CVE List - 2024 / November
Showing 2801 - 2900 of 4054 CVEs for November 2024 (Page 29 of 41)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-53086 | 2024-11-19 | drm/xe: Drop VM dma-resv lock on xe_sync_in_fence_get failure in exec IOCTL |
| CVE-2024-53087 | 2024-11-19 | drm/xe: Fix possible exec queue leak in exec IOCTL |
| CVE-2024-53088 | 2024-11-19 | i40e: fix race condition by adding filter's intermediate sync state |
| CVE-2017-13315 | 2024-11-19 | In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to a write size mismatch. This could lead to an elevation of privileges where the user can start... |
| CVE-2023-21270 | 2024-11-19 | In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an app to keep permissions that should be revoked due to incorrect permission flags cleared during an update. This could... |
| CVE-2018-9338 | 2024-11-19 | In ResStringPool::setTo of ResourceTypes.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution... |
| CVE-2024-50430 | 2024-11-19 | WordPress Beaver Builder plugin <= 2.8.3.7 - Cross Site Scripting (XSS) vulnerability |
| CVE-2018-9339 | 2024-11-19 | In writeTypedArrayList and readTypedArrayList of Parcel.java, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with no additional execution privileges... |
| CVE-2018-9340 | 2024-11-19 | In ResStringPool::setTo of ResourceTypes.cpp, it's possible for an attacker to control the value of mStringPoolSize to be out of bounds, causing information disclosure. |
| CVE-2018-9341 | 2024-11-19 | In impeg2d_mc_fullx_fully of impeg2d_mc.c there is a possible out of bound write due to missing bounds check. This could lead to remote arbitrary code execution with no additional execution privileges... |
| CVE-2018-9344 | 2024-11-19 | In several functions of DescramblerImpl.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed.... |
| CVE-2024-21697 | 2024-11-19 | This High severity RCE (Remote Code Execution) vulnerability was introduced in versions 4.2.8 of Sourcetree for Mac and 3.4.19 for Sourcetree for Windows. This RCE (Remote Code Execution) vulnerability, with... |
| CVE-2024-51503 | 2024-11-19 | A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate privileges and execute arbitrary code on an affected... |
| CVE-2018-9345 | 2024-11-19 | In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is... |
| CVE-2018-9346 | 2024-11-19 | In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is... |
| CVE-2018-9348 | 2024-11-19 | In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to remote denial of service due to resource exhaustion with no additional execution privileges needed. User interaction... |
| CVE-2018-9364 | 2024-11-19 | In the LG LAF component, there is a special command that allowed modification of certain partitions. This could lead to bypass of secure boot. User interaction is not needed for... |
| CVE-2024-11395 | 2024-11-19 | Type Confusion in V8 in Google Chrome prior to 131.0.6778.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
| CVE-2018-9366 | 2024-11-19 | In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with... |
| CVE-2018-9367 | 2024-11-19 | In FT_ACDK_CCT_V2_OP_ISP_SET_TUNING_PARAS of Meta_CCAP_Para.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges... |
| CVE-2018-9368 | 2024-11-19 | In mtkscoaudio debugfs there is a possible arbitrary kernel memory write due to missing bounds check and weakened SELinux policies. This could lead to local escalation of privilege with system... |
| CVE-2018-9369 | 2024-11-19 | In bootloader there is fastboot command allowing user specified kernel command line arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is... |
| CVE-2018-9370 | 2024-11-19 | In download.c there is a special mode allowing user to download data into memory and causing possible memory corruptions due to missing bounds check. This could lead to local escalation... |
| CVE-2018-9371 | 2024-11-19 | In the Mediatek Preloader, there are out of bounds reads and writes due to an exposed interface that allows arbitrary peripheral memory mapping with insufficient blacklisting/whitelisting. This could lead to... |
| CVE-2018-9372 | 2024-11-19 | In cmd_flash_mmc_sparse_img of dl_commands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader... |
| CVE-2024-37070 | 2024-11-19 | IBM Concert Software information disclosure |
| CVE-2018-9409 | 2024-11-19 | In HWCSession::SetColorModeById of hwc_session.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution... |
| CVE-2024-45419 | 2024-11-19 | Zoom Apps - Improper Input Validation |
| CVE-2024-52360 | 2024-11-19 | IBM Concert Software SQL injection |
| CVE-2024-45420 | 2024-11-19 | Zoom Apps - Uncontrolled Resource Consumption |
| CVE-2024-52359 | 2024-11-19 | IBM Concert Software improper access controls |
| CVE-2024-45422 | 2024-11-19 | Zoom Apps - Improper Input Validation |
| CVE-2018-9365 | 2024-11-19 | In smp_data_received of smp_l2c.cc, there is a possible out of bounds read followed by code execution due to a missing bounds check. This could lead to remote code execution with... |
| CVE-2018-9410 | 2024-11-19 | In analyzeAxes of FontUtils.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges... |
| CVE-2018-9411 | 2024-11-19 | In decrypt of ClearKeyCasPlugin.cpp there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed.... |
| CVE-2018-9412 | 2024-11-19 | In removeUnsynchronization of ID3.cpp there is a possible resource exhaustion due to improper input validation. This could lead to denial of service with no additional execution privileges needed. User interaction... |
| CVE-2018-9417 | 2024-11-19 | In f_hidg_read and hidg_disable of f_hid.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User... |
| CVE-2018-9419 | 2024-11-19 | In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges... |
| CVE-2018-9420 | 2024-11-19 | In BnCameraService::onTransact of CameraService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is... |
| CVE-2018-9421 | 2024-11-19 | In writeInplace of Parcel.cpp, there is a possible information leak across processes, using Binder, due to uninitialized data. This could lead to local information disclosure with no additional execution privileges... |
| CVE-2018-9424 | 2024-11-19 | In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution... |
| CVE-2018-9428 | 2024-11-19 | In startDevice of AAudioServiceStreamBase.cpp there is a possible out of bounds write due to a use after free. This could lead to local arbitrary code execution with no additional execution... |
| CVE-2018-9432 | 2024-11-19 | In createPhonebookDialogView and createMapDialogView of BluetoothPermissionActivity.java, there is a possible permissions bypass. This could lead to local escalation of privilege due to hiding and bypassing the user's ability to disable... |
| CVE-2024-52595 | 2024-11-19 | HTML Cleaner allows crafted scripts in special contexts like svg or math to pass through |
| CVE-2018-9433 | 2024-11-19 | In ArrayConcatVisitor of builtins-array.cc, there is a possible type confusion due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction... |
| CVE-2024-11400 | 2024-11-19 | HUSKY – Products Filter for WooCommerce <= 1.3.6.3 - Reflected Cross-Site Scripting via really_curr_tax Parameter |
| CVE-2023-27609 | 2024-11-19 | WordPress WP Roles at Registration plugin <= 0.23 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-30424 | 2024-11-19 | WordPress Beaver Builder Addons by WPZOOM plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-52392 | 2024-11-19 | WordPress W3SPEEDSTER plugin <= 7.25 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2024-51669 | 2024-11-19 | WordPress Dynamic Widgets plugin <= 1.6.4 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2018-9440 | 2024-11-19 | In parse of M3UParser.cpp there is a possible resource exhaustion due to improper input validation. This could lead to denial of service with no additional execution privileges needed. User interaction... |
| CVE-2018-9456 | 2024-11-19 | In sdpu_extract_attr_seq of sdp_utils.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service with no additional execution... |
| CVE-2018-9466 | 2024-11-19 | In the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This could lead to remote escalation of privilege in an unprivileged app with no additional execution... |
