125 matches found
EUVD-2024-31334
Malicious code in bioql PyPI...
EUVD-2023-44763
Malicious code in bioql PyPI...
CVE-2023-40156
Uncontrolled search path element in some IntelR SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
November 12, 2024—KB5046661 (Monthly Rollup)
None None...
November 12, 2024—KB5046665 (OS Build 10240.20826) - EXPIRED
None None...
November 12, 2024—Hotpatch KB5046696 (OS Build 26100.2240)
None None...
SUSE CVE-2024-46833
In the Linux kernel, the following vulnerability has been resolved: net: hns3: void array out of bound when loop tnlnum When query reg inf of SSU, it loops tnlnum times. However, tnlnum comes from hardware and the length of array is a fixed value. To void array out of bound, make sure the loop ti...
CVE-2024-46833
An out-of-bounds memory access flaw was found in the Linux kernel’s Hisilicon Network driver in how the hardware returns an incorrect value to the driver. This flaw allows a local user to crash or potentially escalate their privileges on the system if using malicious hardware. Mitigation Mitigati...
UBUNTU-CVE-2024-46833
In the Linux kernel, the following vulnerability has been resolved: net: hns3: void array out of bound when loop tnlnum When query reg inf of SSU, it loops tnlnum times. However, tnlnum comes from hardware and the length of array is a fixed value. To void array out of bound, make sure the loop ti...
CVE-2024-46833 net: hns3: void array out of bound when loop tnl_num
In the Linux kernel, the following vulnerability has been resolved: net: hns3: void array out of bound when loop tnlnum When query reg inf of SSU, it loops tnlnum times. However, tnlnum comes from hardware and the length of array is a fixed value. To void array out of bound, make sure the loop ti...
CVE-2024-46833
CVE-2024-46833 is a Linux kernel vulnerability in the net:hns3 driver where SSU reg info reads loop up to tnl_num, which is hw-derived and not the array length, causing an out-of-bounds read. The description states the fix is to bound the loop so it does not exceed the array length. The connected...
September 10, 2024—Hotpatch KB5042880 (OS Build 20348.2695)
None None...
July 9, 2024—KB5040437 (OS Build 20348.2582)
None None...
June 11, 2024—KB5039289 (Monthly Rollup)
None None...
May 23, 2024—KB5039705 (OS Build 17763.5830) Out-of-band - EXPIRED
None None...
May 14, 2024—KB5037763 (OS Build 14393.6981) - EXPIRED
None None...
May 14, 2024—KB5037770 (OS Build 22000.2960)
None None...
May 14, 2024—KB5037836 (Security-only update)
None None...
SSU < 1.5.1 - Missing Authorization
Description The SSU plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the deleteawsoptions function in versions up to, and including, 1.5.0. This makes it possible for unauthenticated attackers to delete AWS options...
CVE-2024-33597
Missing Authorization vulnerability in ProFaceOff SSU.This issue affects SSU: from n/a through 1.5.0...