| Page(s) : 1 ... 823 824 825 826 827 828 829 830 831 832 [833] 834 835 836 837 838 839 840 841 842 843 ... | Result(s) : 325997 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-03 | CVE-2024-51091 | cve | Cross Site Scripting vulnerability in seajs v.2.2.3 allows a remote attacker to execute arbitrary code via the seajs package |
| N/A | 2025-03-03 | CVE-2024-53384 | cve | A DOM Clobbering vulnerability in tsup v8.3.4 allows attackers to execute arbitrary code via a crafted script in the import.meta.url to document.currentScript in cjs_shims.js co... |
| 6.4 | 2025-03-03 | CVE-2025-0684 | cve | A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's reiserfs fs module uses user-controlled parameters from the filesystem geomet... |
| 6.4 | 2025-03-03 | CVE-2025-0685 | cve | A flaw was found in grub2. When reading data from a jfs filesystem, grub's jfs filesystem module uses user-controlled parameters from the filesystem geometry to determine t... |
| 6.4 | 2025-03-03 | CVE-2025-0686 | cve | A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs filesystem module uses user-controlled parameters from the filesystem geom... |
| N/A | 2025-03-03 | CVE-2025-27370 | cve | OpenID Connect Core through 1.0 errata set 2 allows audience injection in certain situations. When the private_key_jwt authentication mechanism is used, a malicious Authorizatio... |
| N/A | 2025-03-03 | CVE-2025-27371 | cve | In certain IETF OAuth 2.0-related specifications, when the JSON Web Token Profile for OAuth 2.0 Client Authentication mechanism is used, there are ambiguities in the audience va... |
| N/A | 2025-03-03 | CVE-2024-10925 | cve | A vulnerability in GitLab-EE affecting all versions from 16.2 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1 allows a Guest user to read Security policy YAML |
| N/A | 2025-03-03 | CVE-2024-24778 | cve | Improper privilege management in a REST interface allowed registered users to access unauthorized resources if the resource ID was know. This issue affects Apache StreamPi... |
| 5.3 | 2025-03-03 | CVE-2024-38426 | cve | While processing the authentication message in UE, improper authentication may lead to information disclosure. |
| 5.5 | 2025-03-03 | CVE-2024-43051 | cve | Information disclosure while deriving keys for a session for any Widevine use case. |
| 7.8 | 2025-03-03 | CVE-2024-43055 | cve | Memory corruption while processing camera use case IOCTL call. |
| 6.5 | 2025-03-03 | CVE-2024-43056 | cve | Transient DOS during hypervisor virtual I/O operation in a virtual machine. |
| 7.8 | 2025-03-03 | CVE-2024-43057 | cve | Memory corruption while processing command in Glink linux. |
| 7.8 | 2025-03-03 | CVE-2024-43059 | cve | Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. |
| 7.8 | 2025-03-03 | CVE-2024-43060 | cve | Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP. |
| 7.8 | 2025-03-03 | CVE-2024-43061 | cve | Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive. |
| 7.8 | 2025-03-03 | CVE-2024-43062 | cve | Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization. |
| 7.8 | 2025-03-03 | CVE-2024-45580 | cve | Memory corruption while handling multuple IOCTL calls from userspace for remote invocation. |
| 7.8 | 2025-03-03 | CVE-2024-49836 | cve | Memory corruption may occur during the synchronization of the camera`s frame processing pipeline. |
| Page(s) : 1 ... 823 824 825 826 827 828 829 830 831 832 [833] 834 835 836 837 838 839 840 841 842 843 ... | Result(s) : 325997 |
