Latest vulnerabilities [Sunday, January 28, 2024]

Latest vulnerabilities [Sunday, January 28, 2024]
{{titre}}

Last update performed on 01/28/2024 at 11:57:06 PM

(0) CRITICAL VULNERABILITIES [9.0, 10.0]

(1) HIGH VULNERABILITIES [7.0, 8.9]

Source : redhat.com

Vulnerability ID : CVE-2023-6200

First published on : 28-01-2024 13:15:07
Last modified on : 28-01-2024 13:15:07

Description :
A race condition was found in the Linux Kernel. Under certain conditions, an unauthenticated attacker from an adjacent network could send an ICMPv6 router advertisement packet, causing arbitrary code execution.

CVE ID : CVE-2023-6200
Source : secalert@redhat.com
CVSS Score : 7.5

References :
https://access.redhat.com/security/cve/CVE-2023-6200 | source : secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2250377 | source : secalert@redhat.com
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=dade3f6a1e4e | source : secalert@redhat.com

Vulnerability : CWE-362


(1) MEDIUM VULNERABILITIES [4.0, 6.9]

Source : redhat.com

Vulnerability ID : CVE-2024-0841

First published on : 28-01-2024 12:15:52
Last modified on : 28-01-2024 12:15:52

Description :
A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.

CVE ID : CVE-2024-0841
Source : secalert@redhat.com
CVSS Score : 6.6

References :
https://access.redhat.com/security/cve/CVE-2024-0841 | source : secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2256490 | source : secalert@redhat.com


(0) LOW VULNERABILITIES [0.1, 3.9]

(6) NO SCORE VULNERABILITIES [0.0, 0.0]

Source : mitre.org

Vulnerability ID : CVE-2024-23738

First published on : 28-01-2024 01:15:07
Last modified on : 28-01-2024 01:15:07

Description :
An issue in Postman version 10.22 and before on macOS allows a remote attacker to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

CVE ID : CVE-2024-23738
Source : cve@mitre.org
CVSS Score : /

References :
https://github.com/V3x0r/CVE-2024-23738 | source : cve@mitre.org


Vulnerability ID : CVE-2024-23743

First published on : 28-01-2024 02:15:08
Last modified on : 28-01-2024 02:15:08

Description :
An issue in Notion for macOS version 3.1.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments components.

CVE ID : CVE-2024-23743
Source : cve@mitre.org
CVSS Score : /

References :
https://github.com/V3x0r/CVE-2024-23743 | source : cve@mitre.org


Vulnerability ID : CVE-2024-23739

First published on : 28-01-2024 03:15:07
Last modified on : 28-01-2024 03:15:07

Description :
An issue in Discord for macOS version 0.0.291 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

CVE ID : CVE-2024-23739
Source : cve@mitre.org
CVSS Score : /

References :
https://github.com/V3x0r/CVE-2024-23739 | source : cve@mitre.org


Vulnerability ID : CVE-2024-23741

First published on : 28-01-2024 03:15:08
Last modified on : 28-01-2024 03:15:08

Description :
An issue in Hyper on macOS version 3.4.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

CVE ID : CVE-2024-23741
Source : cve@mitre.org
CVSS Score : /

References :
https://github.com/V3x0r/CVE-2024-23741 | source : cve@mitre.org


Vulnerability ID : CVE-2024-23742

First published on : 28-01-2024 03:15:08
Last modified on : 28-01-2024 03:15:08

Description :
An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

CVE ID : CVE-2024-23742
Source : cve@mitre.org
CVSS Score : /

References :
https://github.com/V3x0r/CVE-2024-23742 | source : cve@mitre.org


Vulnerability ID : CVE-2024-23740

First published on : 28-01-2024 04:15:07
Last modified on : 28-01-2024 04:15:07

Description :
An issue in Kap for macOS version 3.6.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

CVE ID : CVE-2024-23740
Source : cve@mitre.org
CVSS Score : /

References :
https://github.com/V3x0r/CVE-2024-23740 | source : cve@mitre.org


This website uses the NVD API, but is not approved or certified by it.

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! Youโ€™ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.