CVE List - 2024 / September
Showing 1601 - 1700 of 2518 CVEs for September 2024 (Page 17 of 26)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-45366 | 2024-09-18 | Welcart e-Commerce prior to 2.11.2 contains a cross-site scripting vulnerability.... |
| CVE-2024-6641 | 2024-09-18 | WP Hardening – Fix Your WordPress Security <= 1.2.6 - Unauthenticated Security Feature Bypass to Username Enumeration |
| CVE-2024-41929 | 2024-09-18 | Improper authentication vulnerability in multiple digital video recorders provided by... |
| CVE-2024-47001 | 2024-09-18 | Hidden functionality issue in multiple digital video recorders provided by... |
| CVE-2024-43778 | 2024-09-18 | OS command injection vulnerability in multiple digital video recorders provided... |
| CVE-2024-46714 | 2024-09-18 | drm/amd/display: Skip wbscl_set_scaler_filter if filter is null |
| CVE-2024-46715 | 2024-09-18 | driver: iio: add missing checks on iio_info's callback access |
| CVE-2024-46716 | 2024-09-18 | dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor |
| CVE-2024-46717 | 2024-09-18 | net/mlx5e: SHAMPO, Fix incorrect page release |
| CVE-2024-46718 | 2024-09-18 | drm/xe: Don't overmap identity VRAM mapping |
| CVE-2024-46719 | 2024-09-18 | usb: typec: ucsi: Fix null pointer dereference in trace |
| CVE-2024-46720 | 2024-09-18 | drm/amdgpu: fix dereference after null check |
| CVE-2024-46721 | 2024-09-18 | apparmor: fix possible NULL pointer dereference |
| CVE-2024-46722 | 2024-09-18 | drm/amdgpu: fix mc_data out-of-bounds read warning |
| CVE-2024-46723 | 2024-09-18 | drm/amdgpu: fix ucode out-of-bounds read warning |
| CVE-2024-46724 | 2024-09-18 | drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number |
| CVE-2024-46725 | 2024-09-18 | drm/amdgpu: Fix out-of-bounds write warning |
| CVE-2024-46726 | 2024-09-18 | drm/amd/display: Ensure index calculation will not overflow |
| CVE-2024-46727 | 2024-09-18 | drm/amd/display: Add otg_master NULL check within resource_log_pipe_topology_update |
| CVE-2024-46728 | 2024-09-18 | drm/amd/display: Check index for aux_rd_interval before using |
| CVE-2024-46729 | 2024-09-18 | drm/amd/display: Fix incorrect size calculation for loop |
| CVE-2024-46730 | 2024-09-18 | drm/amd/display: Ensure array index tg_inst won't be -1 |
| CVE-2024-46731 | 2024-09-18 | drm/amd/pm: fix the Out-of-bounds read warning |
| CVE-2024-46732 | 2024-09-18 | drm/amd/display: Assign linear_pitch_alignment even for VM |
| CVE-2024-46733 | 2024-09-18 | btrfs: fix qgroup reserve leaks in cow_file_range |
| CVE-2024-8969 | 2024-09-18 | The SYSCOM Group OMFLOW - Exposure of Sensitive Data |
| CVE-2024-46734 | 2024-09-18 | btrfs: fix race between direct IO write and fsync when using same fd |
| CVE-2024-46735 | 2024-09-18 | ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() |
| CVE-2024-46736 | 2024-09-18 | smb: client: fix double put of @cfile in smb2_rename_path() |
| CVE-2024-46737 | 2024-09-18 | nvmet-tcp: fix kernel crash if commands allocation fails |
| CVE-2024-46738 | 2024-09-18 | VMCI: Fix use-after-free when removing resource in vmci_resource_remove() |
| CVE-2024-46739 | 2024-09-18 | uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind |
| CVE-2024-46740 | 2024-09-18 | binder: fix UAF caused by offsets overwrite |
| CVE-2024-46741 | 2024-09-18 | misc: fastrpc: Fix double free of 'buf' in error path |
| CVE-2024-46742 | 2024-09-18 | smb/server: fix potential null-ptr-deref of lease_ctx_info in smb2_open() |
| CVE-2024-46743 | 2024-09-18 | of/irq: Prevent device address out-of-bounds read in interrupt map walk |
| CVE-2024-46744 | 2024-09-18 | Squashfs: sanity check symbolic link size |
| CVE-2024-46745 | 2024-09-18 | Input: uinput - reject requests with unreasonable number of slots |
| CVE-2024-46746 | 2024-09-18 | HID: amd_sfh: free driver_data after destroying hid device |
| CVE-2024-46747 | 2024-09-18 | HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup |
| CVE-2024-46748 | 2024-09-18 | cachefiles: Set the max subreq size for cache writes to MAX_RW_COUNT |
| CVE-2024-46749 | 2024-09-18 | Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() |
| CVE-2024-46750 | 2024-09-18 | PCI: Add missing bridge lock to pci_bus_lock() |
| CVE-2024-46751 | 2024-09-18 | btrfs: don't BUG_ON() when 0 reference count at btrfs_lookup_extent_info() |
| CVE-2024-46752 | 2024-09-18 | btrfs: replace BUG_ON() with error handling at update_ref_for_cow() |
| CVE-2024-46753 | 2024-09-18 | btrfs: handle errors from btrfs_dec_ref() properly |
| CVE-2024-46754 | 2024-09-18 | bpf: Remove tst_run from lwt_seg6local_prog_ops. |
| CVE-2024-46755 | 2024-09-18 | wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() |
