Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-02 | CVE-2024-43050 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver. | 7.8 |
| 2024-12-02 | CVE-2024-43052 | Unspecified vulnerability in Qualcomm products Memory corruption while processing API calls to NPU with invalid input. | 7.8 |
| 2024-12-02 | CVE-2024-53103 | Use After Free vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer When hvs is released, there is a possibility that vsk->trans may not be initialized to NULL, which could lead to a dangling pointer. This issue is resolved by initializing vsk->trans to NULL. | 7.8 |
| 2024-12-02 | CVE-2024-53104 | Out-of-bounds Write vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format This can lead to out of bounds writes since frames of this type were not taken into account when calculating the size of the frames buffer in uvc_parse_streaming. | 7.8 |
| 2024-12-02 | CVE-2024-20129 | Out-of-bounds Read vulnerability in Google Android 13.0/14.0/15.0 In Telephony, there is a possible out of bounds read due to a missing bounds check. | 7.5 |
| 2024-11-30 | CVE-2024-11998 | SQL Injection vulnerability in Farmacia Project Farmacia 1.0 A vulnerability was found in code-projects Farmacia 1.0. | 7.5 |
| 2024-11-29 | CVE-2024-49803 | OS Command Injection vulnerability in IBM Security Verify Access IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. | 8.8 |
| 2024-11-29 | CVE-2024-49804 | Unspecified vulnerability in IBM Security Verify Access IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a locally authenticated non-administrative user to escalate their privileges due to unnecessary permissions used to perform certain tasks. | 7.8 |
| 2024-11-28 | CVE-2024-11968 | SQL Injection vulnerability in Anisha Farmacia 1.0 A vulnerability was found in code-projects Farmacia up to 1.0. | 7.5 |
| 2024-11-28 | CVE-2024-11963 | SQL Injection vulnerability in Fabianros Responsive Hotel Site 1.0 A vulnerability, which was classified as critical, has been found in code-projects Responsive Hotel Site 1.0. | 8.8 |