NA - CVE-2024-38395 - In iTerm2 before 3.5.2, the "Terminal may...
In iTerm2 before 3.5.2, the "Terminal may report window title" setting is not honored, and thus remote code execution might occur but "is not trivially exploitable."
NA - CVE-2024-38427 - In International Color Consortium DemoIccMAX...
In International Color Consortium DemoIccMAX before 85ce74e, a logic flaw in CIccTagXmlProfileSequenceId::ParseXml in IccXML/IccLibXML/IccTagXml.cpp results in unconditionally returning false.
NA - CVE-2024-38428 - url.c in GNU Wget through 1.24.5 mishandles...
url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo...
NA - CVE-2024-38439 - Netatalk 3.2.0 has an off-by-one error and...
Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[PASSWDLEN] to '\0' in FPLoginExt in login in etc/uams/uams_pam.c.
NA - CVE-2024-38440 - Netatalk 3.2.0 has an off-by-one error and...
Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of incorrectly using FPLoginExt in BN_bin2bn in etc/uams/uams_dhx_pam.c.
NA - CVE-2024-38441 - Netatalk 3.2.0 has an off-by-one error and...
Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of setting ibuf[len] to '\0' in FPMapName in afp_mapname in etc/afp/directory.c.
NA - CVE-2024-38443 - C/sorting/binary_insertion_sort.c in The...
C/sorting/binary_insertion_sort.c in The Algorithms - C through e5dad3f has a segmentation fault for deep recursion, which may affect common use cases such as sorting an array of 50 elements.
NA - CVE-2024-34451 - Ghost through 5.85.1 allows remote attackers to...
Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded-For headers with different values. NOTE: the vendor's...
NA - CVE-2024-6039 - A vulnerability, which was classified as...
A vulnerability, which was classified as critical, was found in Feng Office 3.11.1.2. Affected is an unknown function of the component Workspaces. The manipulation of the argument dim leads to sql...