| CVE-2024-44306 | 2024-11-19 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.6. An app may be able to execute arbitrary code with kernel privileges. |
| CVE-2024-44307 | 2024-11-19 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.6. An app may be able to execute arbitrary code with kernel privileges. |
| CVE-2024-44308 | 2024-11-19 | The issue was addressed with improved checks. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1 and iPadOS 18.1.1, visionOS 2.1.1. Processing... |
| CVE-2024-44309 | 2024-11-19 | A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1 and iPadOS 18.1.1,... |
| CVE-2018-9467 | 2024-11-19 | In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect security decisions with no additional execution privileges needed. User interaction... |
| CVE-2024-29292 | 2024-11-20 | Multiple OS Command Injection vulnerabilities affecting Kasda LinkSmart Router KW6512 <= v1.3 enable an authenticated remote attacker to execute arbitrary OS commands via various cgi parameters. |
| CVE-2024-33439 | 2024-11-20 | An issue in Kasda LinkSmart Router KW5515 v1.7 and before allows an authenticated remote attacker to execute arbitrary OS commands via cgi parameters. |
| CVE-2024-45510 | 2024-11-20 | An issue was discovered in Zimbra Collaboration (ZCS) through 10.0. Zimbra Webmail (Modern UI) is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper sanitization of user input.... |
| CVE-2024-45511 | 2024-11-20 | An issue was discovered in Zimbra Collaboration (ZCS) through 10.1. A reflected Cross-Site Scripting (XSS) issue exists through the Briefcase module due to improper sanitization of file content by the... |
| CVE-2024-48530 | 2024-11-20 | An issue in the Instructor Appointment Availability module of eSoft Planner 3.24.08271-USA allows attackers to cause a Denial of Service (DoS) via a crafted POST request. |
| CVE-2024-48531 | 2024-11-20 | A reflected cross-site scripting (XSS) vulnerability on the Rental Availability module of eSoft Planner 3.24.08271-USA allows attackers to execute arbitrary code in the context of a user's browser via injecting... |
| CVE-2024-48533 | 2024-11-20 | A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login? module of eSoft Planner 3.24.08271-USA allows attackers to enumerate valid user e-mail accounts. |
| CVE-2024-48534 | 2024-11-20 | A reflected cross-site scripting (XSS) vulnerability on the Camp Details module of eSoft Planner 3.24.08271-USA allows attackers to execute arbitrary code in the context of a user's browser via injecting... |
| CVE-2024-48535 | 2024-11-20 | A stored cross-site scripting (XSS) vulnerability in eSoft Planner 3.24.08271-USA allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter. |
| CVE-2024-48536 | 2024-11-20 | Incorrect access control in eSoft Planner 3.24.08271-USA allow attackers to view all transactions performed by the company via supplying a crafted web request. |
| CVE-2024-48981 | 2024-11-20 | An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet header by looking up the identifying first byte... |
| CVE-2024-48982 | 2024-11-20 | An issue was discovered in MBed OS 6.16.0. Its hci parsing software dynamically determines the length of certain hci packets by reading a byte from its header. This value is... |
| CVE-2024-48983 | 2024-11-20 | An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet... |
| CVE-2024-48984 | 2024-11-20 | An issue was discovered in MBed OS 6.16.0. When parsing hci reports, the hci parsing software dynamically determines the length of a list of reports by reading a byte from... |
| CVE-2024-48985 | 2024-11-20 | An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software dynamically determines the length of the packet data by reading 2 bytes from the packet... |
| CVE-2024-48986 | 2024-11-20 | An issue was discovered in MBed OS 6.16.0. Its hci parsing software dynamically determines the length of certain hci packets by reading a byte from its header. Certain events cause... |
| CVE-2024-51151 | 2024-11-20 | D-Link DI-8200 16.07.26A1 is vulnerable to remote command execution in the msp_info_htm function via the flag parameter and cmd parameter. |
