Lucene search
K

22107 matches found

Microsoft CVE
Microsoft CVE
•added 2024/09/19 7:0 a.m.•39 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7.5AI score0.00954EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/19 7:0 a.m.•29 views

Microsoft Office Visio Remote Code Execution Vulnerability

...

7.8CVSS7.3AI score0.00595EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/19 7:0 a.m.•39 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

8.8CVSS8.8AI score0.00472EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/19 7:0 a.m.•25 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7.5AI score0.00717EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/19 7:0 a.m.•4 views

In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1 an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.

...

9.8CVSS6.9AI score0.00616EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/17 7:0 a.m.•27 views

Dynamics 365 Business Central Elevation of Privilege Vulnerability

Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network...

8.8CVSS6.8AI score0.00714EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/17 7:0 a.m.•30 views

GroupMe Elevation of Privilege Vulnerability

An improper access control vulnerability in GroupMe allows an a unauthenticated attacker to elevate privileges over a network...

9.8CVSS9.3AI score0.00788EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 7:0 a.m.•5 views

An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

...

9.8CVSS7.1AI score0.01393EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 7:0 a.m.•7 views

An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

...

9.8CVSS6.8AI score0.0113EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 7:0 a.m.•1 views

External DNS requests from 'internal' networks could lead to data exfiltration

...

7.5CVSS6.6AI score0.0075EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 7:0 a.m.•5 views

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.

...

9.8CVSS6.8AI score0.01686EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 12:5 a.m.•35 views

Chromium: CVE-2024-8639 Use after free in Autofill

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00344EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 12:5 a.m.•22 views

Chromium: CVE-2024-8638 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.0038EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 12:5 a.m.•23 views

Chromium: CVE-2024-8637 Use after free in Media Router

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00385EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 12:5 a.m.•25 views

Chromium: CVE-2024-8636 Heap buffer overflow in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00428EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 12:0 a.m.•4 views

CVE-2022-40898

...

7.5CVSS6.8AI score0.02659EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 10:37 p.m.•19 views

Chromium: CVE-2024-8198 Heap buffer overflow in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00396EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 10:37 p.m.•29 views

Chromium: CVE-2024-8194 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00376EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 10:37 p.m.•30 views

Chromium: CVE-2024-7970 Out of bounds write in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00491EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 10:37 p.m.•23 views

Chromium: CVE-2024-8362 Use after free in WebAudio

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00526EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

xen-netfront: Add missing skb_mark_for_recycle

...

5.5CVSS7.3AI score0.00253EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

wifi: wilc1000: fix RCU usage in connect path

...

9.1CVSS7.6AI score0.01635EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

xen/evtchn: avoid WARN() when unbinding an event channel

...

5.5CVSS7.6AI score0.00222EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

virtio: packed: fix unmap leak for indirect desc table

...

5.5CVSS8.7AI score0.00222EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

libbpf: Use OPTS_SET() macro in bpf_xdp_query()

...

5.5CVSS8.8AI score0.00272EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•12 views

net: phy: fix phy_get_internal_delay accessing an empty array

...

5.5CVSS6.3AI score0.00281EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•10 views

nfp: flower: handle acti_netdevs allocation failure

...

5.5CVSS6.7AI score0.00297EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

f2fs: fix to remove unnecessary f2fs_bug_on() to avoid panic

...

5.5CVSS6AI score0.00266EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

spi: spi-mt65xx: Fix NULL pointer access in interrupt handler

...

6.5CVSS7.3AI score0.01176EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

clk: Get runtime PM before walking tree during disable_unused

...

5.5CVSS7.7AI score0.00211EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•10 views

net: ethernet: mtk_eth_soc: fix PPE hanging issue

...

5.5CVSS7.6AI score0.00223EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

clk: mediatek: mt7622-apmixedsys: Fix an error handling path in clk_mt8135_apmixed_probe()

...

7.8CVSS7.3AI score0.00228EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak

...

5.5CVSS6AI score0.00289EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

media: go7007: fix a memleak in go7007_load_encoder

...

5.5CVSS6.7AI score0.00289EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•9 views

thermal/drivers/mediatek/lvts_thermal: Fix a memory leak in an error handling path

...

5.5CVSS6AI score0.00224EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

octeontx2-af: Use separate handlers for interrupts

...

6.3CVSS6.6AI score0.00203EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

clk: Get runtime PM before walking tree for clk_summary

...

5.5CVSS6.7AI score0.00173EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

interconnect: Don't access req_list while it's being manipulated

...

6.3CVSS7.2AI score0.00178EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled

...

5.5CVSS7.3AI score0.00175EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•1 views

gfs2: Fix potential glock use-after-free on unmount

...

7.8CVSS7.3AI score0.00248EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.

...

9.1CVSS7AI score0.00971EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

ASoC: SOF: amd: Fix memory leak in amd_sof_acp_probe()

...

5.5CVSS7.4AI score0.00224EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•8 views

Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init()

...

6.5CVSS7.3AI score0.00215EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node

...

5.5CVSS7.3AI score0.00228EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•1 views

io_uring/af_unix: disable sending io_uring over sockets

...

5.5CVSS7.6AI score0.00795EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•1 views

NTB: fix possible name leak in ntb_register_device()

...

5.5CVSS7.7AI score0.00273EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

drm/vkms: Avoid reading beyond LUT array

...

7.8CVSS6.3AI score0.00277EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

media: nxp: imx8-isi: Check whether crossbar pad is non-NULL before access

...

5.5CVSS8.7AI score0.00222EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

Bluetooth: btusb: mediatek: Fix double free of skb in coredump

...

7.8CVSS6.6AI score0.00248EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•11 views

media: tc358743: register v4l2 async device only after successful setup

...

5.5CVSS7.7AI score0.00232EPSS
Exploits0
Total number of security vulnerabilities22107