CVE CyberSecurity Database News (Page 419)

Dec 28, 2024 API Apache

CVE-2024-56512 - Apache NiFi Security Flaw Lets Users Access Unauthorized Parameter Contexts and Services

A new vulnerability has been discovered in Apache NiFi (CVE-2024-56512) that allows authenticated users with permissions to create Process Groups to bypass security checks and

Dec 28, 2024 API

CVE-2024-56703 - Linux Kernel IPv6 fib6_select_path Soft Lockup Vulnerability Explained

CVE-2024-56703 is a critical vulnerability that affected the Linux kernel’s IPv6 routing system. In certain high-load, dynamic environments—like edge routers handling constant BGP

Dec 28, 2024 Exploit

CVE-2024-56707 - Critical Linux Kernel Patch for octeontx2-pf mbox Message Handling

--- Overview A serious flaw, CVE-2024-56707, was identified and fixed in the Linux kernel driver for Marvell's OcteonTX2 network interface card (NIC). Specifically,

Dec 28, 2024

CVE-2024-56705 - Linux Kernel atomisp Memory Allocation Vulnerability Explained

In June 2024, a new vulnerability was assigned the identifier CVE-2024-56705. This vulnerability involves the memory allocation logic in the Linux kernel's media

Dec 28, 2024

CVE-2024-56701 - Linux Kernel PowerPC/pSeries Privilege Escalation via Sleeping Lock Misuse

Published: 2024-07-01 Author: [Your Name] (Use this content with attribution.) A critical vulnerability, CVE-2024-56701, was recently patched in the Linux kernel for IBM PowerPC pSeries