VIR Vulnerability Intelligence Relay

CVEs from 2024

7,195 normalized CVEs published or assigned in this year.

Total
7,195
critical
critical 114
high
high 1,044
medium
medium 1,991
low
low 40
% Critical
1.6%
% with KEV
2.3%
% with exploit
2.3%

Top vendors

Top products

  • checkmk 10
  • office 8
  • profilegrid 8
  • office_long_term_servicing_channel 6
  • glibc 5
  • virtual_traffic_manager 5
  • element_pack 5
  • propertyhive 5

Top packages

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2024-23284 high 8.0 2y ago A logic issue was addressed with improved state management. This issue is fixed in Safari 17.4, iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, wat… redhatsusedebian
CVE-2024-40779 high 8.0 2y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-40866 high 8.0 2y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-23263 high 8.0 2y ago A logic issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 1… redhatsusedebian
CVE-2024-23280 high 8.0 2y ago An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may … redhatsusedebian
CVE-2024-27856 high 8.0 2y ago The issue was addressed with improved checks. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, watchOS 10.5. Pro… redhatsusedebian
CVE-2024-27838 high 8.0 2y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-27820 high 8.0 2y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-27851 high 8.0 2y ago Important: webkit2gtk3 security update redhatrockylinuxsusedebian
CVE-2024-9341 high 8.0 2y ago Important: buildah security update redhatrockylinuxdebiansuse+1
CVE-2024-38229 high 8.0 2y ago Important: .NET 8.0 security update redhatrockylinuxnuget
CVE-2024-43483 high 8.0 2y ago Important: .NET 8.0 security update redhatrockylinuxnuget
CVE-2024-43485 high 8.0 2y ago Important: .NET 8.0 security update redhatrockylinuxnuget
CVE-2024-43484 high 8.0 2y ago Important: .NET 8.0 security update redhatrockylinuxnuget
CVE-2024-8900 high 8.0 2y ago Important: firefox security update rockylinuxdebian
CVE-2024-9398 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9394 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9393 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9396 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9400 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9392 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9399 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9403 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-9397 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9401 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-9402 high 8.0 2y ago Important: firefox security update redhatrockylinuxdebiansuse
CVE-2024-47850 high 8.0 2y ago CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability t… redhatdebiansuse
CVE-2024-47175 high 8.0 2y ago Important: cups-filters security update redhatrockylinuxdebiansuse
CVE-2024-47176 high 8.0 2y ago Important: cups-filters security update redhatrockylinuxdebiansuse
CVE-2024-47076 high 8.0 2y ago Important: cups-filters security update redhatrockylinuxdebiansuse
CVE-2024-42246 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xs_tcp_setup_socket When using a BPF program on kernel_connect(), the c… redhatrockylinuxsusedebian+1
CVE-2024-36953 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() vgic_v2_parse_attr() is responsible for finding the vCPU tha… rockylinuxsusedebianalmalinux
CVE-2024-26665 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: tunnels: fix out of bounds access when building IPv6 PMTU error If the ICMPv6 error is built from a non-linear skb we get the fol… rockylinuxsusedebianalmalinux
CVE-2024-38601 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix a race between readers and resize checks The reader code in rb_get_reader_page() swaps a new reader page into th… redhatsusedebian
CVE-2024-38562 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: Avoid address calculations via out of bounds array indexing Before request->channels[] can be used, request->n_cha… redhatsusedebian
CVE-2024-38570 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix potential glock use-after-free on unmount When a DLM lockspace is released and there ares still locks in that lockspace… redhatrockylinuxsusedebian+1
CVE-2024-39506 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet In lio_vf_rep_copy_packet() pg_info->page is compared to … rockylinuxsusedebianalmalinux
CVE-2024-38573 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: cppc_cpufreq: Fix possible null pointer dereference cppc_cpufreq_get_rate() and hisi_cppc_cpufreq_get_rate() can be called from d… redhatrockylinuxsusedebian+1
CVE-2024-26929 high 8.0 2y ago Important: kernel security update redhatsuse
CVE-2024-26931 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix command flush on cable pull System crash due to command failed to flush back to SCSI layer. BUG: unable to h… redhatsusedebian
CVE-2024-41023 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Fix task_struct reference leak During the execution of the following stress test with linux-rt: stress-ng --cycl… rockylinuxsusedebianalmalinux
CVE-2024-26947 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: ARM: 9359/1: flush: check if the folio is reserved for no-mapping addresses Since commit a4d5613c4dc6 ("arm: extend pfn_valid to … redhatsusedebian
CVE-2024-26930 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix double free of the ha->vp_map pointer Coverity scan reported potential risk of double free of the pointer ha->… redhatsusedebian
CVE-2024-27022 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: fork: defer linking file vma until vma is fully initialized Thorvald reported a WARNING [1]. And the root cause is below race: … redhatsusedebian
CVE-2024-41035 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor Syzbot has identified a bug in usbcore (see the… rockylinuxsusedebianalmalinux
CVE-2024-41064 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: avoid possible crash when edev->pdev changes If a PCI device is removed during eeh_pe_report_edev(), edev->pdev will… rockylinuxsusedebianalmalinux
CVE-2024-36016 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() Assuming the following: - side A configures the n_gsm in basic option mo… redhatrockylinuxsusedebian+1
CVE-2024-41097 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: usb: atm: cxacru: fix endpoint checking in cxacru_bind() Syzbot is still reporting quite an old issue [1] that occurs due to inco… rockylinuxsusedebianalmalinux
CVE-2024-42225 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: replace skb_put with skb_put_zero Avoid potentially reusing uninitialized data redhatrockylinuxsusedebian+1
CVE-2024-26991 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: x86: Don't overflow lpage_info when checking attributes Fix KVM_SET_MEMORY_ATTRIBUTES to not overflow lpage_info ar… redhatsusedebian
CVE-2024-41071 high 8.0 2y ago Important: kernel security update redhatrockylinuxsusealmalinux
CVE-2024-36919 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload The session resources are used by FW and driver when ses… rockylinuxsusedebianalmalinux
CVE-2024-26739 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mirred: don't override retval if we already lost the skb If we're redirecting the skb, and haven't called tcf_mirr… redhatsusedebian
CVE-2024-26595 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path When calling mlxsw_sp_acl_tcam_region_destroy() from an erro… rockylinuxsusedebianalmalinux
CVE-2024-26769 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid deadlock on delete association path When deleting an association the shutdown path is deadlocking because we try … rockylinuxsusedebianalmalinux
CVE-2024-34158 high 8.0 2y ago Important: golang security update redhatrockylinuxdebiansuse+1
CVE-2024-34155 high 8.0 2y ago Important: golang security update redhatrockylinuxdebiansuse+1
CVE-2024-8383 high 8.0 2y ago Important: firefox security update almalinuxredhatrockylinuxdebian+1
CVE-2024-8381 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-7652 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebiansuse
CVE-2024-8387 high 8.0 2y ago Important: firefox security update redhatalmalinuxrockylinuxdebian+1
CVE-2024-8382 high 8.0 2y ago Important: thunderbird security update redhatalmalinuxrockylinuxdebian+1
CVE-2024-8385 high 8.0 2y ago Important: firefox security update redhatalmalinuxrockylinuxdebian+1
CVE-2024-8386 high 8.0 2y ago Important: firefox security update almalinuxredhatrockylinuxdebian+1
CVE-2024-8384 high 8.0 2y ago Important: firefox security update redhatalmalinuxrockylinuxdebian+1
CVE-2024-8394 high 8.0 2y ago Important: thunderbird security update redhatrockylinuxdebian
CVE-2024-36883 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net: fix out-of-bounds access in ops_init net_alloc_generic is called by net_alloc, which is called without any locking. It reads… redhatrockylinuxsusedebian+1
CVE-2024-41055 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: mm: prevent derefencing NULL ptr in pfn_section_valid() Commit 5ec8e8ea8b77 ("mm/sparsemem: fix race in accessing memory_section-… redhatrockylinuxsusedebian+1
CVE-2024-41044 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: ppp: reject claimed-as-LCP but actually malformed packets Since 'ppp_async_encode()' assumes valid LCP packets (with code from 1 … redhatrockylinuxsusedebian+1
CVE-2024-26720 high 8.0 2y ago Important: kernel security update redhatrockylinuxsusealmalinux
CVE-2024-42131 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: mm: avoid overflows in dirty throttling logic The dirty throttling logic is interspersed with assumptions that dirty limits in PA… redhatrockylinuxsusedebian+1
CVE-2024-40927 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: xhci: Handle TD clearing for multiple streams case When multiple streams are in use, multiple TDs might be in flight when an endp… redhatrockylinuxsusedebian+1
