CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21372 – Windows OLE Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21372
Windows OLE Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código OLE de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21372 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21350 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21350
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21350 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-21379 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21379
Microsoft Word Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Word This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current user. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21379 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-24857 – Race condition vulnerability in Linux kernel bluetooth in conn_info_{min,max}_age_set()
https://notcve.org/view.php?id=CVE-2024-24857
This can result in integrity overflow issue, possibly leading to bluetooth connection abnormality or denial of service. ... This issue can lead to an integrity overflow issue, potentially disrupting Bluetooth connections or facilitating a denial of service attack. • https://bugzilla.openanolis.cn/show_bug.cgi?id=8155 https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html https://access.redhat.com/security/cve/CVE-2024-24857 https://bugzilla.redhat.com/show_bug.cgi?id=2266247 • CWE-190: Integer Overflow or Wraparound CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 4.4EPSS: 0%CPEs: 38EXPL: 0CVE-2024-20016
https://notcve.org/view.php?id=CVE-2024-20016
In ged, there is a possible out of bounds write due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/February-2024 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •