CVEs from 2024
Total
6,961
critical
critical 114
high
high 1,032
medium
medium 1,998
low
low 47
% Critical
1.6%
% with KEV
2.3%
% with exploit
2.8%
Top products
- surveillance_station 12
- checkmk 10
- profilegrid 8
- office 8
- office_long_term_servicing_channel 6
- glibc 5
- virtual_traffic_manager 5
- element_pack 5
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-23213 | high | — | 8.0 | 2y ago | Important: webkit2gtk3 security update | |||
| CVE-2024-23206 | high | — | 8.0 | 2y ago | Important: webkit2gtk3 security update | |||
| CVE-2024-28109 | high | — | 8.0 | 2y ago | veraPDF has potential XSLT injection vulnerability when using policy files | |||
| CVE-2024-29800 | high | 8.0 | 8.0 | 2y ago | timber/timber vulnerable to Deserialization of Untrusted Data | |||
| CVE-2024-30046 | high | — | 8.0 | 2y ago | RHSA-2024:3345: .NET 8.0 security update (Important) | |||
| CVE-2024-30045 | high | — | 8.0 | 2y ago | RHSA-2024:3345: .NET 8.0 security update (Important) | |||
| CVE-2024-27982 | high | — | 8.0 | 2y ago | RHSA-2024:2780: nodejs:18 security update (Important) | |||
| CVE-2024-27983 | high | — | 8.0 | 2y ago | RHSA-2024:2780: nodejs:18 security update (Important) | |||
| CVE-2024-22025 | high | — | 8.0 | 2y ago | RHSA-2024:2780: nodejs:18 security update (Important) | |||
| CVE-2024-31270 | high | 8.0 | 8.0 | 2y ago | Missing Authorization vulnerability in Repute InfoSystems ARForms Form Builder.This issue affects ARForms Form Builder: from n/a through 1.6.1. | |||
| CVE-2024-23271 | high | — | 8.0 | 2y ago | RHSA-2024:9636: webkit2gtk3 security update (Important) | |||
| CVE-2024-26582 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: tls: fix use-after-free with partial reads and async decrypt tls_decrypt_sg doesn't take a reference on the pages from clear… | |||
| CVE-2024-0565 | high | — | 8.0 | 2y ago | RHSA-2024:1614: kernel-rt security and bug fix update (Important) | |||
| CVE-2024-31083 | high | — | 8.0 | 2y ago | RHSA-2024:3343: xorg-x11-server-Xwayland security update (Important) | |||
| CVE-2024-26585 | high | — | 8.0 | 2y ago | RHSA-2024:4352: kernel-rt security and bug fix update (Important) | |||
| CVE-2024-26584 | high | — | 8.0 | 2y ago | RHSA-2024:4352: kernel-rt security and bug fix update (Important) | |||
| CVE-2024-26633 | high | — | 8.0 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() syzbot pointed out [1] that NEXTHDR_FRAGMENT handling is… | |||
| CVE-2024-26583 | high | — | 8.0 | 2y ago | RHSA-2024:4352: kernel-rt security and bug fix update (Important) | |||
| CVE-2024-31080 | high | — | 8.0 | 2y ago | RHSA-2024:3343: xorg-x11-server-Xwayland security update (Important) | |||
| CVE-2024-1313 | high | — | 8.0 | 2y ago | RHSA-2024:3265: grafana security update (Important) | |||
| CVE-2024-3019 | high | — | 8.0 | 2y ago | RHSA-2024:3264: pcp security update (Important) | |||
| CVE-2024-31081 | high | — | 8.0 | 2y ago | RHSA-2024:3343: xorg-x11-server-Xwayland security update (Important) | |||
| CVE-2024-24785 | high | — | 8.0 | 2y ago | RHSA-2026:3428: container-tools:rhel8 security update (Important) | |||
| CVE-2024-28757 | high | — | 8.0 | 2y ago | RHSA-2025:21776: expat security update (Important) | |||
| CVE-2024-26586 | high | — | 8.0 | 2y ago | RHSA-2024:5102: kernel-rt security update (Important) | |||
| CVE-2024-1085 | high | — | 8.0 | 2y ago | A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_setelem_catchall_deactivate() function checks whet… | |||
| CVE-2024-1753 | high | — | 8.0 | 2y ago | RHSA-2024:3254: container-tools:rhel8 security update (Important) | |||
| CVE-2024-27316 | high | — | 8.0 | 2y ago | RHSA-2024:1786: httpd:2.4/mod_http2 security update (Important) | |||
| CVE-2024-1488 | high | — | 8.0 | 2y ago | RHSA-2025:0837: unbound security update (Important) | |||
| CVE-2024-22017 | high | — | 8.0 | 2y ago | RHSA-2024:1687: nodejs:20 security update (Important) | |||
| CVE-2024-21890 | high | — | 8.0 | 2y ago | RHSA-2024:1687: nodejs:20 security update (Important) | |||
| CVE-2024-21891 | high | — | 8.0 | 2y ago | RHSA-2024:1687: nodejs:20 security update (Important) | |||
