CVE-2024-0245

A misconfiguration in the AndroidManifest.xml file in hamza417/inure before build97 allows for task hijacking. This vulnerability permits malicious applications to inherit permissions of the vulnerable app, potentially leading to the exposure of sensitive information. An attacker can create a...

CVE-2024-0245 Task Hijacking in hamza417/inure

A misconfiguration in the AndroidManifest.xml file in hamza417/inure before build97 allows for task hijacking. This vulnerability permits malicious applications to inherit permissions of the vulnerable app, potentially leading to the exposure of sensitive information. An attacker can create a...

CVE-2024-0245

CVE-2024-0245 affects the Inure app (hamza417/inure) prior to build97. The root cause is a misconfiguration in AndroidManifest.xml, enabling task hijacking where a malicious app can inherit permissions and potentially access sensitive data when installed on the victim’s device. Impact is describe...

CVE-2024-0245 Task Hijacking in hamza417/inure

A misconfiguration in the AndroidManifest.xml file in hamza417/inure before build97 allows for task hijacking. This vulnerability permits malicious applications to inherit permissions of the vulnerable app, potentially leading to the exposure of sensitive information. An attacker can create a...

编号撤回

Dask is a parallel computing library with task scheduling from the Dask open source. This CVE number has been withdrawn...

Inure 信息泄露漏洞

Inure is an Android application manager by the individual developer Hamza Rizwan. An information disclosure vulnerability exists in versions prior to Inure build97, which stems from a misconfiguration of the AndroidManifest.xml file and could lead to task hijacking and disclosure of sensitive...

Malicious code in task_process (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b1e7a5dfb4ee6d32aa4572b0a03173d625939980cce6bb4240f1f8412e4f2acd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

[SECURITY] Fedora 42 Update: InsightToolkit-4.13.3-26.fc42

ITK is an open-source software toolkit for performing registration and segmentation. Segmentation is the process of identifying and classifying data found in a digitally sampled representation. Typically the sampled representation is an image acquired from such medical instrumentation as CT or MR...

CVE-2024-58088 bpf: Fix deadlock when freeing cgroup storage

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock when freeing cgroup storage The following commit bc235cdb423a "bpf: Prevent deadlock from recursive bpftaskstorageget|delete" first introduced deadlock prevention for fentry/fexit programs attaching on...

CVE-2024-58088 bpf: Fix deadlock when freeing cgroup storage

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock when freeing cgroup storage The following commit bc235cdb423a "bpf: Prevent deadlock from recursive bpftaskstorageget|delete" first introduced deadlock prevention for fentry/fexit programs attaching on...

February 11, 2025—KB5051979 (OS Build 20348.3207)

February 11, 2025—KB5051979 OS Build 20348.3207 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out wh...

February 11, 2025—KB5051980 (OS Build 25398.1425)

February 11, 2025—KB5051980 OS Build 25398.1425 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server, version 23H2, see its update history page. Improvements This security updat...

ZTE GoldenDB 安全漏洞

ZTE GoldenDB is a financial-grade transactional distributed database from China's ZTE Corporation ZTE. It is used in finance, government and enterprise, telecom and other industries to provide highly available data services. An elevation of privilege vulnerability exists in ZTE GoldenDB, which...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-53173)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53173 advisory. - In the Linux kernel, the following vulnerability has been resolved: NFSv4.0: Fix a use-after-free problem in...

WordPress School Management System for Wordpress plugin <= 92.0.0 - Authenticated (Subscriber+) SQL Injection via 'mj_smgt_show_event_task' vulnerability

Authenticated Subscriber+ SQL Injection via 'mjsmgtshoweventtask' vulnerability discovered by shaman0x01 in WordPress Plugin School Management versions = 92.0.0...

Linux Distros Unpatched Vulnerability : CVE-2025-21633

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iouring/sqpoll: zero sqd-thread on tctx errors Syzkeller reports: BUG: KASAN:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unbound work queue that causes delays in task execution...

Linux Distros Unpatched Vulnerability : CVE-2024-50079

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iouring/sqpoll: ensure task state is TASKRUNNING when running taskwork When the sqpoll is...

Linux Distros Unpatched Vulnerability : CVE-2024-50029

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: hciconn: Fix UAF in hcienhancedsetupsync This checks if the ACL connection remains valid as it could be destroyed while hcienhancedsetupsync is pendi...

Linux Distros Unpatched Vulnerability : CVE-2024-50223

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: sched/numa: Fix the potential null pointer dereference in tasknumawork When running...