CVE-2024-36979 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix vlan use-after-free syzbot reported a suspicious rcu usage[1] in bridge's mst code. While fixing it I notic… redhatrockylinuxsusedebian+1
CVE-2024-41040 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix UAF when resolving a clash KASAN reports the following UAF: BUG: KASAN: slab-use-after-free in tcf_ct_flow_table… redhatrockylinuxsusedebian+1
CVE-2024-36000 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix missing hugetlb_lock for resv uncharge There is a recent report on UFFDIO_COPY over hugetlb: https://lore.kernel… redhatrockylinuxsusedebian+1
CVE-2024-42472 high 8.0 2y ago Important: bubblewrap and flatpak security update redhatrockylinuxdebiansuse
CVE-2024-6104 high 8.0 2y ago Important: container-tools:rhel8 security update almalinuxredhatrockylinuxdebian+2
CVE-2024-37298 high 8.0 2y ago Important: container-tools:rhel8 security update redhatrockylinuxdebiangolang
CVE-2024-40939 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: Fix tainted pointer delete is case of region creation fail In case of region creation fail in ipc_devlink_create… redhatsusedebianalmalinux
CVE-2024-40914 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: don't unpoison huge_zero_folio When I did memory failure tests recently, below panic occurs: kernel BUG at incl… redhatsusedebianalmalinux
CVE-2024-27019 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() nft_unregister_obj() can concurrent with __nft_obj_type_get… redhatrockylinuxsusedebian+1
CVE-2024-40957 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6 behaviors input_action_end_dx4() and input_action_end_d… redhatsusedebianalmalinux
CVE-2024-27016 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: validate pppoe header Ensure there is sufficient room to access the protocol field of the PPPoe header. Val… redhatsusedebian
CVE-2024-40911 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211_get_station Wiphy should be locked before calling rdev_get_station() (see lockdep assert i… redhatrockylinuxsusedebian+1
CVE-2024-39476 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING Xiao reported that lvm2 test lvconvert-raid-ta… redhatrockylinuxsusedebian+1
CVE-2024-36025 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() The app_reply->elem[] array is allocated earlier in this function and it… redhatrockylinuxsusedebian+1
CVE-2024-36003 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: ice: fix LAG and VF lock dependency in ice_reset_vf() 9f74a3dfcf83 ("ice: Fix VF Reset paths when interface in a failed over aggr… redhatsusedebian
CVE-2024-41076 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix memory leak in nfs4_set_security_label We leak nfs_fattr and nfs4_label every time we set a security xattr. redhatrockylinuxsusedebian+1
CVE-2024-38544 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt In rxe_comp_queue_pkt() an incoming response packet skb is enqueued to the resp_pkt… redhatsusedebianalmalinux
CVE-2024-40929 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids In some versions of cfg80211, the ssids poinet might be a valid one … redhatrockylinuxsusedebian+1
CVE-2024-27415 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: confirm multicast packets before passing them up the stack conntrack nf_confirm logic cannot handle cloned skb… redhatsusedebian
CVE-2024-41090 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: tap: add missing verification for short frame The cited commit missed to check against the validity of the frame length in the ta… redhatrockylinuxsusedebian+1
CVE-2024-41091 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: tun: add missing verification for short frame The cited commit missed to check against the validity of the frame length in the tu… redhatrockylinuxsusedebian+1
CVE-2024-42152 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a possible leak when destroy a ctrl during qp establishment In nvmet_sq_destroy we capture sq->ctrl early and if it is… redhatrockylinuxsusedebian+1
CVE-2024-26908 high 8.0 2y ago Important: kernel security update redhatrockylinuxsusealmalinux
CVE-2024-4317 high 8.0 2y ago Important: postgresql:15 security update redhatrockylinuxsusedebian
CVE-2024-26668 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_limit: reject configurations that cause integer overflow Reject bogus configs where internal token counter wraps a… redhatsusedebian
CVE-2024-26581 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip end interval element from gc rbtree lazy gc on insert might collect an end interval element that … redhatsusedebian
CVE-2024-38538 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure we have at least eth header len bytes syzbot triggered an uninit value[1] error in bridge device's x… redhatrockylinuxsusedebian+1
CVE-2024-42110 high 8.0 2y ago In the Linux kernel, the following vulnerability has been resolved: net: ntb_netdev: Move ntb_netdev_rx_handler() to call netif_rx() from __netif_rx() The following is emitted when using idxd (DSA)… redhatsusedebianalmalinux