CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39433
https://notcve.org/view.php?id=CVE-2024-39433
27 Sep 2024 — In drm service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241 •
CVSS: 8.3EPSS: 0%CPEs: 14EXPL: 0CVE-2024-39432
https://notcve.org/view.php?id=CVE-2024-39432
27 Sep 2024 — This could lead to remote denial of service with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241 •
CVSS: 8.3EPSS: 0%CPEs: 14EXPL: 0CVE-2024-39431
https://notcve.org/view.php?id=CVE-2024-39431
27 Sep 2024 — This could lead to remote denial of service with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-9029 – Freeimage: heap buffer overflow in tiff_read_iptc_profile
https://notcve.org/view.php?id=CVE-2024-9029
27 Sep 2024 — Processing a crafted image can cause a buffer over-read of 1 byte in the read_iptc_profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library, resulting in a denial of service. • https://bugzilla.redhat.com/show_bug.cgi?id=2313704 • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7011
https://notcve.org/view.php?id=CVE-2024-7011
27 Sep 2024 — Sharp NEC Projectors (NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-P605UL, NP-P605UL+, NP-P605ULG, NP-P605ULJL, NP-CA4120X, NP-CA4160W, NP-CA4160X, NP-CA4200U, NP-CA4200W, NP-CA4202W, NP-CA4260X, NP-CA4300X, NP-CA4355X, NP-CD2100U, NP-CD2120X, NP-CD2300X, NP-CR2100X, NP-CR2170W, NP-CR2170X, NP-CR2200U, NP-CR2200W, NP-CR2280X, NP-CR2310X, NP-CR2350X, NP-MC302XG, NP-MC332WG, NP-M... • https://www.sharp-nec-displays.com/global/support/info/Projector_vulnerability_202408.html • CWE-1242: Inclusion of Undocumented Features or Chicken Bits •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-37125
https://notcve.org/view.php?id=CVE-2024-37125
26 Sep 2024 — A remote unauthenticated host could potentially exploit this vulnerability leading to a denial of service. • https://www.dell.com/support/kbdoc/en-us/000228976/dsa-2024-274-security-update-for-dell-networking-os10-vulnerabilities • CWE-400: Uncontrolled Resource Consumption •
CVSS: -EPSS: 0%CPEs: -EXPL: 1CVE-2023-52709 – TI Bluetooth Denial Of Service
https://notcve.org/view.php?id=CVE-2023-52709
26 Sep 2024 — When running Defensics test case #SMP legacy 1001 with loop mode on DUT configured as resolvable private address, after a while, the device will end up generating unresolvable random private address causing denial of service for already bonded peer devices. • https://github.com/KevinMitchell-OSWP-CISSP/CVE-2023-52709-PoC •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-9199 – Rate limit vulnerability in Clibo Manager
https://notcve.org/view.php?id=CVE-2024-9199
26 Sep 2024 — Rate limit vulnerability in Clibo Manager v1.1.9.2 that could allow an attacker to send a large number of emails to the victim in a short time, affecting availability and leading to a denial of service (DoS). • https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-clibo-manager • CWE-799: Improper Control of Interaction Frequency •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-47003 – DoS via non-string message using permalink embed
https://notcve.org/view.php?id=CVE-2024-47003
26 Sep 2024 — Mattermost versions 9.11.x <= 9.11.0 and 9.5.x <= 9.5.8 fail to validate that the message of the permalink post is a string, which allows an attacker to send a non-string value as the message of a permalink post and crash the frontend. Mattermost versions 9.11.x <= 9.11.0 and 9.5.x <= 9.5.8 fail to validate that the message of the permalink post is a string, which allows an attacker to send a non-string value as the message of a permalink post and crash the frontend. • https://mattermost.com/security-updates • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0132
https://notcve.org/view.php?id=CVE-2024-0132
26 Sep 2024 — A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5582 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •