CVE-2024-21467 Buffer Over-read in WLAN Host Communication

Information disclosure while handling beacon probe frame during scan entry generation in client side...

PT-2024-25061 · Qualcomm · Snapdragon +181

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a Transient Denial of Service DOS that occurs while parsing SCAN RNR IE. This happens when the size of the last parameter of IE ...

PT-2024-18888 · Qualcomm · Snapdragon +122

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves information disclosure when handling beacon probe frames during scan entry generation on the client side. Recommendations: At the...

Exploit for Unrestricted Upload of File with Dangerous Type in Chamilo Chamilo_Lms

Chamilo LMS Unauthenticated RCE PoC This is a script written...

CVE-2024-42125

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband We have some policy via BIOS to block uses of 6 GHz. In this case, 6 GHz sband will be NULL even if it is WiFi 7 chip. So, add NULL handling here to avoid...

UBUNTU-CVE-2024-42125

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband We have some policy via BIOS to block uses of 6 GHz. In this case, 6 GHz sband will be NULL even if it is WiFi 7 chip. So, add NULL handling here to avoid...

CVE-2024-42125 wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fw: scan offload prohibit all 6 GHz channel if no 6 GHz sband We have some policy via BIOS to block uses of 6 GHz. In this case, 6 GHz sband will be NULL even if it is WiFi 7 chip. So, add NULL handling here to avoid...

DEBIAN-CVE-2024-41072

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check In 'cfg80211wextsiwscan', add extra check whether number of channels passed via 'ioctlsock, SIOCSIWSCAN, ...' doesn't exceed IWMAXFREQUENCIES and reject invalid request with...

libxml2 代码问题漏洞

libxml2 is a GNOME open source library for parsing XML documents. It is written in C and can be called by many languages, such as C, C++, and XSH. A code issue vulnerability exists in libxml2. An attacker could use this vulnerability to transfer malicious XML data to libxml2 in order to read file...

Hikvision Video Recorders Buffer Overflow (CVE-2023-28811)

A buffer overflow vulnerability exists in the password recovery feature of Hikvision NVR/DVR models. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device. This plugin only works with...

NVIDIA CUDA Toolkit < 12.6 (July 2024)

The version of NVIDIA CUDA Toolkit installed on the remote host is prior to 12.6. It is, therefore, affected by a denial of service vulnerability as referenced in the July 2024 advisory. An unauthenticated, local attacker, can exploit this, by deceiving a user into reading a malformed ELF file, t...

GHSA-G4M4-9Q4C-MFW6 Fiona affected by CVE-2020-14152 related to madler-zlib

Summary Vulnerability scan of fiona shows CVE-2020-14152. The vulnerability is in libjpeg, a transitive dependency of fiona via GDAL and PROJ. Details In IJG JPEG aka libjpeg before 9d, jpegmemavailable in jmemnobs.c in djpeg does not honor the maxmemorytouse setting, possibly causing excessive...

Fiona affected by CVE-2020-14152 related to madler-zlib

Summary Vulnerability scan of fiona shows CVE-2020-14152. The vulnerability is in libjpeg, a transitive dependency of fiona via GDAL and PROJ. Details In IJG JPEG aka libjpeg before 9d, jpegmemavailable in jmemnobs.c in djpeg does not honor the maxmemorytouse setting, possibly causing excessive...

CVE-2024-40928

CVE-2024-40928 – Linux kernel ethtool statistics fix : The issue arises from a null function pointer in ethtool_get_phy_stats when performing phy stats ioctl. The patch fixes the error handling by returning -EOPNOTSUPP when ops-&gt;get_ethtool_phy_stats is NULL, preventing a null-dereference in n...

CVE-2024-40928 net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool()

In the Linux kernel, the following vulnerability has been resolved: net: ethtool: fix the error condition in ethtoolgetphystatsethtool Clang static checker scan-build warning: net/ethtool/ioctl.c:line 2233, column 2 Called function pointer is null null dereference. Return '-EOPNOTSUPP' when...

CVE-2023-48194

Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. After executing setclientqos, control over the gp register can be obtained...

Exploit for Unrestricted Upload of File with Dangerous Type in Chamilo Chamilo_Lms

Chamilo LMS Unauthenticated Big Upload File RCE PoC This is a...

CBL Mariner 2.0 Security Update: nodejs / nodejs18 (CVE-2024-22019)

The version of nodejs / nodejs18 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-22019 advisory. - A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP reque...

AlmaLinux 8 : nghttp2 (ALSA-2024:4252)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:4252 advisory. nghttp2: CONTINUATION frames DoS CVE-2024-28182 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note that Ness...

PT-2024-32243

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue occurs when a host attempts to remove the ufshcd driver from a UFS device, potentially causing a kernel panic if ufshcd async scan fails during ufshcd probe hba before adding a...