Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-29 | CVE-2024-40833 | Unspecified vulnerability in Apple Iphone OS and Macos A logic issue was addressed with improved checks. | 5.5 |
| 2024-07-29 | CVE-2024-40834 | Unspecified vulnerability in Apple Macos This issue was addressed by adding an additional prompt for user consent. | 4.4 |
| 2024-07-29 | CVE-2024-40835 | Unspecified vulnerability in Apple products A logic issue was addressed with improved checks. | 5.5 |
| 2024-07-29 | CVE-2023-42943 | Unspecified vulnerability in Apple Macos A privacy issue was addressed with improved private data redaction for log entries. | 5.5 |
| 2024-07-29 | CVE-2024-37856 | Cross-site Scripting vulnerability in Oretnom23 Lost and Found Information System 1.0 Cross Site Scripting vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via the first, last, middle name fields in the User Profile page. | 5.4 |
| 2024-07-29 | CVE-2024-6578 | Cross-site Scripting vulnerability in Aimstack AIM 3.19.3 A stored cross-site scripting (XSS) vulnerability exists in aimhubio/aim version 3.19.3. | 5.4 |
| 2024-07-29 | CVE-2024-42085 | Improper Locking vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock When config CONFIG_USB_DWC3_DUAL_ROLE is selected, and trigger system to enter suspend status with below command: echo mem > /sys/power/state There will be a deadlock issue occurring. | 5.5 |
| 2024-07-29 | CVE-2024-42090 | Improper Locking vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER In create_pinctrl(), pinctrl_maps_mutex is acquired before calling add_setting(). | 5.5 |
| 2024-07-29 | CVE-2024-41083 | NULL Pointer Dereference vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: netfs: Fix netfs_page_mkwrite() to check folio->mapping is valid Fix netfs_page_mkwrite() to check that folio->mapping is valid once it has taken the folio lock (as filemap_page_mkwrite() does). | 5.5 |
| 2024-07-29 | CVE-2024-41084 | NULL Pointer Dereference vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: cxl/region: Avoid null pointer dereference in region lookup cxl_dpa_to_region() looks up a region based on a memdev and DPA. It wrongly assumes an endpoint found mapping the DPA is also of a fully assembled region. | 5.5 |