| CVE-2024-46759 | 2024-09-18 | hwmon: (adc128d818) Fix underflows seen when writing limit attributes |
| CVE-2024-46760 | 2024-09-18 | wifi: rtw88: usb: schedule rx work after everything is set up |
| CVE-2024-46761 | 2024-09-18 | pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv |
| CVE-2024-46762 | 2024-09-18 | xen: privcmd: Fix possible access to a freed kirqfd instance |
| CVE-2024-46763 | 2024-09-18 | fou: Fix null-ptr-deref in GRO. |
| CVE-2024-46764 | 2024-09-18 | bpf: add check for invalid name in btf_name_valid_section() |
| CVE-2024-46765 | 2024-09-18 | ice: protect XDP configuration with a mutex |
| CVE-2024-46766 | 2024-09-18 | ice: move netif_queue_set_napi to rtnl-protected sections |
| CVE-2024-46767 | 2024-09-18 | net: phy: Fix missing of_node_put() for leds |
| CVE-2024-46768 | 2024-09-18 | hwmon: (hp-wmi-sensors) Check if WMI event data exists |
| CVE-2024-46769 | 2024-09-18 | spi: intel: Add check devm_kasprintf() returned value |
| CVE-2024-46770 | 2024-09-18 | ice: Add netif_device_attach/detach into PF reset flow |
| CVE-2024-46771 | 2024-09-18 | can: bcm: Remove proc entry when dev is unregistered. |
| CVE-2024-46772 | 2024-09-18 | drm/amd/display: Check denominator crb_pipes before used |
| CVE-2024-46773 | 2024-09-18 | drm/amd/display: Check denominator pbn_div before used |
| CVE-2024-46774 | 2024-09-18 | powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() |
| CVE-2024-46775 | 2024-09-18 | drm/amd/display: Validate function returns |
| CVE-2024-46776 | 2024-09-18 | drm/amd/display: Run DC_LOG_DC after checking link->link_enc |
| CVE-2024-46777 | 2024-09-18 | udf: Avoid excessive partition lengths |
| CVE-2024-46778 | 2024-09-18 | drm/amd/display: Check UnboundedRequestEnabled's value |
| CVE-2024-46779 | 2024-09-18 | drm/imagination: Free pvr_vm_gpuva after unlink |
| CVE-2024-46780 | 2024-09-18 | nilfs2: protect references to superblock parameters exposed in sysfs |
| CVE-2024-46781 | 2024-09-18 | nilfs2: fix missing cleanup on rollforward recovery error |
| CVE-2024-46782 | 2024-09-18 | ila: call nf_unregister_net_hooks() sooner |
| CVE-2024-46783 | 2024-09-18 | tcp_bpf: fix return value of tcp_bpf_sendmsg() |
| CVE-2024-46784 | 2024-09-18 | net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup |
| CVE-2024-46785 | 2024-09-18 | eventfs: Use list_del_rcu() for SRCU protected list variable |
| CVE-2024-46786 | 2024-09-18 | fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF |
| CVE-2024-46787 | 2024-09-18 | userfaultfd: fix checks for huge PMDs |
| CVE-2024-46788 | 2024-09-18 | tracing/osnoise: Use a cpumask to know what threads are kthreads |
| CVE-2024-46789 | 2024-09-18 | mm/slub: add check for s->flags in the alloc_tagging_slab_free_hook |
| CVE-2024-46790 | 2024-09-18 | codetag: debug: mark codetags for poisoned page as empty |
| CVE-2024-46791 | 2024-09-18 | can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open |
| CVE-2024-46792 | 2024-09-18 | riscv: misaligned: Restrict user access to kernel memory |
| CVE-2024-46793 | 2024-09-18 | ASoC: Intel: Boards: Fix NULL pointer deref in BYT/CHT boards harder |
| CVE-2024-46794 | 2024-09-18 | x86/tdx: Fix data leak in mmio_read() |
| CVE-2024-46795 | 2024-09-18 | ksmbd: unset the binding mark of a reused connection |
| CVE-2024-46796 | 2024-09-18 | smb: client: fix double put of @cfile in smb2_set_path_size() |
| CVE-2024-46797 | 2024-09-18 | powerpc/qspinlock: Fix deadlock in MCS queue |
| CVE-2024-46798 | 2024-09-18 | ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object |
| CVE-2024-46799 | 2024-09-18 | net: ethernet: ti: am65-cpsw: Fix NULL dereference on XDP_TX |
| CVE-2024-46800 | 2024-09-18 | sch/netem: fix use after free in netem_dequeue |
| CVE-2024-46801 | 2024-09-18 | libfs: fix get_stashed_dentry() |
| CVE-2024-8887 | 2024-09-18 | Authentication bypass vulnerability on CIRCUTOR Q-SMT |
| CVE-2024-43188 | 2024-09-18 | IBM Business Automation Workflow improper input validation |
| CVE-2024-6406 | 2024-09-18 | Sensetive Data Exposure in Yordam Information Technology's Mobile Library Application |
| CVE-2024-5682 | 2024-09-18 | User Enumeration in Yordam Information Technology's Yordam Library Automation System |
| CVE-2024-8888 | 2024-09-18 | Insufficient Session Expiration vulnerability on CIRCUTOR Q-SMT |
| CVE-2024-8889 | 2024-09-18 | Improper Input Validation vulnerability on CIRCUTOR TCP2RS+ |
| CVE-2024-8892 | 2024-09-18 | Uncontrolled Resource Consumption vulnerability on CIRCUTOR TCP2RS+ |
| CVE-2024-8890 | 2024-09-18 | Insertion of Sensitive Information Into Sent Data vulnerability on CIRCUTOR Q-SMT |
| CVE-2024-8891 | 2024-09-18 | Exposure of Private Personal Information to an Unauthorized Actor vulnerability on CIRCUTOR Q-SMT |