR Feb-2024 Release 1 Description: The issue is an out-of-bounds write in the padmd vld qtbl of libpadm.so, allowing a local attacker to execute arbitrary code. Recommendations: For versions prior to SMR Feb-2024...

USN-6620-1 glibc vulnerabilities

It was discovered that the GNU C Library incorrectly handled the syslog function call. A local attacker could use this issue to execute arbitrary code and possibly escalate privileges...

CVE-2023-51835

An issue in TRENDnet TEW-822DRE v.1.03B02 allows a local attacker to execute arbitrary code via the parameters ipv4ping in the /boafrm/formSystemCheck...

PT-2024-14308 · Trendnet · Trendnet Tew-822Dre

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-822DRE version 1.03B02 Description: An issue allows a local attacker to execute arbitrary code via the ipv4 ping parameter in the "/boafrm/formSystemCheck" API endpoint. Recommendations: For TRENDnet TEW-822DRE version 1.03B02,...

SUSE CVE-2024-21803

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

CVE-2024-21803

NVD describes an after-free vulnerability found in the Linux kernel in the Linux x86 ARM Bluetooth module that allows local code execution. This vulnerability is associated with the program file, https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects...

AZL-34875 CVE-2024-21803 affecting package kernel for versions less than 6.6.35.1-4

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

AZL-34203 CVE-2024-21803 affecting package kernel for versions less than 5.15.158.1-1

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

DEBIAN-CVE-2024-21803

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

UBUNTU-CVE-2024-21803

Use After Free vulnerability in Linux Linux kernel kernel on Linux, x86, ARM bluetooth modules allows Local Execution of Code. This vulnerability is associated with program files https://gitee.Com/anolis/cloud-kernel/blob/devel-5.10/net/bluetooth/afbluetooth.C. This issue affects Linux kernel: fr...

PT-2024-19620 · Bosscms · Bosscms

Name of the Vulnerable Software and Affected Versions: BossCMS version 1.3.0 Description: The issue allows a local attacker to execute arbitrary code and escalate privileges. This is achieved via the init function in the admin.class.php component. Recommendations: For BossCMS version 1.3.0,...