CVEs from 2024
Total
6,620
critical
critical 168
high
high 1,065
medium
medium 2,078
low
low 49
% Critical
2.5%
% with KEV
2.5%
% with exploit
3.4%
Top products
- surveillance_station 12
- checkmk 10
- profilegrid 8
- office 8
- office_long_term_servicing_channel 6
- propertyhive 5
- glibc 5
- element_pack 5
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-21217 | medium | — | 5.5 | 2y ago | Moderate: java-1.8.0-openjdk security update | |||
| CVE-2024-21235 | medium | — | 5.5 | 2y ago | Moderate: java-1.8.0-openjdk security update | |||
| CVE-2024-42079 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42284 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-35989 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-36889 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42272 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42934 | medium | — | 5.5 | 2y ago | Moderate: OpenIPMI security update | |||
| CVE-2024-46544 | medium | — | 5.5 | 2y ago | Moderate: mod_jk bug fix update | |||
| CVE-2024-40984 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-35895 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-38615 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-24791 | medium | — | 5.5 | 2y ago | RHSA-2024:7349: grafana security update (Moderate) | |||
| CVE-2024-46770 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ice: Add netif_device_attach/detach into PF reset flow Ethtool callbacks can be executed while reset is in progress and try to ac… | |||
| CVE-2024-7383 | medium | — | 5.5 | 2y ago | RHSA-2024:6964: virt:rhel and virt-devel:rhel security update (Moderate) | |||
| CVE-2024-6602 | medium | — | 5.5 | 2y ago | A mismatch between allocator and deallocator could have led to memory corruption. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128. | |||
| CVE-2024-26630 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42102 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-26629 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-26720 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-41073 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-26946 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-35791 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-41096 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-36019 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-36883 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-40936 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-41040 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-41044 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42131 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42096 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-41055 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-35875 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-35797 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-36979 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-40927 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-36000 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-27267 | medium | — | 5.5 | 2y ago | RHSA-2024:6595: java-1.8.0-ibm security update (Moderate) | |||
| CVE-2024-38619 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42082 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-23185 | medium | — | 5.5 | 2y ago | Moderate: dovecot security update | |||
| CVE-2024-23184 | medium | — | 5.5 | 2y ago | Moderate: dovecot security update | |||
| CVE-2024-39331 | medium | — | 5.5 | 2y ago | RHSA-2024:6987: emacs security update (Moderate) | |||
| CVE-2024-44948 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: x86/mtrr: Check if fixed MTRRs exist before saving them MTRRs have an obsolete fixed variant for fine grained caching control of … | |||
| CVE-2024-33869 | medium | — | 5.5 | 2y ago | An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur (via a crafted PostScript document) because of path reduction in base/gpmisc.c. For examp… | |||
| CVE-2024-6923 | medium | — | 5.5 | 2y ago | There is a MEDIUM severity vulnerability affecting CPython. The email module didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when a… | |||
| CVE-2024-33870 | medium | — | 5.5 | 2y ago | An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal (via a crafted PostScript document) to arbitrary files if the current directory is in the permitted paths. For e… | |||
| CVE-2024-38428 | medium | — | 5.5 | 2y ago | RHSA-2024:5299: wget security update (Moderate) | |||
| CVE-2024-40897 | medium | — | 5.5 | 2y ago | RHSA-2024:5306: orc security update (Moderate) | |||
| CVE-2024-8088 | medium | — | 5.5 | 2y ago | There is a HIGH severity vulnerability affecting the CPython "zipfile" module affecting "zipfile.Path". Note that the more common API "zipfile.ZipFile" class is unaffected. When iterating over n… | |||
| CVE-2024-28863 | medium | — | 5.5 | 2y ago | RHSA-2024:6148: nodejs:18 security update (Moderate) | |||
| CVE-2024-44944 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use helper function to calculate expect ID Delete expectation path is missing a call to the nf_expect_get_i… | |||
| CVE-2024-35898 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-26925 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-35897 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-38579 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-40912 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-35962 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-40941 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-26855 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-44935 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: sctp: Fix null-ptr-deref in reuseport_add_sock(). syzbot reported a null-ptr-deref while accessing sk2->sk_reuseport_cb in reusep… | |||
| CVE-2024-43902 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null checker before passing variables Checks null pointer before passing variables to functions. This fixes… | |||
| CVE-2024-43893 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: core: check uartclk for zero to avoid divide by zero Calling ioctl TIOCSSERIAL with an invalid baud_base can result in ua… | |||
| CVE-2024-43890 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: tracing: Fix overflow in get_free_elt() "tracing_map->next_elt" in get_free_elt() is at risk of overflowing. Once it overflows, … | |||
| CVE-2024-22020 | medium | — | 5.5 | 2y ago | RHSA-2024:6148: nodejs:18 security update (Moderate) | |||
| CVE-2024-22018 | medium | — | 5.5 | 2y ago | RHSA-2024:5814: nodejs:20 security update (Moderate) | |||
| CVE-2024-36137 | medium | — | 5.5 | 2y ago | RHSA-2024:5814: nodejs:20 security update (Moderate) | |||
| CVE-2024-43398 | medium | — | 5.5 | 2y ago | RHSA-2025:4063: ruby:3.1 security update (Moderate) | |||
| CVE-2024-6472 | medium | — | 5.5 | 2y ago | Moderate: libreoffice security update | |||
| CVE-2024-2398 | medium | — | 5.5 | 2y ago | When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. Whe… | |||
| CVE-2024-42306 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: udf: Avoid using corrupted block bitmap buffer When the filesystem block bitmap is corrupted, we detect the corruption while load… | |||
| CVE-2024-42281 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a segment issue when downgrading gso_size Linearize the skb when downgrading gso_size because it may trigger a BUG_ON() … | |||
| CVE-2024-40961 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-35969 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-36489 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-37356 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-36020 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-33621 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-38558 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-36929 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-36922 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-36005 | medium | 5.5 | 5.5 | 2y ago | Important: kernel security update | |||
| CVE-2024-38167 | medium | — | 5.5 | 2y ago | RHSA-2024:5337: .NET 8.0 security update (Moderate) | |||
| CVE-2024-42259 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix Virtual Memory mapping boundaries calculation Calculating the size of the mapped area as the lesser value betwe… | |||
| CVE-2024-6237 | medium | — | 5.5 | 2y ago | Moderate: 389-ds-base security update | |||
| CVE-2024-5953 | medium | — | 5.5 | 2y ago | RHSA-2024:6569: 389-ds:1.4 security update (Moderate) | |||
| CVE-2024-41946 | medium | — | 5.5 | 2y ago | RHSA-2025:4063: ruby:3.1 security update (Moderate) | |||
| CVE-2024-41123 | medium | — | 5.5 | 2y ago | RHSA-2025:4063: ruby:3.1 security update (Moderate) | |||
| CVE-2024-36924 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-26880 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-35885 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-38580 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-35907 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-26773 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-27030 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-26737 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-27046 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-35857 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-36952 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2024-42097 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: emux: improve patch ioctl data validation In load_data(), make the validation of and skipping over the main info block matc… |