CVE List - 2024 / May
Showing 1301 - 1400 of 4997 CVEs for May 2024 (Page 14 of 50)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-3479 | 2024-05-03 | An improper export vulnerability was reported in the Motorola Enterprise... |
| CVE-2024-3480 | 2024-05-03 | An Implicit intent vulnerability was reported in the Motorola framework... |
| CVE-2022-48670 | 2024-05-03 | peci: cpu: Fix use-after-free in adev_release() |
| CVE-2022-48671 | 2024-05-03 | cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all() |
| CVE-2022-48672 | 2024-05-03 | of: fdt: fix off-by-one error in unflatten_dt_nodes() |
| CVE-2022-48673 | 2024-05-03 | net/smc: Fix possible access to freed memory in link clear |
| CVE-2022-48674 | 2024-05-03 | erofs: fix pcluster use-after-free on UP platforms |
| CVE-2022-48675 | 2024-05-03 | IB/core: Fix a nested dead lock as part of ODP flow |
| CVE-2022-48686 | 2024-05-03 | nvme-tcp: fix UAF when detecting digest errors |
| CVE-2022-48687 | 2024-05-03 | ipv6: sr: fix out-of-bounds read when setting HMAC data. |
| CVE-2022-48688 | 2024-05-03 | i40e: Fix kernel crash during module removal |
| CVE-2022-48689 | 2024-05-03 | tcp: TX zerocopy should not sense pfmemalloc status |
| CVE-2022-48691 | 2024-05-03 | netfilter: nf_tables: clean up hook list when offload flags check fails |
| CVE-2022-48692 | 2024-05-03 | RDMA/srp: Set scmnd->result only when scmnd is not NULL |
| CVE-2022-48693 | 2024-05-03 | soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs |
| CVE-2022-48694 | 2024-05-03 | RDMA/irdma: Fix drain SQ hang with no completion |
| CVE-2022-48696 | 2024-05-03 | regmap: spi: Reserve space for register address/padding |
| CVE-2022-48697 | 2024-05-03 | nvmet: fix a use-after-free |
| CVE-2022-48698 | 2024-05-03 | drm/amd/display: fix memory leak when using debugfs_lookup() |
| CVE-2022-48699 | 2024-05-03 | sched/debug: fix dentry leak in update_sched_domain_debugfs |
| CVE-2022-48701 | 2024-05-03 | ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() |
| CVE-2022-48702 | 2024-05-03 | ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() |
| CVE-2022-48703 | 2024-05-03 | thermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR |
| CVE-2023-37407 | 2024-05-03 | IBM Aspera Orchestrator command execution |
| CVE-2020-4874 | 2024-05-03 | IBM Cognos Controller information disclosure |
| CVE-2021-20450 | 2024-05-03 | IBM Cognos Controller information disclosure |
| CVE-2023-23474 | 2024-05-03 | IBM Cognos Controller information disclosure |
| CVE-2021-20556 | 2024-05-03 | IBM Cognos Controller information disclosure |
| CVE-2024-34068 | 2024-05-03 | Server-side Request Forgery during remote file pull in Pterodactyl wings |
| CVE-2023-40696 | 2024-05-03 | IBM Cognos Controller information disclosure |
| CVE-2023-38724 | 2024-05-03 | IBM Cognos Controller SQL injection |
| CVE-2024-34067 | 2024-05-03 | Multiple cross site scripting (XSS) vulnerabilities in the admin area of Pterodactyl panel |
| CVE-2023-28952 | 2024-05-03 | IBM Cognos Controller log injection |
| CVE-2024-34066 | 2024-05-03 | Arbitrary File Write/Read in Pterodactyl wings |
| CVE-2022-48690 | 2024-05-03 | ice: Fix DMA mappings leak |
| CVE-2022-48695 | 2024-05-03 | scsi: mpt3sas: Fix use-after-free warning |
| CVE-2022-48704 | 2024-05-03 | drm/radeon: add a force flush to delay work when radeon |
| CVE-2022-48705 | 2024-05-03 | wifi: mt76: mt7921e: fix crash in chip reset fail |
| CVE-2024-34075 | 2024-05-03 | kurwov vulnerable to Denial of Service due to improper data sanitization |
| CVE-2022-22364 | 2024-05-03 | IBM Cognos Controller security bypass |
| CVE-2021-20451 | 2024-05-03 | IBM Cognos Controller SQL injection |
| CVE-2023-40695 | 2024-05-03 | IBM Cognos Controller session fixation |
| CVE-2023-52729 | 2024-05-04 | TCPServer.cpp in SimpleNetwork through 29bc615 has an off-by-one error that... |
| CVE-2024-34460 | 2024-05-04 | The Tree Explorer tool from Organizer in Zenario before 9.5.60602... |
| CVE-2024-34462 | 2024-05-04 | Alinto SOGo through 5.10.0 allows XSS during attachment preview. |
| CVE-2024-34467 | 2024-05-04 | ThinkPHP 8.0.3 allows remote attackers to exploit XSS due to... |
| CVE-2024-34468 | 2024-05-04 | Rukovoditel before 3.5.3 allows XSS via user_photo to My Page. |
| CVE-2024-34469 | 2024-05-04 | Rukovoditel before 3.5.3 allows XSS via user_photo to index.php?module=users/registration&action=save. |
| CVE-2024-34475 | 2024-05-04 | Open5GS before 2.7.1 is vulnerable to a reachable assertion that... |
| CVE-2024-34476 | 2024-05-04 | Open5GS before 2.7.1 is vulnerable to a reachable assertion that... |
| CVE-2024-34461 | 2024-05-04 | Zenario before 9.5.60437 uses Twig filters insecurely in the Twig... |
| CVE-2024-34473 | 2024-05-04 | An issue was discovered in appmgr in O-RAN Near-RT RIC... |
| CVE-2024-3868 | 2024-05-04 | The Folders Pro plugin for WordPress is vulnerable to Stored... |
| CVE-2024-3237 | 2024-05-04 | The ConvertPlug plugin for WordPress is vulnerable to unauthorized modification... |
| CVE-2024-3240 | 2024-05-04 | The ConvertPlug plugin for WordPress is vulnerable to PHP Object... |
| CVE-2023-7065 | 2024-05-04 | The Stop Spammers Security | Block Spam Users, Comments, Forms... |
| CVE-2024-1050 | 2024-05-04 | The Import and export users and customers plugin for WordPress... |
| CVE-2023-27283 | 2024-05-04 | IBM Aspera Orchestrator information disclosure |
| CVE-2024-4491 | 2024-05-04 | Tenda i21 formGetDiagnoseInfo stack-based overflow |
| CVE-2024-34474 | 2024-05-05 | Clario through 2024-04-11 for Desktop has weak permissions for %PROGRAMDATA%\Clario... |
| CVE-2024-34478 | 2024-05-05 | btcd before 0.24.0 does not correctly implement the consensus rules... |
| CVE-2024-34483 | 2024-05-05 | OFPGroupDescStats in parser.py in Faucet SDN Ryu 4.34 allows attackers... |
| CVE-2024-34484 | 2024-05-05 | OFPBucket in parser.py in Faucet SDN Ryu 4.34 allows attackers... |
| CVE-2024-34486 | 2024-05-05 | OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers... |
| CVE-2024-34487 | 2024-05-05 | OFPFlowStats in parser.py in Faucet SDN Ryu 4.34 allows attackers... |
| CVE-2024-34488 | 2024-05-05 | OFPMultipartReply in parser.py in Faucet SDN Ryu 4.34 allows attackers... |
| CVE-2024-34489 | 2024-05-05 | OFPHello in parser.py in Faucet SDN Ryu 4.34 allows attackers... |
| CVE-2024-34490 | 2024-05-05 | In Maxima through 5.47.0 before 51704c, the plotting facilities make... |
