Total
6480 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-30280 | 2024-11-21 | N/A | 7.8 HIGH | ||
| Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | |||||
| CVE-2024-30278 | 1 Adobe | 1 Media Encoder | 2024-11-21 | N/A | 5.5 MEDIUM |
| Media Encoder versions 23.6.5, 24.3 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | |||||
| CVE-2024-30276 | 1 Adobe | 1 Audition | 2024-11-21 | N/A | 5.5 MEDIUM |
| Audition versions 24.2, 23.6.4 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file. | |||||
| CVE-2024-30069 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2024-11-21 | N/A | 4.7 MEDIUM |
| Windows Remote Access Connection Manager Information Disclosure Vulnerability | |||||
| CVE-2024-30068 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2024-11-21 | N/A | 8.8 HIGH |
| Windows Kernel Elevation of Privilege Vulnerability | |||||
| CVE-2024-30037 | 2024-11-21 | N/A | 5.5 MEDIUM | ||
| Windows Common Log File System Driver Elevation of Privilege Vulnerability | |||||
| CVE-2024-30025 | 2024-11-21 | N/A | 7.8 HIGH | ||
| Windows Common Log File System Driver Elevation of Privilege Vulnerability | |||||
| CVE-2024-30016 | 2024-11-21 | N/A | 5.5 MEDIUM | ||
| Windows Cryptographic Services Information Disclosure Vulnerability | |||||
| CVE-2024-2884 | 1 Google | 1 Chrome | 2024-11-21 | N/A | 6.5 MEDIUM |
| Out of bounds read in V8 in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium) | |||||
| CVE-2024-2626 | 2 Fedoraproject, Google | 2 Fedora, Chrome | 2024-11-21 | N/A | 6.5 MEDIUM |
| Out of bounds read in Swiftshader in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium) | |||||
| CVE-2024-29996 | 2024-11-21 | N/A | 7.8 HIGH | ||
| Windows Common Log File System Driver Elevation of Privilege Vulnerability | |||||
| CVE-2024-29994 | 2024-11-21 | N/A | 7.8 HIGH | ||
| Microsoft Windows SCSI Class System File Elevation of Privilege Vulnerability | |||||
| CVE-2024-29948 | 2024-11-21 | N/A | 3.8 LOW | ||
| There is an out-of-bounds read vulnerability in some Hikvision NVRs. An authenticated attacker could exploit this vulnerability by sending specially crafted messages to a vulnerable device, causing a service abnormality. | |||||
| CVE-2024-29943 | 2024-11-21 | N/A | 9.8 CRITICAL | ||
| An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling range-based bounds check elimination. This vulnerability affects Firefox < 124.0.1. | |||||
| CVE-2024-29857 | 2024-11-21 | N/A | 7.5 HIGH | ||
| An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java (BC Java) before 1.78, BC Java LTS before 2.73.6, BC-FJA before 1.0.2.5, and BC C# .Net before 2.3.1. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters. | |||||
| CVE-2024-29781 | 1 Google | 1 Android | 2024-11-21 | N/A | 7.5 HIGH |
| In ss_AnalyzeOssReturnResUssdArgIe of ss_OssAsnManagement.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2024-29778 | 1 Google | 1 Android | 2024-11-21 | N/A | 4.7 MEDIUM |
| In ProtocolPsDedicatedBearInfoAdapter::processQosSession of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation. | |||||
| CVE-2024-29755 | 2024-11-21 | N/A | 4.4 MEDIUM | ||
| In tmu_get_pi of tmu.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2024-29750 | 2024-11-21 | N/A | 5.5 MEDIUM | ||
| In km_exp_did_inner of kmv.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2024-29747 | 2024-11-21 | N/A | 5.9 MEDIUM | ||
| In _dvfs_get_lv of dvfs.c, there is a possible out of bounds read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||