{"vulnerability": "cve-2024-4391", "sightings": [{"uuid": "18bab527-a04d-4693-aa3b-7610cca3945f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43919", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-43919.yaml", "content": "", "creation_timestamp": "2024-11-28T01:26:44.000000Z"}, {"uuid": "bc414365-2b8c-4fb9-9530-8ca2de632b23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43919", "type": "seen", "source": "https://infosec.exchange/users/random_robbie/statuses/113783265036386612", "content": "", "creation_timestamp": "2025-01-06T20:20:40.387690Z"}, {"uuid": "10dc9003-0d78-46b7-9601-8250e784f67b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:46.000000Z"}, {"uuid": "d3278c06-8de4-426c-8041-e9979c33751c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43914", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "360c7d45-a621-423f-8b14-705958a01116", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:11:03.000000Z"}, {"uuid": "a7ccacf5-c4ee-4887-a16e-aa6771b2da93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:03.000000Z"}, {"uuid": "16907270-42c7-4e12-908b-a7335c2c4ce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43912", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "afd0bd1e-faac-4fa8-9fd2-593ca6ce8060", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wp_ti_woocommerce_wishlist_sqli.rb", "content": "", "creation_timestamp": "2024-10-31T16:42:23.000000Z"}, {"uuid": "50cfa764-30a3-4bf0-b831-6bd8454b9944", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-43912", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "f3d00231-b547-4eaf-a6ff-447cea161f9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-43911", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "581169a4-c531-4b44-afd4-52d4de8d4e5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "published-proof-of-concept", "source": "Telegram/51t8UUBcVa-x2wjoRIM2mT2i7yna57J_B3bG-USYfuPX_VI", "content": "", "creation_timestamp": "2025-07-13T02:12:01.000000Z"}, {"uuid": "ee8419b3-1747-491c-98ed-dfbb2b0452b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43918", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/434", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aWBW Product Table Pro <= 1.9.4 - Unauthenticated Arbitrary SQL Execution to RCE\nURL\uff1ahttps://github.com/KTN1990/CVE-2024-43918\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-09-25T05:16:47.000000Z"}, {"uuid": "cdd31c9d-ddd1-4767-adb3-be7761f60d83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "Telegram/h9HbZ2k29WBhPqZedI7raK6Z0Uo2xDhBpR3YwH0Zr2iyDfc", "content": "", "creation_timestamp": "2025-07-22T12:59:19.000000Z"}, {"uuid": "5aaf156d-0180-4a19-b3bb-40edcb648f52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "published-proof-of-concept", "source": "Telegram/xw4F_YrdNt0Xua-SYjsnLhL7dqba0lqm-0lIqZ21N9DV39w", "content": "", "creation_timestamp": "2025-06-26T15:00:06.000000Z"}, {"uuid": "60584e39-0b94-4536-a107-60afc265e43f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/14491", "content": "\u200aCVE-2024-43917 (CVSS 9.3): Unpatched SQLi Flaw in TI WooCommerce Wishlist Threatens 100,000+ Sites\n\nhttps://securityonline.info/cve-2024-43917-cvss-9-3-unpatched-sqli-flaw-in-ti-woocommerce-wishlist-threatens-100000-sites/", "creation_timestamp": "2024-09-28T10:56:34.000000Z"}, {"uuid": "5d535c0e-0a3f-4c78-bbe8-9b1fe11e983d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43918", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8582", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aWBW Product Table Pro <= 1.9.4 - Unauthenticated Arbitrary SQL Execution to RCE\nURL\uff1ahttps://github.com/KTN1990/CVE-2024-43918\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-09-25T15:39:54.000000Z"}, {"uuid": "fd142695-a6ed-493e-923c-097c13e215ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "published-proof-of-concept", "source": "Telegram/ZmNdkUlwMi8wIyWb9PMqpqbhuxrMGAAlpZqMM06bDWpior15", "content": "", "creation_timestamp": "2025-07-13T02:12:00.000000Z"}, {"uuid": "73f2eb35-d914-4b25-9a9a-924b625b15d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "published-proof-of-concept", "source": "Telegram/8q0G2XoGgrXP8O-oMiUuoKtzfH3vGd_RQiplze-y2V_UL3MF", "content": "", "creation_timestamp": "2025-07-13T02:12:02.000000Z"}, {"uuid": "3c8dd49d-de86-4ae6-8ea2-9232b847d9fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "https://t.me/cvedetector/4411", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43917 - TemplateInvaders WooCommerce Wishlist SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-43917 \nPublished : Aug. 29, 2024, 3:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TemplateInvaders TI WooCommerce Wishlist allows SQL Injection.This issue affects TI WooCommerce Wishlist: from n/a through 2.8.2. \nSeverity: 9.3 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"29 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T17:53:42.000000Z"}, {"uuid": "054df2b3-25bb-4e96-8dd1-e6e239339f94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "https://t.me/CyberBulletin/25859", "content": "\u26a1\ufe0fCVE-2024-43917 (CVSS 9.3): Unpatched SQLi Flaw in TI WooCommerce Wishlist Threatens 100,000+ Sites.\n\n#CyberBulletin", "creation_timestamp": "2024-09-28T09:34:33.000000Z"}, {"uuid": "00827d6e-f293-468c-9968-6b9d189cb34b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43910", "type": "seen", "source": "https://t.me/cvedetector/4121", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43910 - Linux Kernel BPF Dynptr Buffer Overflow Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-43910 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved: \n \nbpf: add missing check_func_arg_reg_off() to prevent out-of-bounds memory accesses \n \nCurrently, it's possible to pass in a modified CONST_PTR_TO_DYNPTR to \na global function as an argument. The adverse effects of this is that \nBPF helpers can continue to make use of this modified \nCONST_PTR_TO_DYNPTR from within the context of the global function, \nwhich can unintentionally result in out-of-bounds memory accesses and \ntherefore compromise overall system stability i.e. \n \n[ 244.157771] BUG: KASAN: slab-out-of-bounds in bpf_dynptr_data+0x137/0x140 \n[ 244.161345] Read of size 8 at addr ffff88810914be68 by task test_progs/302 \n[ 244.167151] CPU: 0 PID: 302 Comm: test_progs Tainted: G O E 6.10.0-rc3-00131-g66b586715063 #533 \n[ 244.174318] Call Trace: \n[ 244.175787] \n[ 244.177356] dump_stack_lvl+0x66/0xa0 \n[ 244.179531] print_report+0xce/0x670 \n[ 244.182314] ? __virt_addr_valid+0x200/0x3e0 \n[ 244.184908] kasan_report+0xd7/0x110 \n[ 244.187408] ? bpf_dynptr_data+0x137/0x140 \n[ 244.189714] ? bpf_dynptr_data+0x137/0x140 \n[ 244.192020] bpf_dynptr_data+0x137/0x140 \n[ 244.194264] bpf_prog_b02a02fdd2bdc5fa_global_call_bpf_dynptr_data+0x22/0x26 \n[ 244.198044] bpf_prog_b0fe7b9d7dc3abde_callback_adjust_bpf_dynptr_reg_off+0x1f/0x23 \n[ 244.202136] bpf_user_ringbuf_drain+0x2c7/0x570 \n[ 244.204744] ? 0xffffffffc0009e58 \n[ 244.206593] ? __pfx_bpf_user_ringbuf_drain+0x10/0x10 \n[ 244.209795] bpf_prog_33ab33f6a804ba2d_user_ringbuf_callback_const_ptr_to_dynptr_reg_off+0x47/0x4b \n[ 244.215922] bpf_trampoline_6442502480+0x43/0xe3 \n[ 244.218691] __x64_sys_prlimit64+0x9/0xf0 \n[ 244.220912] do_syscall_64+0xc1/0x1d0 \n[ 244.223043] entry_SYSCALL_64_after_hwframe+0x77/0x7f \n[ 244.226458] RIP: 0033:0x7ffa3eb8f059 \n[ 244.228582] Code: 08 89 e8 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 3d 01 f0 ff ff 73 01 c3 48 8b 0d 8f 1d 0d 00 f7 d8 64 89 01 48 \n[ 244.241307] RSP: 002b:00007ffa3e9c6eb8 EFLAGS: 00000206 ORIG_RAX: 000000000000012e \n[ 244.246474] RAX: ffffffffffffffda RBX: 00007ffa3e9c7cdc RCX: 00007ffa3eb8f059 \n[ 244.250478] RDX: 00007ffa3eb162b4 RSI: 0000000000000000 RDI: 00007ffa3e9c7fb0 \n[ 244.255396] RBP: 00007ffa3e9c6ed0 R08: 00007ffa3e9c76c0 R09: 0000000000000000 \n[ 244.260195] R10: 0000000000000000 R11: 0000000000000206 R12: ffffffffffffff80 \n[ 244.264201] R13: 000000000000001c R14: 00007ffc5d6b4260 R15: 00007ffa3e1c7000 \n[ 244.268303] \n \nAdd a check_func_arg_reg_off() to the path in which the BPF verifier \nverifies the arguments of global function arguments, specifically \nthose which take an argument of type ARG_PTR_TO_DYNPTR | \nMEM_RDONLY. Also, process_dynptr_func() doesn't appear to perform any \nexplicit and strict type matching on the supplied register type, so \nlet's also enforce that a register either type PTR_TO_STACK or \nCONST_PTR_TO_DYNPTR is by the caller. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:50.000000Z"}, {"uuid": "8dbb2cd5-dde3-4c87-8ac0-3250b1d8d144", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43912", "type": "seen", "source": "https://t.me/cvedetector/4119", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43912 - \"Linux Wi-Fi: nl80211 AP Channel Width Overflow\"\", \n \"Content\": \"CVE ID : CVE-2024-43912 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved: \n \nwifi: nl80211: disallow setting special AP channel widths \n \nSetting the AP channel width is meant for use with the normal \n20/40/... MHz channel width progression, and switching around \nin S1G or narrow channels isn't supported. Disallow that. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:49.000000Z"}, {"uuid": "c4861ecb-bd2a-4f8f-b9f4-ddcacd1bb015", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43914", "type": "seen", "source": "https://t.me/cvedetector/4117", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43914 - \"Linux Kernel md RAID5 BUG() to WARN() Vulnerability in mga\"\", \n \"Content\": \"CVE ID : CVE-2024-43914 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved: \n \nmd/raid5: avoid BUG_ON() while continue reshape after reassembling \n \nCurrently, mdadm support --revert-reshape to abort the reshape while \nreassembling, as the test 07revert-grow. However, following BUG_ON() \ncan be triggerred by the test: \n \nkernel BUG at drivers/md/raid5.c:6278! \ninvalid opcode: 0000 [#1] PREEMPT SMP PTI \nirq event stamp: 158985 \nCPU: 6 PID: 891 Comm: md0_reshape Not tainted 6.9.0-03335-g7592a0b0049a #94 \nRIP: 0010:reshape_request+0x3f1/0xe60 \nCall Trace: \n \n raid5_sync_request+0x43d/0x550 \n md_do_sync+0xb7a/0x2110 \n md_thread+0x294/0x2b0 \n kthread+0x147/0x1c0 \n ret_from_fork+0x59/0x70 \n ret_from_fork_asm+0x1a/0x30 \n \n \nRoot cause is that --revert-reshape update the raid_disks from 5 to 4, \nwhile reshape position is still set, and after reassembling the array, \nreshape position will be read from super block, then during reshape the \nchecking of 'writepos' that is caculated by old reshape position will \nfail. \n \nFix this panic the easy way first, by converting the BUG_ON() to \nWARN_ON(), and stop the reshape if checkings fail. \n \nNoted that mdadm must fix --revert-shape as well, and probably md/raid \nshould enhance metadata validation as well, however this means \nreassemble will fail and there must be user tools to fix the wrong \nmetadata. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:44.000000Z"}, {"uuid": "ce373293-007d-48db-b9a2-4e7e5e8510b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43913", "type": "seen", "source": "https://t.me/cvedetector/4112", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43913 - Apple NVMe Device Reference Count Leak Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-43913 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved: \n \nnvme: apple: fix device reference counting \n \nDrivers must call nvme_uninit_ctrl after a successful nvme_init_ctrl. \nSplit the allocation side out to make the error handling boundary easier \nto navigate. The apple driver had been doing this wrong, leaking the \ncontroller device memory on a tagset failure. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:36.000000Z"}, {"uuid": "f35e3ab2-3c71-4218-9d44-c2deddfb431c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43917", "type": "seen", "source": "https://t.me/CyberBulletin/976", "content": "\u26a1\ufe0fCVE-2024-43917 (CVSS 9.3): Unpatched SQLi Flaw in TI WooCommerce Wishlist Threatens 100,000+ Sites.\n\n#CyberBulletin", "creation_timestamp": "2024-09-28T07:20:44.000000Z"}, {"uuid": "b905ca87-c680-4f0c-aa17-040535b06c32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43918", "type": "seen", "source": "https://t.me/cvedetector/4406", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43918 - WBW Product Table PRO SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-43918 \nPublished : Aug. 29, 2024, 3:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WBW Product Table PRO allows SQL Injection.This issue affects WBW Product Table PRO: from n/a through 1.9.4. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"29 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T17:53:35.000000Z"}, {"uuid": "2470ffdc-bb9e-428f-8edb-61acc2cd8118", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43911", "type": "seen", "source": "https://t.me/cvedetector/4110", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43911 - Qualcomm Wi-Fi NULL Pointer Dereference\", \n \"Content\": \"CVE ID : CVE-2024-43911 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved: \n \nwifi: mac80211: fix NULL dereference at band check in starting tx ba session \n \nIn MLD connection, link_data/link_conf are dynamically allocated. They \ndon't point to vif->bss_conf. So, there will be no chanreq assigned to \nvif->bss_conf and then the chan will be NULL. Tweak the code to check \nht_supported/vht_supported/has_he/has_eht on sta deflink. \n \nCrash log (with rtw89 version under MLO development): \n[ 9890.526087] BUG: kernel NULL pointer dereference, address: 0000000000000000 \n[ 9890.526102] #PF: supervisor read access in kernel mode \n[ 9890.526105] #PF: error_code(0x0000) - not-present page \n[ 9890.526109] PGD 0 P4D 0 \n[ 9890.526114] Oops: 0000 [#1] PREEMPT SMP PTI \n[ 9890.526119] CPU: 2 PID: 6367 Comm: kworker/u16:2 Kdump: loaded Tainted: G OE 6.9.0 #1 \n[ 9890.526123] Hardware name: LENOVO 2356AD1/2356AD1, BIOS G7ETB3WW (2.73 ) 11/28/2018 \n[ 9890.526126] Workqueue: phy2 rtw89_core_ba_work [rtw89_core] \n[ 9890.526203] RIP: 0010:ieee80211_start_tx_ba_session (net/mac80211/agg-tx.c:618 (discriminator 1)) mac80211 \n[ 9890.526279] Code: f7 e8 d5 93 3e ea 48 83 c4 28 89 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 49 8b 84 24 e0 f1 ff ff 48 8b 80 90 1b 00 00 38 03 0f 84 37 fe ff ff bb ea ff ff ff eb cc 49 8b 84 24 10 f3 \nAll code \n======== \n 0: f7 e8 imul %eax \n 2: d5 (bad) \n 3: 93 xchg %eax,%ebx \n 4: 3e ea ds (bad) \n 6: 48 83 c4 28 add $0x28,%rsp \n a: 89 d8 mov %ebx,%eax \n c: 5b pop %rbx \n d: 41 5c pop %r12 \n f: 41 5d pop %r13 \n 11: 41 5e pop %r14 \n 13: 41 5f pop %r15 \n 15: 5d pop %rbp \n 16: c3 retq \n 17: cc int3 \n 18: cc int3 \n 19: cc int3 \n 1a: cc int3 \n 1b: 49 8b 84 24 e0 f1 ff mov -0xe20(%r12),%rax \n 22: ff \n 23: 48 8b 80 90 1b 00 00 mov 0x1b90(%rax),%rax \n 2a:* 83 38 03 cmpl $0x3,(%rax) \n[ 9890.526327] ? show_regs (arch/x86/kernel/dumpstack.c:479) \n[ 9890.526335] ? __die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434) \n[ 9890.526340] ? page_fault_oops (arch/x86/mm/fault.c:713) \n[ 9890.526347] ? search_module_extables (kernel/module/main.c:3256 (discriminator \n---truncated--- \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:34.000000Z"}, {"uuid": "fa8dca23-def8-4366-9b1d-8de34ac73869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43916", "type": "seen", "source": "https://t.me/cvedetector/4205", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43916 - Zephyr Project Manager Unsecured Authorization\", \n \"Content\": \"CVE ID : CVE-2024-43916 \nPublished : Aug. 26, 2024, 9:15 p.m. | 31\u00a0minutes ago \nDescription : Authorization Bypass Through User-Controlled Key vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager: from n/a through 3.3.102. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T23:50:51.000000Z"}, {"uuid": "f85d82b2-42bf-43c7-8000-1677f8840a6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43915", "type": "seen", "source": "https://t.me/cvedetector/4204", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-43915 - Zephyr Project Manager Web Application Cross-Site Scripting (XSS)\", \n \"Content\": \"CVE ID : CVE-2024-43915 \nPublished : Aug. 26, 2024, 9:15 p.m. | 31\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dylan James Zephyr Project Manager allows Reflected XSS.This issue affects Zephyr Project Manager: from n/a through .3.102. \nSeverity: 5.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T23:50:51.000000Z"}]}