| CVE-2024-30156 | high | — | 8.0 | 2y ago | RHSA-2024:1690: varnish security update (Important) | |||
| CVE-2024-21896 | high | — | 8.0 | 2y ago | RHSA-2024:1687: nodejs:20 security update (Important) | |||
| CVE-2024-21892 | high | — | 8.0 | 2y ago | RHSA-2024:1687: nodejs:20 security update (Important) | |||
| CVE-2024-1394 | high | — | 8.0 | 2y ago | RHSA-2024:7262: osbuild-composer security update (Important) | |||
| CVE-2024-22019 | high | — | 8.0 | 2y ago | RHSA-2024:1687: nodejs:20 security update (Important) | |||
| CVE-2024-1597 | high | — | 8.0 | 2y ago | RHSA-2024:1435: postgresql-jdbc security update (Important) | |||
| CVE-2024-25617 | high | — | 8.0 | 2y ago | RHSA-2024:1375: squid:4 security update (Important) | |||
| CVE-2024-25111 | high | — | 8.0 | 2y ago | RHSA-2024:1375: squid:4 security update (Important) | |||
| CVE-2024-0646 | high | — | 8.0 | 2y ago | RHSA-2024:0897: kernel security update (Important) | |||
| CVE-2024-1546 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-0985 | high | — | 8.0 | 2y ago | RHSA-2024:0975: postgresql:13 security update (Important) | |||
| CVE-2024-1553 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-1547 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-1548 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-1549 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-1552 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-1550 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-1551 | high | — | 8.0 | 2y ago | RHSA-2024:0964: thunderbird security update (Important) | |||
| CVE-2024-26130 | high | — | 8.0 | 2y ago | Important: python3.12-cryptography security update | |||
| CVE-2024-21404 | high | — | 8.0 | 2y ago | RHSA-2024:3340: .NET 7.0 security update (Important) | |||
| CVE-2024-21386 | high | — | 8.0 | 2y ago | RHSA-2024:3340: .NET 7.0 security update (Important) | |||
| CVE-2024-0964 | high | — | 8.0 | 2y ago | A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request. | |||
| CVE-2024-0751 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0755 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0741 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0747 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0746 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0742 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0749 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0750 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-0753 | high | — | 8.0 | 2y ago | RHSA-2024:0609: thunderbird security update (Important) | |||
| CVE-2024-20932 | high | — | 8.0 | 2y ago | RHSA-2024:0267: java-17-openjdk security and bug fix update (Important) | |||
| CVE-2024-20919 | high | — | 8.0 | 2y ago | RHSA-2024:0267: java-17-openjdk security and bug fix update (Important) | |||
| CVE-2024-21319 | high | — | 8.0 | 2y ago | RHSA-2024:0158: .NET 6.0 security update (Important) | |||
| CVE-2024-0057 | high | — | 8.0 | 2y ago | RHSA-2024:0158: .NET 6.0 security update (Important) | |||
| CVE-2024-0056 | high | — | 8.0 | 2y ago | RHSA-2024:0158: .NET 6.0 security update (Important) | |||
| CVE-2024-26649 | high | — | 8.0 | 3y ago | RHSA-2024:7001: kernel-rt security update (Important) | |||
| CVE-2024-57876 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2024-0443 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2024-54658 | high | — | 8.0 | 3y ago | RHSA-2024:9636: webkit2gtk3 security update (Important) | |||
| CVE-2024-23252 | high | — | 8.0 | 3y ago | RHSA-2023:4202: webkit2gtk3 security update (Important) | |||
| CVE-2024-27808 | high | — | 8.0 | 3y ago | RHSA-2023:4202: webkit2gtk3 security update (Important) | |||
| CVE-2024-27833 | high | — | 8.0 | 3y ago | RHSA-2023:4202: webkit2gtk3 security update (Important) | |||
| CVE-2024-27834 | high | — | 8.0 | 3y ago | RHSA-2024:9636: webkit2gtk3 security update (Important) | |||
| CVE-2024-36333 | high | 7.8 | 7.8 | 15d ago | A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. | |||
| CVE-2024-47091 | high | 7.8 | 7.8 | 17d ago | Privilege escalation in the mk_mysql agent plugin on Windows in Checkmk <2.4.0p29, <2.3.0p47, and 2.2.0 (EOL) allows a local unprivileged user able to create a Windows service whose name matches 'MyS… | |||
| CVE-2024-58072 | high | 7.8 | 7.8 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: remove unused check_buddy_priv Commit 2461c7d60f9f ("rtlwifi: Update header file") introduced a global list of pri… | |||
| CVE-2024-46744 | high | 7.8 | 7.8 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a "KMSAN: uninit-value in pick_link" bug. This is caused by an unini… | |||
| CVE-2024-58240 | high | 7.8 | 7.8 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: tls: separate no-async decryption request handling from async If we're not doing async, the handling is much simpler. There's no … | |||
| CVE-2024-50151 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2_IOCTL request When using encryption, either enforced by the server or when using 'seal' … | |||
| CVE-2024-47745 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: mm: call the security_mmap_file() LSM hook in remap_file_pages() The remap_file_pages syscall handler calls do_mmap() directly, w… | |||
| CVE-2024-47718 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: always wait for both firmware loading attempts In 'rtw_wait_firmware_completion()', always wait for both (regular an… | |||
| CVE-2024-53057 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT In qdisc_tree_reduce_backlog, Qdiscs with major handle ffff: are assumed t… | |||
| CVE-2024-53059 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() 1. The size of the response packet is not validated. 2. … | |||
| CVE-2024-49883 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: aovid use-after-free in ext4_ext_insert_extent() As Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is … | |||
| CVE-2024-49889 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: avoid use-after-free in ext4_ext_show_leaf() In ext4_find_extent(), path may be freed by error or be reallocated, so using … | |||
| CVE-2024-49882 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path In ext4_ext_try_to_merge_up(), set path[1].p_bh to NULL after it has bee… | |||
| CVE-2024-42302 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal Keith reports a use-after-free when a DPC event occurs concurrently… | |||
| CVE-2024-49884 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix slab-use-after-free in ext4_split_extent_at() We hit the following use-after-free: ===================================… | |||
| CVE-2024-50150 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a… | |||
| CVE-2024-46871 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX [Why & How] It actually exposes '6' types in enum dmu… | |||
| CVE-2024-44987 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent UAF in ip6_send_skb() syzbot reported an UAF in ip6_send_skb() [1] After ip6_local_out() has returned, we no longe… | |||
| CVE-2024-53166 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix bfqq uaf in bfq_limit_depth() Set new allocated bfqq to bic or remove freed bfqq from bic are both protected by b… | |||
| CVE-2024-56631 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Fix slab-use-after-free read in sg_release() Fix a use-after-free bug in sg_release(), detected by syzbot with KASAN: … | |||
| CVE-2024-46759 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: hwmon: (adc128d818) Fix underflows seen when writing limit attributes DIV_ROUND_CLOSEST() after kstrtol() results in an underflow… | |||
| CVE-2024-46853 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: spi: nxp-fspi: fix the KASAN report out-of-bounds bug Change the memcpy length to fix the out-of-bounds issue when writing the da… | |||
| CVE-2024-50127 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() In 'taprio_change()', 'admin' pointer may become dangling due to sched switch /… | |||
| CVE-2024-50121 | high | 7.8 | 7.8 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net In the normal case, when we excute `echo 0 > /proc/fs/… |