VIR Vulnerability Intelligence Relay

CVEs from 2024

7,194 normalized CVEs published or assigned in this year.

Total
7,194
critical
critical 114
high
high 1,043
medium
medium 1,991
low
low 40
% Critical
1.6%
% with KEV
2.3%
% with exploit
2.3%

Top vendors

Top products

  • checkmk 10
  • office 8
  • profilegrid 8
  • office_long_term_servicing_channel 6
  • glibc 5
  • virtual_traffic_manager 5
  • element_pack 5
  • propertyhive 5

Top packages

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2024-21197 high 8.0 1y ago Important: mysql security update redhatrockylinuxdebian
CVE-2024-21219 high 8.0 1y ago Important: mysql:8.0 security update redhatrockylinuxdebian
CVE-2024-21194 high 8.0 1y ago Important: mysql security update redhatrockylinuxdebian
CVE-2024-21196 high 8.0 1y ago Important: mysql security update redhatrockylinuxdebian
CVE-2024-21218 high 8.0 1y ago Important: mysql:8.0 security update redhatrockylinuxdebian
CVE-2024-21238 high 8.0 1y ago Important: mysql security update redhatrockylinuxdebian
CVE-2024-21241 high 8.0 1y ago Important: mysql security update redhatrockylinuxdebianalmalinux
CVE-2024-21203 high 8.0 1y ago Important: mysql security update redhatrockylinuxdebian
CVE-2024-12705 high 8.0 1y ago Important: bind9.18 security update redhatdebiansuserockylinux
CVE-2024-21239 high 8.0 1y ago Important: mysql security update redhatrockylinuxdebianalmalinux
CVE-2024-12797 high 8.0 1y ago Important: openssl security update redhatsuserockylinuxdebian+1
CVE-2024-11218 high 8.0 1y ago Important: buildah security update redhatrockylinuxdebiansuse+1
CVE-2024-52531 high 8.0 1y ago Important: libsoup security update redhatrockylinuxsusedebian
CVE-2024-51741 high 8.0 1y ago Important: redis:7 security update redhatsuserockylinuxdebian
CVE-2024-46981 high 8.0 1y ago Important: redis:6 security update redhatrockylinuxsusedebian
CVE-2024-53263 high 8.0 1y ago Important: git-lfs security update redhatrockylinuxdebiangolang
CVE-2024-12085 high 8.0 1y ago Important: rsync security update archredhatrockylinuxsuse+1
CVE-2024-56201 high 8.0 1y ago Important: fence-agents security update redhatdebiansusepython
CVE-2024-56326 high 8.0 1y ago Important: fence-agents security update redhatrockylinuxdebiansuse+1
CVE-2024-11831 high 8.0 1y ago A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object type… redhatsusedebiannpm
CVE-2024-57823 high 8.0 1y ago Important: raptor2 security update redhatrockylinuxsusedebian
CVE-2024-53580 high 8.0 1y ago Important: iperf3 security update redhatrockylinuxdebiansuse
CVE-2024-11614 high 8.0 1y ago Important: dpdk security update redhatrockylinuxdebiansuse
CVE-2024-54505 high 8.0 1y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-54479 high 8.0 1y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-54508 high 8.0 1y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-54502 high 8.0 1y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-50252 high 8.0 1y ago In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address The device stores IPv6 addresses that are used for encaps… redhatsusedebian
CVE-2024-53122 high 8.0 1y ago In the Linux kernel, the following vulnerability has been resolved: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust Additional active subflows - i.e. created by the in kernel path man… redhatrockylinuxsusedebian
CVE-2024-46713 high 8.0 1y ago In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization Ole reported that event->mmap_mutex is strictly insufficient to serialize the AUX buffer, … redhatsusedebian
CVE-2024-50208 high 8.0 1y ago In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages Avoid memory corruption while setting up Level-2 PBL pages for the non… redhatsusedebian
CVE-2024-8508 high 8.0 2y ago Important: unbound security update redhatrockylinuxsusedebian
CVE-2024-34156 high 8.0 2y ago Important: golang security update redhatrockylinuxdebiansuse+1
CVE-2024-47539 high 8.0 2y ago Important: gstreamer1-plugins-good security update redhatrockylinuxdebiansuse
CVE-2024-47613 high 8.0 2y ago Important: gstreamer1-plugins-good security update redhatrockylinuxdebiansuse
CVE-2024-47540 high 8.0 2y ago Important: gstreamer1-plugins-good security update redhatrockylinuxdebiansuse
CVE-2024-47537 high 8.0 2y ago Important: gstreamer1-plugins-good security update redhatrockylinuxdebiansuse
CVE-2024-47606 high 8.0 2y ago Important: gstreamer1-plugins-good security update redhatrockylinuxdebiansuse
CVE-2024-47615 high 8.0 2y ago Important: gstreamer1-plugins-base security update redhatrockylinuxdebiansuse
