VulDB Recent Entries

A vulnerability was found in Linux Kernel up to 6.6.40/6.9.9. It has been classified as critical. Affected is the function of_node of the component ma35d1. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-42248. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.99/6.6.40/6.9.9 and classified as critical. This issue affects the function xs_tcp_setup_socket of the component sunrpc. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2024-42246. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.99/6.6.40/6.9.9 and classified as critical. This vulnerability affects the function cs_dsp_power_up of the component cs_dsp. The manipulation leads to infinite loop. This vulnerability was named CVE-2024-42238. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.99/6.6.40/6.9.9. This affects the function cs_dsp_load of the component cs_dsp. The manipulation of the argument length leads to excessive iteration. This vulnerability is uniquely identified as CVE-2024-42237. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.9.9. Affected by this issue is the function usb_string_copy of the component configfs. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2024-42236. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.6.40/6.9.9. Affected by this vulnerability is the function crst_table_free. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-42235. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Kashipara Responsive School Management System 3.2.0. Affected is an unknown function of the file /smsa/view_subject.php of the component Subject Detail Handler. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2024-41249. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Kashipara Responsive School Management System 3.2.0. It has been rated as critical. This issue affects some unknown processing of the file /smsa/admin_dashboard.php of the component Administrator Dashboard. The manipulation leads to improper access controls. The identification of this vulnerability is CVE-2024-41246. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Kashipara Responsive School Management System 3.2.0. It has been declared as critical. This vulnerability affects unknown code of the file /smsa/add_class.php of the component New Class Handler. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-41247. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Kashipara Responsive School Management System 3.2.0. It has been classified as critical. This affects an unknown part of the file /smsa/add_subject.php of the component New Subject Handler. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2024-41248. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Kashipara Responsive School Management System 3.2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /smsa/admin_student_register_approval.php of the component Student Registration Handler. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2024-41252. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Kashipara Responsive School Management System 3.2.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /smsa/admin_teacher_register_approval.php of the component Teacher Registration Handler. The manipulation leads to improper access controls. This vulnerability is known as CVE-2024-41251. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.10.221/5.15.162/6.1.99/6.6.40/6.9.9. Affected is the function swap_endian of the component allowedips. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2024-42247. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.221/5.15.162/6.1.99/6.6.40/6.9.9. This issue affects the function usb_kill_urb of the component mos7840. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2024-42244. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.9.9. This vulnerability affects the function blk_queue_max_segment_size of the component sdhci. The manipulation leads to memory corruption. This vulnerability was named CVE-2024-42242. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.162/6.1.99/6.6.40/6.9.9. This affects the function entry_SYSENTER_compat. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2024-42240. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.40/6.9.9. It has been rated as problematic. Affected by this issue is the function bpf_timer_cancel of the component bpf. The manipulation leads to deserialization. This vulnerability is handled as CVE-2024-42239. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.9.9. It has been declared as critical. Affected by this vulnerability is the function pte_offset_map. The manipulation leads to use after free. This vulnerability is known as CVE-2024-42233. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.99/6.6.40/6.9.9. It has been classified as critical. Affected is the function detach_tasks. The manipulation leads to excessive iteration. This vulnerability is traded as CVE-2024-42245. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.9.9 and classified as critical. This issue affects the function delayed_work of the component libceph. The manipulation leads to use after free. The identification of this vulnerability is CVE-2024-42232. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.