VulDB Recent Entries

A vulnerability was found in Linux Kernel up to 6.6.56/6.11.3. It has been classified as critical. This affects the function cdns_i3c_master_probe. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2024-50061. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.6.56/6.11.3 and classified as critical. Affected by this vulnerability is the function smb3_calc_signature. The manipulation leads to use after free. This vulnerability is known as CVE-2024-50047. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3 and classified as critical. Affected by this issue is the function rfcomm_sk_state_change. The manipulation leads to deadlock. This vulnerability is handled as CVE-2024-50044. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.56/6.11.3. Affected is the function uart_port_dtr_rts. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-50058. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.11.3. This issue affects the function nfsd4_free_stateid. The manipulation leads to use after free. The identification of this vulnerability is CVE-2024-50043. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.11.3 on VF. This vulnerability affects the function ice_vsi_rebuild of the file /sys/bus/pci/devices/$PF_PCI/sriov_drivers_autoprobe. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-50042. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.167/6.1.112/6.6.56/6.11.3. This affects the function i40e_del_mac_filter. The manipulation leads to memory leak. This vulnerability is uniquely identified as CVE-2024-50041. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.11.3. It has been rated as critical. Affected by this issue is the function igb_io_error_detected. The manipulation leads to denial of service. This vulnerability is handled as CVE-2024-50040. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.56/6.11.3. It has been declared as problematic. Affected by this vulnerability is the function dst_entries_add. The manipulation leads to Privilege Escalation. This vulnerability is known as CVE-2024-50036. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3. It has been classified as critical. Affected is the function switchtec_ntb_add. The manipulation leads to use after free. This vulnerability is traded as CVE-2024-50059. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3 and classified as critical. This issue affects the function nfs42_complete_copies. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-50046. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3 and classified as critical. This vulnerability affects unknown code of the component br_netfilter. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-50045. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3. This affects the function ppp_async_encode of the file drivers/net/ppp/ppp_async.c. The manipulation leads to Privilege Escalation. This vulnerability is uniquely identified as CVE-2024-50035. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.11.3. Affected by this issue is the function drm_fbdev_dma_fb_destroy. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2024-50037. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3. Affected by this vulnerability is the function enqueue of the component sched. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-50039. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.82/6.0.12. Affected is the function napi_complete_done. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2022-48985. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.226/5.10.158/5.15.82/6.0.12. It has been rated as critical. This issue affects the function drm_gem_shmem_mmap. The manipulation leads to use after free. The identification of this vulnerability is CVE-2022-48981. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.12. It has been declared as critical. This vulnerability affects the function nf_conntrack_hash_check_insert. The manipulation leads to stack-based buffer overflow. This vulnerability was named CVE-2022-48974. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.225/5.10.157/5.15.81/6.0.11. It has been classified as problematic. This affects the function tpm_pm_suspend. The manipulation leads to insufficiently random values. This vulnerability is uniquely identified as CVE-2022-48997. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.162/5.15.85/6.0.13 and classified as critical. Affected by this issue is the function acpi_install_fixed_event_handler. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2022-48953. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.