CVEs from 2024
Total
6,993
critical
critical 121
high
high 1,015
medium
medium 2,011
low
low 42
% Critical
1.7%
% with KEV
2.3%
% with exploit
2.8%
Top products
- surveillance_station 12
- checkmk 10
- profilegrid 8
- office 8
- office_long_term_servicing_channel 6
- glibc 5
- virtual_traffic_manager 5
- element_pack 5
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-40928 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() Clang static checker (scan-build) warning: net/ethtool/i… | |||
| CVE-2024-26828 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parse_server_interfaces() In this loop, we step through the buffer and after each item we check if the siz… | |||
| CVE-2024-26808 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress basechain Remove netdevice from inet/ingress basechain in … | |||
| CVE-2024-7520 | high | — | 8.0 | 2y ago | Important: firefox security update | |||
| CVE-2024-7526 | high | — | 8.0 | 2y ago | Important: firefox security update | |||
| CVE-2024-7519 | high | — | 8.0 | 2y ago | Important: firefox security update | |||
| CVE-2024-7518 | high | — | 8.0 | 2y ago | Important: firefox security update | |||
| CVE-2024-7528 | high | — | 8.0 | 2y ago | Important: firefox security update | |||
| CVE-2024-7521 | high | — | 8.0 | 2y ago | Important: firefox security update | |||
| CVE-2024-7524 | high | — | 8.0 | 2y ago | Important: firefox security update | |||
| CVE-2024-36950 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: firewire: ohci: mask bus reset interrupts between ISR and bottom half In the FireWire OHCI interrupt handler, if a bus reset inte… | |||
| CVE-2024-36954 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: tipc: fix a possible memleak in tipc_buf_append __skb_linearize() doesn't free the skb when it fails, so move '*buf = NULL' after… | |||
| CVE-2024-38476 | high | — | 8.0 | 2y ago | Important: httpd security update | |||
| CVE-2024-35790 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group The DisplayPort driver's sysfs no… | |||
| CVE-2024-27388 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: SUNRPC: fix some memleaks in gssx_dec_option_array The creds and oa->data need to be freed in the error-handling paths after thei… | |||
| CVE-2024-26802 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: stmmac: Clear variable when destroying workqueue Currently when suspending driver and stopping workqueue it is checked whether wo… | |||
| CVE-2024-40974 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Enforce hcall result buffer validity and size plpar_hcall(), plpar_hcall9(), and related functions expect caller… | |||
| CVE-2024-26698 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove In commit ac5047671758 ("hv_netvsc: Disable NAPI before clos… | |||
| CVE-2024-35952 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/ast: Fix soft lockup There is a while-loop in ast_dp_set_on_off() that could lead to infinite-loop. This is because the regis… | |||
| CVE-2024-38474 | high | — | 8.0 | 2y ago | Important: httpd security update | |||
| CVE-2024-39573 | high | — | 8.0 | 2y ago | Important: httpd security update | |||
| CVE-2024-38477 | high | — | 8.0 | 2y ago | Important: httpd security update | |||
| CVE-2024-38473 | high | — | 8.0 | 2y ago | Important: httpd security update | |||
| CVE-2024-39936 | high | — | 8.0 | 2y ago | Important: qt5-qtbase security update | |||
| CVE-2024-5564 | high | — | 8.0 | 2y ago | Important: libndp security update | |||
| CVE-2024-21140 | high | — | 8.0 | 2y ago | Important: java-17-openjdk security update | |||
| CVE-2024-36886 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: tipc: fix UAF in error path Sam Page (sam4k) working with Trend Micro Zero Day Initiative reported a UAF in the tipc_buf_append()… | |||
| CVE-2024-27435 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nvme: fix reconnection fail due to reserved tag allocation We found a issue on production environment while using NVMe over RDMA,… | |||
| CVE-2024-21147 | high | — | 8.0 | 2y ago | Important: java-17-openjdk security update | |||
| CVE-2024-38586 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: r8169: Fix possible ring buffer corruption on fragmented Tx packets. An issue was found on the RTL8125b when transmitting small f… | |||
| CVE-2024-38593 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: micrel: Fix receiving the timestamp in the frame for lan8841 The blamed commit started to use the ptp workqueue to get the s… | |||
| CVE-2024-38663 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix list corruption from resetting io stat Since commit 3b8cc6298724 ("blk-cgroup: Optimize blkcg_rstat_flush()"), ea… | |||
| CVE-2024-21144 | high | — | 8.0 | 2y ago | Important: java-1.8.0-openjdk security update | |||
| CVE-2024-26783 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index With numa balancing on, when a numa system is running where … | |||
| CVE-2024-26858 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map Just simply r… | |||
| CVE-2024-38543 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure The kcalloc() in dmirror_device_evict_chunk() will return null if… | |||
| CVE-2024-21138 | high | — | 8.0 | 2y ago | Important: java-17-openjdk security update | |||
| CVE-2024-21145 | high | — | 8.0 | 2y ago | Important: java-17-openjdk security update | |||
| CVE-2024-21131 | high | — | 8.0 | 2y ago | Important: java-17-openjdk security update | |||
| CVE-2024-36957 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: avoid off-by-one read from userspace We try to access count + 1 byte from userspace with memdup_user(buffer, count … | |||
| CVE-2024-37560 | high | 8.0 | 8.0 | 2y ago | Improper Privilege Management vulnerability in IqbalRony WP User Switch allows Privilege Escalation.This issue affects WP User Switch: from n/a through 1.1.0. | |||
| CVE-2024-6603 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-6601 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-6604 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-35264 | high | — | 8.0 | 2y ago | Important: dotnet8.0 security update | |||
| CVE-2024-30105 | high | — | 8.0 | 2y ago | Important: dotnet8.0 security update | |||
| CVE-2024-38095 | high | — | 8.0 | 2y ago | Important: dotnet8.0 security update | |||
| CVE-2024-4467 | high | — | 8.0 | 2y ago | Important: qemu-kvm security update | |||
| CVE-2024-32021 | high | — | 8.0 | 2y ago | Important: git security update | |||
| CVE-2024-32020 | high | — | 8.0 | 2y ago | Important: git security update | |||
| CVE-2024-32465 | high | — | 8.0 | 2y ago | Important: git security update | |||
| CVE-2024-0450 | high | — | 8.0 | 2y ago | An issue was found in the CPython `zipfile` module affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior. The zipfile module is vulnerable to “quoted-overlap” zip-bombs which expl… | |||
| CVE-2024-32002 | high | — | 8.0 | 2y ago | Important: git security update | |||
| CVE-2024-32004 | high | — | 8.0 | 2y ago | Important: git security update | |||
| CVE-2024-33871 | high | — | 8.0 | 2y ago | An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This… | |||
| CVE-2024-37890 | high | — | 8.0 | 2y ago | ws affected by a DoS when handling a request with many HTTP headers | |||
| CVE-2024-5700 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-5690 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-5688 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-5696 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-5691 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-32462 | high | — | 8.0 | 2y ago | Important: flatpak security update | |||
| CVE-2024-5693 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-5702 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-2199 | high | — | 8.0 | 2y ago | Important: 389-ds-base security update | |||
| CVE-2024-3657 | high | — | 8.0 | 2y ago | Important: 389-ds-base security update | |||
| CVE-2024-3651 | high | — | 8.0 | 2y ago | Important: python39:3.9 and python39-devel:3.9 security update | |||
| CVE-2024-2698 | high | — | 8.0 | 2y ago | Important: ipa security update | |||
| CVE-2024-3183 | high | — | 8.0 | 2y ago | Important: ipa security update | |||
| CVE-2024-3049 | high | — | 8.0 | 2y ago | Important: booth security update | |||
| CVE-2024-32487 | high | — | 8.0 | 2y ago | Important: less security update | |||
| CVE-2024-24549 | high | — | 8.0 | 2y ago | Important: tomcat security and bug fix update | |||
| CVE-2024-23672 | high | — | 8.0 | 2y ago | Important: tomcat security and bug fix update | |||
| CVE-2024-23206 | high | — | 8.0 | 2y ago | Important: webkit2gtk3 security update | |||
| CVE-2024-23213 | high | — | 8.0 | 2y ago | Important: webkit2gtk3 security update | |||
| CVE-2024-28109 | high | — | 8.0 | 2y ago | veraPDF has potential XSLT injection vulnerability when using policy files | |||
| CVE-2024-4770 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-4769 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-4768 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-4767 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-4777 | high | — | 8.0 | 2y ago | Important: thunderbird security update | |||
| CVE-2024-29800 | high | 8.0 | 8.0 | 2y ago | timber/timber vulnerable to Deserialization of Untrusted Data | |||
| CVE-2024-30046 | high | — | 8.0 | 2y ago | Important: .NET 8.0 security update | |||
| CVE-2024-30045 | high | — | 8.0 | 2y ago | Important: .NET 8.0 security update | |||
| CVE-2024-25629 | high | — | 8.0 | 2y ago | Important: nodejs:20 security update | |||
| CVE-2024-27982 | high | — | 8.0 | 2y ago | Important: nodejs:20 security update | |||
| CVE-2024-27983 | high | — | 8.0 | 2y ago | Important: nodejs:20 security update | |||
| CVE-2024-22025 | high | — | 8.0 | 2y ago | Important: nodejs:20 security update | |||
| CVE-2024-31270 | high | 8.0 | 8.0 | 2y ago | Missing Authorization vulnerability in Repute InfoSystems ARForms Form Builder.This issue affects ARForms Form Builder: from n/a through 1.6.1. | |||
| CVE-2024-1085 | high | — | 8.0 | 2y ago | A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_setelem_catchall_deactivate() function checks whet… | |||
| CVE-2024-23271 | high | — | 8.0 | 2y ago | Important: webkit2gtk3 security update | |||
| CVE-2024-24784 | high | — | 8.0 | 2y ago | Important: golang security update | |||
| CVE-2024-0565 | high | — | 8.0 | 2y ago | An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on… | |||
| CVE-2024-28180 | high | — | 8.0 | 2y ago | Important: container-tools:rhel8 security update | |||
| CVE-2024-26633 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() syzbot pointed out [1] that NEXTHDR_FRAGMENT handling is… | |||
| CVE-2024-26830 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: i40e: Do not allow untrusted VF to remove administratively set MAC Currently when PF administratively sets VF's MAC address and t… | |||
| CVE-2024-25744 | high | — | 8.0 | 2y ago | In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c. | |||
| CVE-2024-26582 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: tls: fix use-after-free with partial reads and async decrypt tls_decrypt_sg doesn't take a reference on the pages from clear… | |||
| CVE-2024-3019 | high | — | 8.0 | 2y ago | A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the privileges of the Redis user. This issue c… | |||
| CVE-2024-26583 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: tls: fix race between async notify and socket close The submitting thread (one which called recvmsg/sendmsg) may exit as soon as … |