| CVE-2024-51209 | 2024-11-20 | Cross-Site Scripting (XSS) vulnerabilities in Anuj Kumar's Client Management System Version 1.2 allow local attackers to inject arbitrary web script or HTML via the search input field parameter to admin... |
| CVE-2024-52701 | 2024-11-20 | A stored cross-site scripting (XSS) vulnerability in the Configuration page of Piwigo v14.5.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page... |
| CVE-2024-52702 | 2024-11-20 | A stored cross-site scripting (XSS) vulnerability in the component install\index.php of MyBB v1.8.38 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website... |
| CVE-2024-52725 | 2024-11-20 | SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMS_SeoAndTag.php component. |
| CVE-2024-52739 | 2024-11-20 | D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (RCE) vulnerabilities in the msp_info_htm function via the flag and cmd parameters. |
| CVE-2024-52754 | 2024-11-20 | D-LINK DI-8003 v16.07.16A1 was discovered to contain a buffer overflow via the fn parameter in the tgfile_htm function. |
| CVE-2024-52755 | 2024-11-20 | D-LINK DI-8003 v16.07.26A1 was discovered to contain a buffer overflow via the host_ip parameter in the ipsec_road_asp function. |
| CVE-2024-52757 | 2024-11-20 | D-LINK DI-8003 v16.07.16A1 was discovered to contain a buffer overflow via the notify parameter in the arp_sys_asp function. |
| CVE-2024-52769 | 2024-11-20 | An arbitrary file upload vulnerability in the component /admin/friendlink_edit of DedeBIZ v6.3.0 allows attackers to execute arbitrary code via uploading a crafted file. |
| CVE-2024-52770 | 2024-11-20 | An arbitrary file upload vulnerability in the component /admin/file_manage_control of DedeBIZ v6.3.0 allows attackers to execute arbitrary code via uploading a crafted file. |
| CVE-2024-52771 | 2024-11-20 | DedeBIZ v6.3.0 was discovered to contain an arbitrary file deletion vulnerability via the component /admin/file_manage_view. |
| CVE-2024-49203 | 2024-11-20 | Querydsl 5.1.0 and OpenFeign Querydsl 6.8 allows SQL/HQL injection in orderBy in JPAQuery. NOTE: this is disputed by a Querydsl community member because the product is not intended to defend... |
| CVE-2024-51162 | 2024-11-20 | An issue in Audimex EE versions 15.1.20 and earlier allowing a remote attacker to escalate privileges. Analyzing the offline client code, it was identified that it is possible for any... |
| CVE-2024-51163 | 2024-11-20 | A Local File Inclusion vulnerability in Vegam Solutions Vegam 4i versions 6.3.47.0 and earlier allows a remote attacker to obtain sensitive information through the print label function. Specifically, the filePathList... |
| CVE-2024-51208 | 2024-11-20 | File Upload vulnerability in change-image.php in Anuj Kumar's Boat Booking System version 1.0 allows local attackers to upload a malicious PHP script via the Image Upload Mechanism parameter. |
| CVE-2024-52677 | 2024-11-20 | HkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common/library/Upload.php. |
| CVE-2024-52765 | 2024-11-20 | H3C GR-1800AX MiniGRW1B0V100R007 is vulnerable to remote code execution (RCE) via the aspForm parameter. |
| CVE-2024-11278 | 2024-11-20 | GD bbPress Attachments <= 4.7.2 - Reflected Cross-Site Scripting |
| CVE-2024-52614 | 2024-11-20 | Use of hard-coded cryptographic key issue exists in "Kura Sushi Official App Produced by EPARK" for Android versions prior to 3.8.5. If this vulnerability is exploited, a local attacker may... |
| CVE-2024-9653 | 2024-11-20 | Restaurant Menu – Food Ordering System – Table Reservation <= 2.4.2 - Reflected Cross-Site Scripting |
| CVE-2024-10515 | 2024-11-20 | SEO Plugin by Squirrly SEO < 12.3.21 - Editor+ Stored XSS |
| CVE-2024-11277 | 2024-11-20 | 404 Solution <= 2.35.19 - Reflected Cross-Site Scripting |
| CVE-2024-10900 | 2024-11-20 | ProfileGrid – User Profiles, Groups and Communities <= 5.9.3.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Deletion |
| CVE-2024-8726 | 2024-11-20 | MailChimp Forms by MailMunch <= 3.2.3 - Reflected Cross-Site Scripting |
| CVE-2024-9239 | 2024-11-20 | Booster for WooCommerce <= 7.2.3 - Reflected Cross-Site Scripting |