9572 matches found
CVE-2024-54122
Concurrent variable access vulnerability in the ability module Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2024-54122
Concurrent variable access vulnerability in the ability module Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2024-54122
Concurrent variable access vulnerability in the ability module Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2024-54122
CVE-2024-54122 describes a concurrent variable access vulnerability in the Huawei HarmonyOS ability module. The combined documents indicate local attack vector with impact on availability; CVSS analyses show a mix of factors with a notable availability impact in the NVD entry (base score 4.7) and...
CVE-2024-54122
Concurrent variable access vulnerability in the ability module Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2024-47540
A flaw was found in the Matroska/WebM demuxer in the GStreamer library. Processing a specially crafted input file can cause the usage of uninitialized stack memory, allowing calls to uninitialized function pointers, potentially resulting in code execution or an application crash. Mitigation Do no...
drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA
...
SUSE CVE-2024-54131
The Kolide Agent aka: Launcher is the lightweight agent designed to work with Kolide's service. An implementation bug in the Kolide Agent known as launcher allows for local privilege escalation to the SYSTEM user on Windows 10 and 11. The bug was introduced in version 1.5.3 when launcher started...
DEBIAN-CVE-2024-47540
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. When size allocator-memunmapfull or mem-allocator-memunmap. This vulnerability coul...
CVE-2024-47540
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. When size allocator-memunmapfull or mem-allocator-memunmap. This vulnerability coul...
Rockwell Automation Arena < 16.20.06 Multiple Vulnerabilities
The version of Rockwell Automation Arena installed on the remote Windows host is prior to 16.20.06. It is, therefore, affected by a number of different vulnerabilities - A âuse after freeâ code execution vulnerability exists in the affected products that could allow a threat actor to craft a...
php:7.4 security update
libzip 1.6.1-1 - update to 1.6.1 - enable lzma support php 7.4.33-2 - fix low/moderate CVEs RHEL-66589 - Fix cgi.forceredirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of...
PT-2024-36054 · Unknown · Ability Module
Name of the Vulnerable Software and Affected Versions: Ability module affected versions not specified Description: The issue concerns a concurrent variable access vulnerability in the ability module. Successful exploitation of this vulnerability may affect availability. Recommendations: At the...
CVE-2024-47540
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. When size allocator-memunmapfull or mem-allocator-memunmap. This vulnerability coul...
CVE-2024-47540
CVE-2024-47540 affects GStreamer, caused by an uninitialized stack variable in gst_matroska_demux_add_wvpk_header (matroska-demux.c). When size
CVE-2024-47540 GHSL-2024-197: GStreamer uses uninitialized stack memory in Matroska/WebM demuxer
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. When size allocator-memunmapfull or mem-allocator-memunmap. This vulnerability coul...
CVE-2024-47540
GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. When size allocator-memunmapfull or mem-allocator-memunmap. This vulnerability coul...
SiYuan has an SSTI via /api/template/renderSprig
Summary Siyuan's /api/template/renderSprig endpoint is vulnerable to Server-Side Template Injection SSTI through the Sprig template engine. Although the engine has limitations, it allows attackers to access environment variables Impact Information leakage...
php: cgi.force_redirect configuration is bypassable due to the environment variable collision
A flaw was found in PHP. The configuration directive cgi.forceredirect prevents anyone from calling PHP directly with a URL such as http://host.example/cgi-bin/php/secretdir/script.php. However, in certain uncommon configurations, an attacker may be able to bypass this restriction and access...
php: cgi.force_redirect configuration is bypassable due to the environment variable collision
A flaw was found in PHP. The configuration directive cgi.forceredirect prevents anyone from calling PHP directly with a URL such as http://host.example/cgi-bin/php/secretdir/script.php. However, in certain uncommon configurations, an attacker may be able to bypass this restriction and access...