| CVE-2024-34500 | 2024-05-05 | An issue was discovered in the UnlinkedWikibase extension in MediaWiki... |
| CVE-2024-34502 | 2024-05-05 | An issue was discovered in WikibaseLexeme in MediaWiki before 1.39.6,... |
| CVE-2024-34506 | 2024-05-05 | An issue was discovered in includes/specials/SpecialMovePage.php in MediaWiki before 1.39.7,... |
| CVE-2024-34507 | 2024-05-05 | An issue was discovered in includes/CommentFormatter/CommentParser.php in MediaWiki before 1.39.7,... |
| CVE-2024-34509 | 2024-05-05 | dcmdata in DCMTK before 3.6.9 has a segmentation fault via... |
| CVE-2024-34510 | 2024-05-05 | Gradio before 4.20 allows credential leakage on Windows. |
| CVE-2024-34515 | 2024-05-05 | image-optimizer before 1.7.3 allows PHAR deserialization, e.g., the phar:// protocol... |
| CVE-2024-34519 | 2024-05-05 | Avantra Server 24.x before 24.0.7 and 24.1.x before 24.1.1 mishandles... |
| CVE-2024-34524 | 2024-05-05 | In XLANG OpenAgents through fe73ac4, the allowed_file protection mechanism can... |
| CVE-2024-34525 | 2024-05-05 | FileCodeBox 2.0 stores a OneDrive password and AWS key in... |
| CVE-2024-34527 | 2024-05-05 | spaces_plugin/app.py in SolidUI 0.4.0 has an unnecessary print statement for... |
| CVE-2024-34528 | 2024-05-05 | WordOps through 3.20.0 has a wo/cli/plugins/stack_pref.py TOCTOU race condition because... |
| CVE-2024-34508 | 2024-05-05 | dcmnet in DCMTK before 3.6.9 has a segmentation fault via... |
| CVE-2024-34529 | 2024-05-05 | Nebari through 2024.4.1 prints the temporary Keycloak root password. |
| CVE-2024-4492 | 2024-05-05 | Tenda i21 setStaOffline formOfflineSet stack-based overflow |
| CVE-2024-4493 | 2024-05-05 | Tenda i21 formSetAutoPing stack-based overflow |
| CVE-2024-4494 | 2024-05-05 | Tenda i21 setUplinkInfo formSetUplinkInfo stack-based overflow |
| CVE-2024-4495 | 2024-05-05 | Tenda i21 formWifiMacFilterGet stack-based overflow |
| CVE-2024-4496 | 2024-05-05 | Tenda i21 formWifiMacFilterSet stack-based overflow |
| CVE-2024-4497 | 2024-05-05 | Tenda i21 formexeCommand stack-based overflow |
| CVE-2024-4500 | 2024-05-05 | SourceCodester Prison Management System edit-photo.php unrestricted upload |
| CVE-2024-4501 | 2024-05-05 | Ruijie RG-UAC commit.php os command injection |
| CVE-2024-4502 | 2024-05-05 | Ruijie RG-UAC dhcp_client_commit.php os command injection |
| CVE-2024-4503 | 2024-05-05 | Ruijie RG-UAC dhcp_relay_commit.php os command injection |
| CVE-2024-4504 | 2024-05-05 | Ruijie RG-UAC commit.php os command injection |
| CVE-2024-4505 | 2024-05-05 | Ruijie RG-UAC ip_addr_add_commit.php os command injection |
| CVE-2024-4506 | 2024-05-05 | Ruijie RG-UAC ip_addr_edit_commit.php os command injection |
| CVE-2024-4507 | 2024-05-05 | Ruijie RG-UAC static_route_add_ipv6.php os command injection |
| CVE-2024-26312 | 2024-05-06 | Archer Platform 6 before 2024.03 contains a sensitive information disclosure... |
| CVE-2024-28725 | 2024-05-06 | Cross Site Scripting (XSS) vulnerability in YzmCMS 7.0 allows attackers... |
| CVE-2024-30973 | 2024-05-06 | An issue in V-SOL G/EPON ONU HG323AC-B with firmware version... |
| CVE-2024-33110 | 2024-05-06 | D-Link DIR-845L router v1.01KRb03 and before is vulnerable to Permission... |