Aggregator

CVE-2024-50098 | Linux Kernel up to 6.1.113/6.6.57/6.11.4 blk_mq_submit_bio deadlock (Nessus ID 213018 / WID-SEC-2024-3339)

Vuldb Updates
7 months 1 week ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.113/6.6.57/6.11.4. Affected is the function blk_mq_submit_bio. The manipulation leads to deadlock. This vulnerability is traded as CVE-2024-50098. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-50095 | Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3 RDMA mad_agent_priv denial of service (Nessus ID 212902 / WID-SEC-2024-3339)

Vuldb Updates
7 months 1 week ago
A vulnerability classified as problematic has been found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3. Affected is the function mad_agent_priv of the component RDMA. The manipulation leads to denial of service. This vulnerability is traded as CVE-2024-50095. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-50090 | Linux Kernel up to 6.11.3 drm xe_bb_create_job buffer overflow (bcb5be342170/6c10ba06bb1b / Nessus ID 216493)

Vuldb Updates
7 months 1 week ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.11.3. This issue affects the function xe_bb_create_job of the component drm. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2024-50090. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-50096 | Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3 nouveau migrate_to_ram allocation of resources (Nessus ID 212994 / WID-SEC-2024-3339)

Vuldb Updates
7 months 1 week ago
A vulnerability was found in Linux Kernel up to 5.10.226/5.15.167/6.1.112/6.6.56/6.11.3. It has been rated as problematic. This issue affects the function migrate_to_ram of the component nouveau. The manipulation leads to allocation of resources. The identification of this vulnerability is CVE-2024-50096. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-50093 | Linux Kernel up to 5.15.167/6.1.112/6.6.56/6.11.3 thermal drivers/pci/pci.c pcim_device_enable information disclosure (Nessus ID 211829 / WID-SEC-2024-3339)

Vuldb Updates
7 months 1 week ago
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.15.167/6.1.112/6.6.56/6.11.3. Affected is the function pcim_device_enable of the file drivers/pci/pci.c of the component thermal. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2024-50093. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-50094 | Linux Kernel up to 6.11.3 sfc xdp_do_flush denial of service (65d4fc76d75c/55e802468e1d / Nessus ID 216493)

Vuldb Updates
7 months 1 week ago
A vulnerability has been found in Linux Kernel up to 6.11.3 and classified as problematic. Affected by this vulnerability is the function xdp_do_flush of the component sfc. The manipulation leads to denial of service. This vulnerability is known as CVE-2024-50094. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-50091 | Linux Kernel up to 6.11.3 dm vdo dedupe_context privilege escalation (63ef073084c6/0808ebf2f80b / Nessus ID 216493)

Vuldb Updates
7 months 1 week ago
A vulnerability was found in Linux Kernel up to 6.11.3. It has been classified as problematic. This affects the function dedupe_context of the component dm vdo. The manipulation leads to privilege escalation. This vulnerability is uniquely identified as CVE-2024-50091. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2020-12965 | AMD CPU information exposure (WID-SEC-2024-3339)

Vuldb Updates
7 months 1 week ago
A vulnerability, which was classified as problematic, has been found in AMD CPU. Affected by this issue is some unknown functionality. The manipulation leads to information exposure through discrepancy. This vulnerability is handled as CVE-2020-12965. The attack needs to be approached within the local network. There is no exploit available. It is recommended to apply the suggested workaround.
vuldb.com

CVE-2024-50261 | Linux Kernel up to 6.1.115/6.6.59/6.11.6 macsec metadata_dst_free SCI use after free (Nessus ID 211777 / WID-SEC-2024-3397)

Vuldb Updates
7 months 1 week ago
A vulnerability was found in Linux Kernel up to 6.1.115/6.6.59/6.11.6. It has been declared as critical. Affected by this vulnerability is the function metadata_dst_free of the component macsec. The manipulation of the argument SCI leads to use after free. This vulnerability is known as CVE-2024-50261. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Threat Actors Weaponize WordPress Websites to Redirect Visitors to Malicious Websites

Cyber Security News
7 months 1 week ago

Cybersecurity researchers have uncovered a sophisticated malware campaign targeting WordPress websites through an ingenious ZIP archive-based attack mechanism. The malware, first reported in July 2025, represents a significant evolution in web-based threats, utilizing advanced obfuscation techniques and stealthy persistence methods to redirect unsuspecting visitors to malicious domains while simultaneously conducting search engine optimization poisoning operations. […]

The post Threat Actors Weaponize WordPress Websites to Redirect Visitors to Malicious Websites appeared first on Cyber Security News.

Tushar Subhra Dutta

Managed ad