CVE-2024-47538 high 8.0 2y ago Important: gstreamer1-plugins-base security update redhatrockylinuxdebiansuse
CVE-2024-47607 high 8.0 2y ago Important: gstreamer1-plugins-base security update redhatrockylinuxdebiansuse
CVE-2024-9287 high 8.0 2y ago Important: python39:3.9 security update rockylinuxredhatsusedebian
CVE-2024-12254 high 8.0 2y ago Important: python3.12 security update redhatrockylinuxsusedebian
CVE-2024-31228 high 8.0 2y ago Important: redis:6 security update redhatrockylinuxsusedebian
CVE-2024-31449 high 8.0 2y ago Important: redis:6 security update redhatrockylinuxsusedebian
CVE-2024-10978 high 8.0 2y ago Important: postgresql security update redhatrockylinuxsusedebian
CVE-2024-10976 high 8.0 2y ago Important: postgresql security update redhatrockylinuxsusedebian
CVE-2024-10979 high 8.0 2y ago Important: postgresql security update redhatrockylinuxsusedebian
CVE-2024-11697 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-52804 high 8.0 2y ago Important: python-tornado security update redhatrockylinuxsusedebian+1
CVE-2024-11692 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-11699 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-11694 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-11695 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-11696 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-11159 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxsusedebian
CVE-2024-52336 high 8.0 2y ago Important: tuned security update redhatsuserockylinuxdebian
CVE-2024-52337 high 8.0 2y ago Important: tuned security update redhatrockylinuxsusedebian
CVE-2024-10963 high 8.0 2y ago Important: pam security update redhatrockylinuxsusedebian
CVE-2024-53899 high 8.0 2y ago Important: python36:3.6 security update rockylinuxsusedebianpython
CVE-2024-45802 high 8.0 2y ago Important: squid:4 security update redhatrockylinuxsusedebian
CVE-2024-43499 high 8.0 2y ago Important: .NET 9.0 security update redhatnuget
CVE-2024-52530 high 8.0 2y ago Important: libsoup security update redhatrockylinuxsusedebian
CVE-2024-9050 high 8.0 2y ago Important: NetworkManager-libreswan security update redhatrockylinux
CVE-2024-52532 high 8.0 2y ago Important: libsoup security update redhatrockylinuxsusedebian
CVE-2024-44296 high 8.0 2y ago Important: webkit2gtk3 security update rockylinuxsusedebian
CVE-2024-43498 high 8.0 2y ago Important: .NET 9.0 security update redhatnuget
CVE-2024-44244 high 8.0 2y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-41039 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Fix overflow checking of wmfw header Fix the checking that firmware file buffer is large enough for the wmfw he… redhatrockylinuxsusedebian+1
CVE-2024-38627 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: stm class: Fix a double free in stm_register_device() The put_device(&stm->dev) call will trigger stm_device_release() which free… redhatrockylinuxsusedebian+1
CVE-2024-41008 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: change vm->task_info handling This patch changes the handling and lifecycle of vm->task_info object. The major change… redhatrockylinuxsusedebian+1
CVE-2024-3727 high 8.0 2y ago Important: container-tools:rhel8 security update redhatalmalinuxrockylinuxdebian+2
CVE-2024-26772 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() Places the logic for checking if the group's block b… redhatrockylinuxsusedebian+1
CVE-2024-42084 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate() syscall, using the 32-bit off_t misses a sign extension when called in compat… redhatrockylinuxsusedebian+1
CVE-2024-36920 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Avoid memcpy field-spanning write WARNING When the "storcli2 show" command is executed for eHBA-9600, mpi3mr driver… redhatrockylinuxsusedebian+1
CVE-2024-26656 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix use-after-free bug The bug can be triggered by sending a single amdgpu_gem_userptr_ioctl to the AMDGPU DRM driver… redhatrockylinuxsusedebian+1
CVE-2024-36933 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment(). syzbot triggered various splats (see [0] and … redhatrockylinuxsusedebian+1
CVE-2024-41012 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntl_setlk() races with close(), it removes the created l… redhatrockylinuxsusedebian+1
CVE-2024-39499 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: vmci: prevent speculation leaks by sanitizing event in event_deliver() Coverity spotted that event_msg is controlled by user-spac… redhatrockylinuxsusedebian+1
