2 matches found
CVE-2024-39020
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/vpsApiDatadeal.php?mudi=rev&nohrefStr=close...
kernel: cifs: always do is_path_accessible check in cifs_mount
The setupcifssb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service system crash by placing a referral at the root of a share...