Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-53104 |
Description:
Nessus Plugin ID 216835 with High Severity
Synopsis
The remote SUSE host is missing a security update.
Description
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:0707-1 advisory. This update for the Linux Kernel 5.3.18-150300_59_174 fixes one issue. The following security issue was fixed: - CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783).Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected kernel-livepatch-5_3_18-150300_59_174-default package.
Read more at https://www.tenable.com/plugins/nessus/216835
CVSS: LOW (0.0)
February 26th, 2025 (3 months ago)
|
|
CVE-2024-53104 |
Description:
Nessus Plugin ID 216839 with High Severity
Synopsis
The remote SUSE host is missing a security update.
Description
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0713-1 advisory. This update for the Linux Kernel 5.14.21-150400_24_144 fixes one issue. The following security issue was fixed: - CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1236783).Tenable has extracted the preceding description block directly from the SUSE security advisory.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected kernel-livepatch-5_14_21-150400_24_144-default and / or kernel- livepatch-5_3_18-150300_59_185-default packages.
Read more at https://www.tenable.com/plugins/nessus/216839
CVSS: LOW (0.0)
February 26th, 2025 (3 months ago)
|
|
CVE-2025-26698 |
Description: Incorrect resource transfer between spheres issue exists in RevoWorks SCVX and RevoWorks Browser. If exploited, malicious files may be downloaded to the system where using the product.
CVSS: LOW (2.7) EPSS Score: 0.01%
February 26th, 2025 (3 months ago)
|
|
CVE-2025-0760 |
Description: A Credential Disclosure vulnerability exists where an administrator could extract the stored SMTP account credentials due to lack of encryption.
CVSS: LOW (2.7) EPSS Score: 0.02%
February 26th, 2025 (3 months ago)
|
|
CVE-2025-27146 |
Description: matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability has been patched in matrix-appservice-irc version 3.0.4.
CVSS: LOW (2.7) EPSS Score: 0.03% SSVC Exploitation: none
February 25th, 2025 (3 months ago)
|
|
CVE-2024-53879 |
Description: NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where a user could cause a crash by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service.
CVSS: LOW (2.8) EPSS Score: 0.02%
February 25th, 2025 (3 months ago)
|
|
CVE-2024-53878 |
Description: NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where a user could cause a crash by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service.
CVSS: LOW (2.8) EPSS Score: 0.02% SSVC Exploitation: none
February 25th, 2025 (3 months ago)
|
|
CVE-2024-53877 |
Description: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause a NULL pointer exception by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability might lead to a partial denial of service.
CVSS: LOW (3.3) EPSS Score: 0.02%
February 25th, 2025 (3 months ago)
|
|
CVE-2024-53876 |
Description: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability might lead to a partial denial of service.
CVSS: LOW (3.3) EPSS Score: 0.02%
February 25th, 2025 (3 months ago)
|
|
CVE-2024-53875 |
Description: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service.
CVSS: LOW (3.3) EPSS Score: 0.02%
February 25th, 2025 (3 months ago)
|