CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-37535
https://notcve.org/view.php?id=CVE-2024-37535
GNOME VTE before 0.76.3 allows an attacker to cause a denial of service (memory consumption) via a window resize escape sequence, a related issue to CVE-2000-0476. • http://www.openwall.com/lists/oss-security/2024/06/09/1 http://www.openwall.com/lists/oss-security/2024/06/09/2 https://gitlab.gnome.org/GNOME/vte/-/issues/2786 https://gitlab.gnome.org/GNOME/vte/-/tags/0.76.3 • CWE-400: Uncontrolled Resource Consumption •
CVSS: -EPSS: 0%CPEs: 3EXPL: 0CVE-2024-36966 – erofs: reliably distinguish block based and fscache mode
https://notcve.org/view.php?id=CVE-2024-36966
.] ========== ================================== Ahora, cuando se llama a erofs_kill_sb(), erofs_sb_info debe haberse inicializado, así que use sbi->fsid para distinguir entre los dos modos. • https://git.kernel.org/stable/c/aca740cecbe57b12bd9c1fc632092af5ebacda0c https://git.kernel.org/stable/c/f9b877a7ee312ec8ce17598a7ef85cb820d7c371 https://git.kernel.org/stable/c/dcdd49701e429c55b3644fd70fc58d85745f8cfe https://git.kernel.org/stable/c/7af2ae1b1531feab5d38ec9c8f472dc6cceb4606 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-7261 – Google Chrome Updater DosDevices Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-7261
By creating a DOS device redirection, an attacker can abuse the update mechanism to launch an executable from an untrusted location. • https://issues.chromium.org/issues/40064602 • CWE-233: Improper Handling of Parameters •
CVSS: 9.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-37388
https://notcve.org/view.php?id=CVE-2024-37388
An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of lxml before v4.9.1 allows attackers to access sensitive information or cause a Denial of Service (DoS) via crafted XML input. Una vulnerabilidad de entidad externa XML (XXE) en la función ebookmeta.get_metadata de lxml anterior a v4.9.1 permite a los atacantes acceder a información confidencial o provocar una denegación de servicio (DoS) a través de una entrada XML manipulada. • https://github.com/dnkorpushov/ebookmeta/issues/16#issue-2317712335 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-36827
https://notcve.org/view.php?id=CVE-2024-36827
An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service (DoS) via crafted XML input. Una vulnerabilidad de entidad externa XML (XXE) en la función ebookmeta.get_metadata de ebookmeta anterior a v1.2.8 permite a los atacantes acceder a información confidencial o provocar una denegación de servicio (DoS) a través de una entrada XML manipulada. • https://github.com/dnkorpushov/ebookmeta/issues/16#issue-2317712335 •