5 matches found
CVE-2024-33057
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location...
CVE-2024-33057
CVE-2024-33057 concerns Qualcomm WLAN components and describes a Transient Denial of Service caused by parsing the multi-link element Control field when a common information length check is missing before updating the location. The primary documentation lists a High impact (CVSSv3.1: 7.5) with a ...
GHSA-53JX-4WWH-GCQJ Malicious Package in angular-location-update
Version 0.0.3 of angular-location-update contained malicious code. The code when executed in the browser would enumerate password, cvc and cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation Remove the package from your environment and...
Linux kernel denial of service vulnerability (CNVD-2020-02587)
The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A denial of service vulnerability exists in Linux kernel versions prior to 5.3. An attacker can exploit this...
Malicious Package
Overview Version 0.0.3 of angular-location-update contained malicious code. The code when executed in the browser would enumerate password, cvc and cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation Remove the package from your...