Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-11-04 CVE-2024-45086 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML external entity injection (XXE) attack when processing XML data.
network
low complexity
 5.5
5.5
2024-11-04 CVE-2024-23385 Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.
network
low complexity
 7.5
7.5
2024-11-04 CVE-2024-23386 memory corruption when WiFi display APIs are invoked with large random inputs.
local
low complexity
 6.7
6.7
2024-11-04 CVE-2024-33030 Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size.
local
low complexity
 6.7
6.7
2024-11-04 CVE-2024-33031 Memory corruption while processing the update SIM PB records request.
local
low complexity
 6.7
6.7
2024-11-04 CVE-2024-33032 Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.
local
low complexity
 6.7
6.7
2024-11-04 CVE-2024-33033 Memory corruption while processing IOCTL calls to unmap the buffers.
local
low complexity
 6.7
6.7
2024-11-04 CVE-2024-33068 Transient DOS while parsing fragments of MBSSID IE from beacon frame.
network
low complexity
 7.5
7.5
2024-11-04 CVE-2024-38403 Transient DOS while parsing BTM ML IE when per STA profile is not included.
network
low complexity
 7.5
7.5
2024-11-04 CVE-2024-38405 Transient DOS while processing the CU information from RNR IE.
network
low complexity
 7.5
7.5