CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2024-44944 – netfilter: ctnetlink: use helper function to calculate expect ID
https://notcve.org/view.php?id=CVE-2024-44944
30 Aug 2024 — A physically proximate remote attacker could use this to cause a denial of service or possibly execute arbitrary code. • https://git.kernel.org/stable/c/7b115755fb9d3aff0ddcd18a5c4d83381362acce •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-8250 – Expired Pointer Dereference in Wireshark
https://notcve.org/view.php?id=CVE-2024-8250
28 Aug 2024 — NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file • https://gitlab.com/wireshark/wireshark/-/issues/19943 • CWE-825: Expired Pointer Dereference •
CVSS: 8.6EPSS: 0%CPEs: 4EXPL: 0CVE-2024-20446 – Cisco NX-OS Software DHCPv6 Relay Agent Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-20446
28 Aug 2024 — A vulnerability in the DHCPv6 relay agent of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. ... A successful exploit could allow the attacker to cause the dhcp_snoop process to crash and restart multiple times, causing the affected device to reload and resulting in a DoS condition. • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dhcp6-relay-dos-znEAA6xn • CWE-476: NULL Pointer Dereference •
CVSS: 7.3EPSS: 0%CPEs: 84EXPL: 0CVE-2023-43078
https://notcve.org/view.php?id=CVE-2023-43078
28 Aug 2024 — Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service. • https://www.dell.com/support/kbdoc/en-us/000217981/dsa-2023-362-security-update-for-dell-dock-firmware-and-dell-client-platform-for-an-improper-link-resolution-vulnerability • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34198
https://notcve.org/view.php?id=CVE-2024-34198
28 Aug 2024 — This can be further exploited to execute arbitrary commands or launch denial-of-service attacks. • https://gist.github.com/Swind1er/02f6cb414e440c34878f20fef756e286 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44913
https://notcve.org/view.php?id=CVE-2024-44913
28 Aug 2024 — This vulnerability can lead to a Denial of Service (DoS). • https://github.com/yuhano/irfanview_Poc • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44914
https://notcve.org/view.php?id=CVE-2024-44914
28 Aug 2024 — This vulnerability can lead to a Denial of Service (DoS). • https://github.com/yuhano/irfanview_Poc • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44915
https://notcve.org/view.php?id=CVE-2024-44915
28 Aug 2024 — This vulnerability can lead to a Denial of Service (DoS). • https://github.com/yuhano/irfanview_Poc • CWE-284: Improper Access Control •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34195
https://notcve.org/view.php?id=CVE-2024-34195
28 Aug 2024 — For instance, by invoking the formWlanRedirect function with specific parameters to alter wlan_idx's value and subsequently invoking the formWlEncrypt function, an attacker can trigger buffer overflow, enabling arbitrary command execution or denial of service attacks. • https://gist.github.com/Swind1er/84161b607d06d060fba5adcdd92bceb4 • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-43414 – Apollo Query Planner and Apollo Gateway may infinitely loop on sufficiently complex queries
https://notcve.org/view.php?id=CVE-2024-43414
27 Aug 2024 — Instances of @apollo/query-planner >=2.0.0 and <2.8.5 are impacted by a denial-of-service vulnerability. • https://github.com/apollographql/federation/security/advisories/GHSA-fmj9-77q8-g6c4 • CWE-674: Uncontrolled Recursion •