VulDB Recent Entries

A vulnerability was found in Linux Kernel up to 6.13.1 and classified as critical. Affected by this issue is the function uvc_probe of the component uvcvideo. The manipulation leads to deadlock. This vulnerability is handled as CVE-2024-58059. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component f_tcm. The manipulation leads to double free. This vulnerability is known as CVE-2024-58055. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.6.75/6.12.12/6.13.1. Affected is an unknown function of the component rxrpc. The manipulation leads to denial of service. This vulnerability is traded as CVE-2024-58053. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1. This vulnerability affects unknown code of the component ubifs. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-58058. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1. This issue affects the function atomctrl_get_smc_sclk_range_table of the component AMD GPU. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-58052. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1. This affects the function v4l2_i2c_subdev_init. The manipulation leads to state issue. This vulnerability is uniquely identified as CVE-2024-58054. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1. It has been rated as critical. Affected by this issue is the function devm_kasprintf of the component ipmb. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2024-58051. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.12/6.13.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component idpf. The manipulation leads to denial of service. This vulnerability is known as CVE-2024-58057. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.12/6.13.1. It has been classified as critical. Affected is the function bpf_try_module_get of the file btf.h. The manipulation leads to improper update of reference count. This vulnerability is traded as CVE-2024-58060. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in projectworlds Life Insurance Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /search.php. The manipulation of the argument key leads to sql injection. The identification of this vulnerability is CVE-2025-2067. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability has been found in projectworlds Life Insurance Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /updateAgent.php. The manipulation of the argument agent_id leads to sql injection. This vulnerability was named CVE-2025-2066. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in projectworlds Life Insurance Management System 1.0. This affects an unknown part of the file /editAgent.php. The manipulation of the argument agent_id leads to sql injection. This vulnerability is uniquely identified as CVE-2025-2065. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in projectworlds Life Insurance Management System 1.0. Affected by this issue is some unknown functionality of the file /deletePayment.php. The manipulation of the argument recipt_no leads to sql injection. This vulnerability is handled as CVE-2025-2064. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in projectworlds Life Insurance Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /deleteNominee.php. The manipulation of the argument nominee_id leads to sql injection. This vulnerability is known as CVE-2025-2063. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in projectworlds Life Insurance Management System 1.0. Affected is an unknown function of the file /clientStatus.php. The manipulation of the argument client_id leads to sql injection. This vulnerability is traded as CVE-2025-2062. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in TAAGSOLUTIONS MyTaag up to 2024-11-24. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper input validation. The identification of this vulnerability is CVE-2025-25452. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in code-projects Online Ticket Reservation System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /passenger.php. The manipulation of the argument name leads to cross site scripting. This vulnerability was named CVE-2025-2061. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. It has been classified as critical. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. This vulnerability is uniquely identified as CVE-2025-2060. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/booking-details.php. The manipulation of the argument ambulanceregnum leads to sql injection. This vulnerability is handled as CVE-2025-2059. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/search.php. The manipulation of the argument searchdata leads to sql injection. This vulnerability is known as CVE-2025-2058. The attack can be launched remotely. Furthermore, there is an exploit available.