CVE-2024-26669 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/sched: flower: Fix chain template offload When a qdisc is deleted from a net device the stack instructs the underlying driver… redhatrockylinuxsusedebian+1
CVE-2024-38581 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/mes: fix use-after-free issue Delete fence fallback timer to fix the ramdom use-after-free issue. v2: move to amdgpu_… redhatrockylinuxsusedebian+1
CVE-2024-38555 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Discard command completions in internal error Fix use after free when FW completion arrives while device is in internal… redhatrockylinuxsusedebian+1
CVE-2024-26675 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: ppp_async: limit MRU to 64K syzbot triggered a warning [1] in __alloc_pages(): WARN_ON_ONCE_GFP(order > MAX_PAGE_ORDER, gfp) Wi… redhatrockylinuxsusedebian+1
CVE-2024-35809 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: PCI/PM: Drain runtime-idle callbacks before driver removal A race condition between the .runtime_idle() callback and the .remove(… redhatrockylinuxsusedebian+1
CVE-2024-40906 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardown_hca fails to execute during driver removal, mlx5 … redhatrockylinuxsusedebian
CVE-2024-27011 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix memleak in map from abort path The delete set command does not rely on the transaction object for eleme… redhatrockylinuxsusedebian+1
CVE-2024-35912 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: rfi: fix potential response leaks If the rx payload length check fails, or if kmemdup() fails, we still need … redhatrockylinuxsusedebian+1
CVE-2024-26846 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: nvme-fc: do not wait in vain when unloading module The module exit path has race between deleting all controllers and freeing 'le… redhatrockylinuxsusedebian+1
CVE-2024-36010 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: igb: Fix string truncation warnings in igb_set_fw_version Commit 1978d3ead82c ("intel: fix string truncation warnings") fixes '-W… redhatrockylinuxsusedebian+1
CVE-2024-35838 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix potential sta-link leak When a station is allocated, links are added but not set to valid yet (e.g. during co… redhatrockylinuxsusedebian+1
CVE-2024-41038 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers Check that all fields of a V2 algorithm header fit into t… redhatrockylinuxsusedebian+1
CVE-2024-35835 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a double-free in arfs_create_groups When `in` allocated by kvzalloc fails, arfs_create_groups will free ft->g and … redhatrockylinuxsusedebian+1
CVE-2024-27010 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix mirred deadlock on device recursion When the mirred action is used on a classful egress qdisc and a packet is mirr… redhatrockylinuxsusedebian+1
CVE-2024-35814 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: swiotlb: Fix double-allocation of slots due to broken alignment handling Commit bbb73a103fbb ("swiotlb: fix a braino in the align… redhatrockylinuxsusedebian+1
CVE-2024-26921 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: inet: inet_defrag: prevent sk release while still in use ip_local_out() and other functions can pass skb->sk as function argument… redhatrockylinuxsusedebian+1
CVE-2024-35824 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on suspend/resume When not configured for wakeup lis3lv02d_i2c_su… redhatrockylinuxsusedebian+1
CVE-2024-26759 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: mm/swap: fix race when skipping swapcache When skipping swapcache for SWP_SYNCHRONOUS_IO, if two or more threads swapin the same … redhatrockylinuxsusedebian+1
CVE-2024-26645 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: tracing: Ensure visibility when inserting an element into tracing_map Running the following two commands in parallel on a multi-p… redhatrockylinuxsusedebian+1
CVE-2024-26740 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mirred: use the backlog for mirred ingress The test Davide added in commit ca22da2fbd69 ("act_mirred: use the back… redhatrockylinuxsusedebian+1
CVE-2024-27410 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject iftype change with mesh ID change It's currently possible to change the mesh ID when the interface isn't ye… redhatrockylinuxsusedebian+1