Jan 安全漏洞

Jan is an open source replacement for ChatGPT by Jan Open Source. A security vulnerability exists in Jan 0.5.14 and earlier versions, which originates from a remote code execution that may be triggered when a user clicks on a link rendered in a session...

Qualcomm Chipsets 缓冲区错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A buffer error vulnerability exists in Qualcomm Chipsets that stems from an invalid session link count in Camera Request Manager, which could lead to memory corruption when processing scheduling requests...

CVE-2024-5995

CVE-2024-5995 affects Soar Cloud HR Portal. The issue is insufficient session expiration: a link sent via notification emails contains an embedded session that is not properly expired and can remain valid for more than 7 days, enabling reuse. The vulnerability has a CVSSv3.1 base score of 8.8 (HI...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm, an American company. A security vulnerability exists in Qualcomm Chipsets that stems from the camgetdevicepriv function not checking the type of handle device/session/link returned...

SUSE CVE-2012-0871

The sessionlinkx11socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/...