PT-2024-5843 · D Link · D-Link Dir-846

Name of the Vulnerable Software and Affected Versions: D-Link DIR-846W A1 FW100A43 Description: A remote command execution vulnerability was discovered in the D-Link DIR-846W A1 FW100A43, related to the SetSmartQoSSettings function. This issue allows a remote attacker to execute arbitrary code by...

D-Link DIR-846W 安全漏洞

D-Link DIR-846W is a dual-band Gigabit wireless router with second-generation 11AC technology and MU-MIMO technology, supporting dual-band concurrent transmission rates up to 1200Mbps for 200M and above broadband users. The D-Link DIR-846W suffers from a command execution vulnerability that...

Exploit for Incorrect Authorization in Apache Ofbiz

CVE-2024-38856 For Ethical Usage only, Any harmful or malicio...

PT-2024-5718 · Apache · Apache Cloudstack

Name of the Vulnerable Software and Affected Versions: Apache CloudStack version 4.19.1.0 Description: The issue is related to a regression in the network listing API, allowing unauthorized list access of network details for domain admin and normal user accounts. This compromises tenant isolation...

CVE-2024-39947

A vulnerability has been found in Dahua products.After obtaining the ordinary user's username and password, the attacker can send a carefully crafted data packet to the interface with vulnerabilities, causing the device to crash...

SUSE CVE-2020-28598

An out-of-bounds write vulnerability exists in the Admesh stlfixnormaldirections functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted AMF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

kernel: net: ena: Fix incorrect descriptor free behavior

This is a vulnerability in the Linux kernel's Elastic Network Adapter ENA driver, which manages network interfaces on certain platforms. The driver utilizes two types of transmit TX queues: one for packets from the network stack and another for packets directed by XDP eXpress Data Path operations...

The vulnerability of the pch_can_rx_normal() function in the Linux operating system’s CAN controller area network driver allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the pchcanrxnormal function in the drivers/net/can/pchcan.c file of the Linux operating system’s CAN controller area network driver is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

PT-2024-35781 · Unknown · Phpgurukul Zoo Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Zoo Management System version 2.1 Description: A critical issue was found in the PHPGurukul Zoo Management System, affecting some unknown functionality of the file /admin/normal-search.php. The manipulation of the searchdata argume...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which originates from the can:pchcan:pchcanrxnormal module reuse after release...

SUSE CVE-2024-35842

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: sof-common: Add NULL check for normallink string It's not granted that all entries of struct sofconnstream declare a normallink a non-SOF, direct link string, and this is the case for SoCs that support only SOF...

UBUNTU-CVE-2024-35842

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: sof-common: Add NULL check for normallink string It's not granted that all entries of struct sofconnstream declare a normallink a non-SOF, direct link string, and this is the case for SoCs that support only SOF...

CVE-2024-31479

CVE-2024-31479 affects Aruba Networks ArubaOS and ArubaOS InstantOS, with an unauthenticated Denial of Service against the Central Communications service accessible via the PAPI protocol. The vulnerability can interrupt normal operation of the affected service. Connected sources confirm vulnerabl...

CVE-2024-33515

CVE-2024-33515 affects ArubaOS AP Management service via the PAPI protocol, enabling unauthenticated DoS by exploiting the PAPI UDP port (8211). Public references indicate affected ArubaOS versions (8.10.x/8.11.x/10.4.x/10.5.x) with fixes available in ArubaOS 10.6.0.0, 10.5.1.1, 10.4.1.1, 8.11.2....

kernel: vmxnet3: NULL pointer dereference in vmxnet3_rq_cleanup()

A NULL pointer dereference flaw was found in vmxnet3rqcleanup in drivers/net/vmxnet3/vmxnet3drv.c in the networking sub-component in vmxnet3 in the Linux Kernel. This issue may allow a local attacker with normal user privilege to cause a denial of service due to a missing sanity check during...

CVE-2023-38295

Certain software builds for the TCL 30Z and TCL 10 Android devices contain a vulnerable, pre-installed app that relies on a missing permission that provides no protection at runtime. The missing permission is required as an access permission by components in various pre-installed apps. On the TCL...

SUSE CVE-2021-47189

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory ordering between normal and ordered work functions Ordered work functions aren't guaranteed to be handled by the same thread which executed the normal work functions. The only way execution between normal/ordere...

DEBIAN-CVE-2021-47189

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory ordering between normal and ordered work functions Ordered work functions aren't guaranteed to be handled by the same thread which executed the normal work functions. The only way execution between normal/ordere...

UBUNTU-CVE-2021-47189

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory ordering between normal and ordered work functions Ordered work functions aren't guaranteed to be handled by the same thread which executed the normal work functions. The only way execution between normal/ordere...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a security flaw in the memory ordering between normal and ordered working functions...