Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-07 | CVE-2024-50172 | Memory Leak vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix a possible memory leak In bnxt_re_setup_chip_ctx() when bnxt_qplib_map_db_bar() fails driver is not freeing the memory allocated for "rdev->chip_ctx". | 5.5 |
| 2024-11-07 | CVE-2024-10946 | SQL Injection vulnerability in Guangzhou Tuchuang Interlib A vulnerability classified as critical has been found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. | 7.2 |
| 2024-11-07 | CVE-2024-10947 | Unspecified vulnerability in Guangzhou Tuchuang Interlib A vulnerability classified as critical was found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. | 7.2 |
| 2024-11-07 | CVE-2024-10922 | The Featured Posts Scroll plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.25. network low complexity | 6.1 |
| 2024-11-06 | CVE-2024-10927 | Cross-site Scripting vulnerability in Monocms 1.0 A vulnerability was found in MonoCMS up to 20240528. | 6.1 |
| 2024-11-06 | CVE-2024-10928 | Cross-site Scripting vulnerability in Monocms 1.0 A vulnerability was found in MonoCMS up to 20240528. | 6.1 |
| 2024-11-06 | CVE-2024-10941 | Unspecified vulnerability in Mozilla Firefox A malicious website could have included an iframe with an malformed URI resulting in a non-exploitable browser crash. | 6.5 |
| 2024-11-06 | CVE-2024-10318 | Session Fixation vulnerability in F5 products A session fixation issue was discovered in the NGINX OpenID Connect reference implementation, where a nonce was not checked at login time. | 5.4 |
| 2024-11-06 | CVE-2024-10826 | Use After Free vulnerability in Google Chrome Use after free in Family Experiences in Google Chrome on Android prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2024-11-06 | CVE-2024-10827 | Use After Free vulnerability in Google Chrome Use after free in Serial in Google Chrome prior to 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |