Patch Tuesday — July 2024
2024-07-09 · 937 CVEs
CVEs published or modified the week of 2024-07-09, partitioned by vendor.
Microsoft (145 CVEs)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38077 | Critical | 9.8 | — | 2024-07-09 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability |
CVE-2024-38076 | Critical | 9.8 | — | 2024-07-09 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability |
CVE-2024-38074 | Critical | 9.8 | — | 2024-07-09 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability |
CVE-2024-38089 | Critical | 9.1 | — | 2024-07-09 | Microsoft Defender for IoT Elevation of Privilege Vulnerability |
CVE-2024-21417 | High | 8.8 | — | 2024-07-10 | Windows Text Services Framework Elevation of Privilege Vulnerability |
CVE-2024-38104 | High | 8.8 | — | 2024-07-09 | Windows Fax Service Remote Code Execution Vulnerability |
CVE-2024-38092 | High | 8.8 | — | 2024-07-09 | Azure CycleCloud Elevation of Privilege Vulnerability |
CVE-2024-38088 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-38087 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-38060 | High | 8.8 | — | 2024-07-09 | Windows Imaging Component Remote Code Execution Vulnerability |
CVE-2024-38053 | High | 8.8 | — | 2024-07-09 | Windows Layer-2 Bridge Network Driver Remote Code Execution Vulnerability |
CVE-2024-38021 | High | 8.8 | — | 2024-07-09 | Microsoft Outlook Remote Code Execution Vulnerability |
CVE-2024-37973 | High | 8.8 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37336 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37334 | High | 8.8 | — | 2024-07-09 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability |
CVE-2024-37333 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37332 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37331 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37330 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37329 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37328 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37327 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37326 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37324 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37323 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37322 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37321 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37320 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37319 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37318 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-35272 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-35271 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-35256 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-30013 | High | 8.8 | — | 2024-07-09 | Windows MultiPoint Services Remote Code Execution Vulnerability |
CVE-2024-28928 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-28899 | High | 8.8 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-21449 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21428 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21425 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21415 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21414 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21398 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21373 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21335 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21333 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21332 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21331 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21317 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21308 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-21303 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-20701 | High | 8.8 | — | 2024-07-09 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability |
CVE-2024-37984 | High | 8.4 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-35264 | High | 8.1 | — | 2024-07-09 | .NET and Visual Studio Remote Code Execution Vulnerability |
CVE-2024-38011 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-38010 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37989 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37988 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37987 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37986 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37981 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37978 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37977 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37975 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37974 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37972 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37971 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37970 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-37969 | High | 8.0 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-20785 | High | 7.8 | — | 2024-07-09 | InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-20783 | High | 7.8 | — | 2024-07-09 | InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-20782 | High | 7.8 | — | 2024-07-09 | InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-20781 | High | 7.8 | — | 2024-07-09 | InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-38100 | High | 7.8 | — | 2024-07-09 | Windows File Explorer Elevation of Privilege Vulnerability |
CVE-2024-38085 | High | 7.8 | — | 2024-07-09 | Windows Graphics Component Elevation of Privilege Vulnerability |
CVE-2024-38080 | High | 7.8 | KEV | 2024-07-09 | Windows Hyper-V Elevation of Privilege Vulnerability |
CVE-2024-38079 | High | 7.8 | — | 2024-07-09 | Windows Graphics Component Elevation of Privilege Vulnerability |
CVE-2024-38070 | High | 7.8 | — | 2024-07-09 | Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability |
CVE-2024-38066 | High | 7.8 | — | 2024-07-09 | Windows Win32k Elevation of Privilege Vulnerability |
CVE-2024-38062 | High | 7.8 | — | 2024-07-09 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability |
CVE-2024-38059 | High | 7.8 | — | 2024-07-09 | Win32k Elevation of Privilege Vulnerability |
CVE-2024-38057 | High | 7.8 | — | 2024-07-09 | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38054 | High | 7.8 | — | 2024-07-09 | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38052 | High | 7.8 | — | 2024-07-09 | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38051 | High | 7.8 | — | 2024-07-09 | Windows Graphics Component Remote Code Execution Vulnerability |
CVE-2024-38050 | High | 7.8 | — | 2024-07-09 | Windows Workstation Service Elevation of Privilege Vulnerability |
CVE-2024-38047 | High | 7.8 | — | 2024-07-09 | PowerShell Elevation of Privilege Vulnerability |
CVE-2024-38043 | High | 7.8 | — | 2024-07-09 | PowerShell Elevation of Privilege Vulnerability |
CVE-2024-38034 | High | 7.8 | — | 2024-07-09 | Windows Filtering Platform Elevation of Privilege Vulnerability |
CVE-2024-35261 | High | 7.8 | — | 2024-07-09 | Azure Network Watcher VM Extension Elevation of Privilege Vulnerability |
CVE-2024-30079 | High | 7.8 | — | 2024-07-09 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability |
CVE-2024-4944 | High | 7.8 | — | 2024-07-09 | A local privilege escalation vlnerability in the WatchGuard Mobile VPN with SSL client on Windows enables a local user to execute arbitrary commands with elevated privileged. |
CVE-2024-35267 | High | 7.6 | — | 2024-07-09 | Azure DevOps Server Spoofing Vulnerability |
CVE-2024-35266 | High | 7.6 | — | 2024-07-09 | Azure DevOps Server Spoofing Vulnerability |
CVE-2024-38112 | High | 7.5 | KEV | 2024-07-09 | Windows MSHTML Platform Spoofing Vulnerability |
CVE-2024-38095 | High | 7.5 | — | 2024-07-09 | .NET and Visual Studio Denial of Service Vulnerability |
CVE-2024-38091 | High | 7.5 | — | 2024-07-09 | Microsoft WS-Discovery Denial of Service Vulnerability |
CVE-2024-38078 | High | 7.5 | — | 2024-07-09 | Xbox Wireless Adapter Remote Code Execution Vulnerability |
CVE-2024-38073 | High | 7.5 | — | 2024-07-09 | Windows Remote Desktop Licensing Service Denial of Service Vulnerability |
CVE-2024-38072 | High | 7.5 | — | 2024-07-09 | Windows Remote Desktop Licensing Service Denial of Service Vulnerability |
CVE-2024-38071 | High | 7.5 | — | 2024-07-09 | Windows Remote Desktop Licensing Service Denial of Service Vulnerability |
CVE-2024-38068 | High | 7.5 | — | 2024-07-09 | Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability |
CVE-2024-38067 | High | 7.5 | — | 2024-07-09 | Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability |
CVE-2024-38064 | High | 7.5 | — | 2024-07-09 | Windows TCP/IP Information Disclosure Vulnerability |
CVE-2024-38061 | High | 7.5 | — | 2024-07-09 | DCOM Remote Cross-Session Activation Elevation of Privilege Vulnerability |
CVE-2024-38031 | High | 7.5 | — | 2024-07-09 | Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability |
CVE-2024-38015 | High | 7.5 | — | 2024-07-09 | Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability |
CVE-2024-32987 | High | 7.5 | — | 2024-07-09 | Microsoft SharePoint Server Information Disclosure Vulnerability |
CVE-2024-30105 | High | 7.5 | — | 2024-07-09 | .NET and Visual Studio Denial of Service Vulnerability |
CVE-2024-30098 | High | 7.5 | — | 2024-07-09 | Windows Cryptographic Services Security Feature Bypass Vulnerability |
CVE-2024-38081 | High | 7.3 | — | 2024-07-09 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability |
CVE-2024-38033 | High | 7.3 | — | 2024-07-09 | PowerShell Elevation of Privilege Vulnerability |
CVE-2024-30061 | High | 7.3 | — | 2024-07-09 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability |
CVE-2024-38094 | High | 7.2 | KEV | 2024-07-09 | Microsoft SharePoint Remote Code Execution Vulnerability |
CVE-2024-38044 | High | 7.2 | — | 2024-07-09 | DHCP Server Service Remote Code Execution Vulnerability |
CVE-2024-38028 | High | 7.2 | — | 2024-07-09 | Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability |
CVE-2024-38025 | High | 7.2 | — | 2024-07-09 | Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability |
CVE-2024-38024 | High | 7.2 | — | 2024-07-09 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2024-38023 | High | 7.2 | — | 2024-07-09 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2024-38019 | High | 7.2 | — | 2024-07-09 | Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability |
CVE-2024-38032 | High | 7.1 | — | 2024-07-09 | Microsoft Xbox Remote Code Execution Vulnerability |
CVE-2024-30081 | High | 7.1 | — | 2024-07-09 | Windows NTLM Spoofing Vulnerability |
CVE-2024-34123 | High | 7.0 | — | 2024-07-09 | Premiere Pro versions 23.6.5, 24.4.1 and earlier are affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution. |
CVE-2024-6222 | High | 7.0 | — | 2024-07-09 | In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC messages. |
CVE-2024-38069 | High | 7.0 | — | 2024-07-09 | Windows Enroll Engine Security Feature Bypass Vulnerability |
CVE-2024-38022 | High | 7.0 | — | 2024-07-09 | Windows Image Acquisition Elevation of Privilege Vulnerability |
CVE-2024-38065 | Medium | 6.8 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-38058 | Medium | 6.8 | — | 2024-07-09 | BitLocker Security Feature Bypass Vulnerability |
CVE-2024-26184 | Medium | 6.8 | — | 2024-07-09 | Secure Boot Security Feature Bypass Vulnerability |
CVE-2024-38013 | Medium | 6.7 | — | 2024-07-09 | Microsoft Windows Server Backup Elevation of Privilege Vulnerability |
CVE-2024-38049 | Medium | 6.6 | — | 2024-07-09 | Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability |
CVE-2024-38105 | Medium | 6.5 | — | 2024-07-09 | Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability |
CVE-2024-38102 | Medium | 6.5 | — | 2024-07-09 | Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability |
CVE-2024-38101 | Medium | 6.5 | — | 2024-07-09 | Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability |
CVE-2024-38048 | Medium | 6.5 | — | 2024-07-09 | Windows Network Driver Interface Specification (NDIS) Denial of Service Vulnerability |
CVE-2024-38030 | Medium | 6.5 | — | 2024-07-09 | Windows Themes Spoofing Vulnerability |
CVE-2024-38027 | Medium | 6.5 | — | 2024-07-09 | Windows Line Printer Daemon Service Denial of Service Vulnerability |
CVE-2024-38020 | Medium | 6.5 | — | 2024-07-09 | Microsoft Outlook Spoofing Vulnerability |
CVE-2024-38086 | Medium | 6.4 | — | 2024-07-09 | Azure Kinect SDK Remote Code Execution Vulnerability |
CVE-2024-38099 | Medium | 5.9 | — | 2024-07-09 | Windows Remote Desktop Licensing Service Denial of Service Vulnerability |
CVE-2024-38056 | Medium | 5.5 | — | 2024-07-09 | Microsoft Windows Codecs Library Information Disclosure Vulnerability |
CVE-2024-38055 | Medium | 5.5 | — | 2024-07-09 | Microsoft Windows Codecs Library Information Disclosure Vulnerability |
CVE-2024-38041 | Medium | 5.5 | — | 2024-07-09 | Windows Kernel Information Disclosure Vulnerability |
CVE-2024-38017 | Medium | 5.5 | — | 2024-07-09 | Microsoft Message Queuing Information Disclosure Vulnerability |
CVE-2024-35270 | Medium | 5.3 | — | 2024-07-09 | Windows iSCSI Service Denial of Service Vulnerability |
CVE-2024-30071 | Medium | 4.7 | — | 2024-07-09 | Windows Remote Access Connection Manager Information Disclosure Vulnerability |
Other vendors (792 CVEs across 256 vendors)
Linux · 126 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-41003 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix reg_set_min_max corruption of fake_reg Juan reported that after doing some changes to buzzer [0] and implementing a new fuzzing strategy guided by coverage, the… |
CVE-2024-40996 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: Avoid splat in pskb_pull_reason syzkaller builds (CONFIG_DEBUG_NET=y) frequently trigger a debug hint in pskb_may_pull. |
CVE-2024-40994 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ptp: fix integer overflow in max_vclocks_store On 32bit systems, the "4 * max" multiply can overflow. |
CVE-2024-40989 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Disassociate vcpus from redistributor region on teardown When tearing down a redistributor region, make sure we don't have any dangling pointer to that regio… |
CVE-2024-40974 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Enforce hcall result buffer validity and size plpar_hcall(), plpar_hcall9(), and related functions expect callers to provide valid result buffers of cer… |
CVE-2024-40958 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: netns: Make get_net_ns() handle zero refcount net Syzkaller hit a warning: refcount_t: addition on 0; use-after-free. |
CVE-2024-40956 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list Use list_for_each_entry_safe() to allow iterating through the list and deleting the entry in the it… |
CVE-2024-40954 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net: do not leave a dangling sk pointer, when socket creation fails It is possible to trigger a use-after-free by: * attaching an fentry probe to __sock_release() and… |
CVE-2024-40940 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5_lag_create_port_sel_table(), instead of previously cr… |
CVE-2024-40939 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: Fix tainted pointer delete is case of region creation fail In case of region creation fail in ipc_devlink_create_region(), previously created regions de… |
CVE-2024-40935 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: cachefiles: flush all requests after setting CACHEFILES_DEAD In ondemand mode, when the daemon is processing an open request, if the kernel flags the cache as CACHEFILES… |
CVE-2024-40927 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: xhci: Handle TD clearing for multiple streams case When multiple streams are in use, multiple TDs might be in flight when an endpoint is stopped. |
CVE-2024-40920 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix suspicious rcu usage in br_mst_set_state I converted br_mst_set_state to RCU to avoid a vlan use-after-free but forgot to change the vlan group der… |
CVE-2024-40913 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: cachefiles: defer exposing anon_fd until after copy_to_user() succeeds After installing the anonymous fd, we can now see it in userland and close it. |
CVE-2024-40909 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free in bpf_link_free() After commit 1a80dbcb2dba, bpf_link can be freed by link->ops->dealloc_deferred, but the code still tests and uses… |
CVE-2024-40906 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardown_hca fails to execute during driver removal, mlx5 does not stop the health timer. |
CVE-2024-40903 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps There could be a potential use-after-free case in tcpm_register_source_caps(). |
CVE-2024-40902 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it is printed out to the kernel log in hex format as a form of debugging. |
CVE-2024-40901 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory There is a potential out-of-bounds access when using test_bit() on a single word. |
CVE-2024-40900 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: cachefiles: remove requests from xarray during flushing requests Even with CACHEFILES_DEAD set, we can still read the requests, so in the following concurrency the reque… |
CVE-2024-40899 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd() We got the following issue in a fuzz test of randomly issuing the restore command: =================… |
CVE-2024-39510 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read() We got the following issue in a fuzz test of randomly issuing the restore command: ============… |
CVE-2024-39502 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ionic: fix use after netif_napi_del() When queues are started, netif_napi_add() and napi_enable() are called. |
CVE-2024-39495 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: greybus: Fix use-after-free bug in gb_interface_release due to race condition. |
CVE-2024-40978 | High | 7.1 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix crash while reading debugfs attribute The qedi_dbg_do_not_recover_cmd_read() function invokes sprintf() directly on a __user pointer, which results into… |
CVE-2024-40929 | High | 7.1 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids In some versions of cfg80211, the ssids poinet might be a valid one even though n_ssids is 0. |
CVE-2024-39499 | High | 7.1 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: vmci: prevent speculation leaks by sanitizing event in event_deliver() Coverity spotted that event_msg is controlled by user-space, event_msg->event_data.event is passed… |
CVE-2024-39487 | High | 7.1 | — | 2024-07-09 | In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() In function bond_option_arp_ip_targets_set(), if newval->string is an empty string, newval->string+1… |
CVE-2024-39503 | High | 7.0 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type Lion Ackermann reported that there is a race condition between namespace cleanup in ipse… |
CVE-2024-39492 | High | 7.0 | — | 2024-07-10 | In the Linux kernel, the following vulnerability has been resolved: mailbox: mtk-cmdq: Fix pm_runtime_get_sync() warning in mbox shutdown The return value of pm_runtime_get_sync() in cmdq_mbox_shutdown() will return 1 when pm runtime sta… |
CVE-2024-40918 | Medium | 6.3 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: parisc: Try to fix random segmentation faults in package builds PA-RISC systems with PA8800 and PA8900 processors have had problems with random segmentation faults for m… |
CVE-2024-39490 | Medium | 6.2 | — | 2024-07-10 | In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix missing sk_buff release in seg6_input_core The seg6_input() function is responsible for adding the SRH into a packet, delegating the operation to the seg6_… |
CVE-2024-41006 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: netrom: Fix a memory leak in nr_heartbeat_expiry() syzbot reported a memory leak in nr_create() [0]. |
CVE-2024-41004 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: tracing: Build event generation tests only as modules The kprobes and synth event generation test modules add events and lock (get a reference) those event file referenc… |
CVE-2024-41002 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec - Fix memory leak for sec resource release The AIV is one of the SEC resources. |
CVE-2024-41001 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: io_uring/sqpoll: work around a potential audit memory leak kmemleak complains that there's a memory leak related to connect handling: unreferenced object 0xffff0001093b… |
CVE-2024-40999 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net: ena: Add validation for completion descriptors consistency Validate that `first` flag is set only for the first descriptor in multi-buffer packets. |
CVE-2024-40998 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() In the following concurrency we will access the uninitialized rs->lock: ext4_fill_super ex… |
CVE-2024-40997 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate: fix memory leak on CPU EPP exit The cpudata memory from kzalloc() in amd_pstate_epp_cpu_init() is not freed in the analogous exit function, so fix t… |
CVE-2024-40995 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() syzbot found hanging tasks waiting on rtnl_lock [1] A reproducer is available in the syzbot bug. |
CVE-2024-40993 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix suspicious rcu_dereference_protected() When destroying all sets, we are either in pernet exit phase or are executing a "destroy all sets command" f… |
CVE-2024-40992 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix responder length checking for UD request packets According to the IBA specification: If a UD request packet is detected with an invalid length, the request… |
CVE-2024-40991 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma-glue: Fix of_k3_udma_glue_parse_chn_by_id() The of_k3_udma_glue_parse_chn_by_id() helper function erroneously invokes "of_node_put()" on the "udma… |
CVE-2024-40990 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Add check for srq max_sge attribute max_sge attribute is passed by the user, and is inserted and used unchecked, so verify that the value doesn't exceed maxim… |
CVE-2024-40988 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix UBSAN warning in kv_dpm.c Adds bounds check for sumo_vid_mapping_entry. |
CVE-2024-40987 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix UBSAN warning in kv_dpm.c Adds bounds check for sumo_vid_mapping_entry. |
CVE-2024-40986 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: xilinx: xdma: Fix data synchronisation in xdma_channel_isr() Requests the vchan lock before using xdma->stop_request. |
CVE-2024-40985 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net/tcp_ao: Don't leak ao_info on error-path It seems I introduced it together with TCP_AO_CMDF_AO_REQUIRED, on version 5 [1] of TCP-AO patches. |
CVE-2024-40984 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. |
CVE-2024-40983 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: tipc: force a dst refcount before doing decryption As it says in commit 3bc07321ccc2 ("xfrm: Force a dst refcount before entering the xfrm type handlers"): "Crypto requ… |
CVE-2024-40981 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: batman-adv: bypass empty buckets in batadv_purge_orig_ref() Many syzbot reports are pointing to soft lockups in batadv_purge_orig_ref() [1] Root cause is unknown, but w… |
CVE-2024-40980 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drop_monitor: replace spin_lock by raw_spin_lock trace_drop_common() is called with preemption disabled, and it acquires a spin_lock. |
CVE-2024-40979 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix kernel crash during resume Currently during resume, QMI target memory is not properly handled, resulting in kernel crash in case DMA remap is not suppo… |
CVE-2024-40977 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery During chip recovery (e.g. |
CVE-2024-40976 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/lima: mask irqs in timeout path before hard reset There is a race condition in which a rendering job might take just long enough to trigger the drm sched job timeout… |
CVE-2024-40975 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: platform/x86: x86-android-tablets: Unregister devices in reverse order Not all subsystems support a device getting removed while there are still consumers of the device… |
CVE-2024-40973 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: media: mtk-vcodec: potential null pointer deference in SCP The return value of devm_kzalloc() needs to be checked to avoid NULL pointer deference. |
CVE-2024-40972 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: do not create EA inode under buffer lock ext4_xattr_set_entry() creates new EA inodes while holding buffer lock on the external xattr block. |
CVE-2024-40971 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: f2fs: remove clear SB_INLINECRYPT flag in default_options In f2fs_remount, SB_INLINECRYPT flag will be clear and re-set. |
CVE-2024-40970 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: Avoid hw_desc array overrun in dw-axi-dmac I have a use case where nr_buffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel de… |
CVE-2024-40969 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: f2fs: don't set RO when shutting down f2fs Shutdown does not check the error of thaw_super due to readonly, which causes a deadlock like below. |
CVE-2024-40968 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: MIPS: Octeon: Add PCIe link status check The standard PCIe configuration read-write interface is used to access the configuration space of the peripheral PCIe devices of… |
CVE-2024-40967 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: serial: imx: Introduce timeout when waiting on transmitter empty By waiting at most 1 second for USR2_TXDC to be set, we avoid a potential deadlock. |
CVE-2024-40966 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: tty: add the option to have a tty reject a new ldisc ... |
CVE-2024-40965 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: i2c: lpi2c: Avoid calling clk_get_rate during transfer Instead of repeatedly calling clk_get_rate for each transfer, lock the clock rate and cache the value. |
CVE-2024-40964 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l41: Possible null pointer dereference in cs35l41_hda_unbind() The cs35l41_hda_unbind() function clears the hda_component entry matching it's index and th… |
CVE-2024-40963 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: make sure CBR is correctly set It was discovered that some device have CBR address set to 0 causing kernel panic when arch_sync_dma_for_cpu_all is… |
CVE-2024-40962 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he'… |
CVE-2024-40961 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible NULL deref in fib6_nh_init() syzbot reminds us that in6_dev_get() can return NULL. |
CVE-2024-40960 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible NULL dereference in rt6_probe() syzbot caught a NULL dereference in rt6_probe() [1] Bail out if __in6_dev_get() returns NULL. |
CVE-2024-40959 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() ip6_dst_idev() can return NULL, xfrm6_get_saddr() must act accordingly. |
CVE-2024-40957 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6 behaviors input_action_end_dx4() and input_action_end_dx6() are called NF_HOOK() for PREROUTING… |
CVE-2024-40955 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: fix slab-out-of-bounds in ext4_mb_find_good_group_avg_frag_lists() We can trigger a slab-out-of-bounds with the following commands: mkfs.ext4 -F /dev/$disk 10… |
CVE-2024-40952 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix NULL pointer dereference in ocfs2_journal_dirty() bdev->bd_super has been removed and commit 8887b94d9322 change the usage from bdev->bd_super to b_assoc_map-… |
CVE-2024-40951 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix NULL pointer dereference in ocfs2_abort_trigger() bdev->bd_super has been removed and commit 8887b94d9322 change the usage from bdev->bd_super to b_assoc_map-… |
CVE-2024-40950 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: mm: huge_memory: fix misused mapping_large_folio_support() for anon folios When I did a large folios split test, a WARNING "[ 5059.122759][ T166] Cannot split file folio… |
CVE-2024-40949 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: mm: shmem: fix getting incorrect lruvec when replacing a shmem folio When testing shmem swapin, I encountered the warning below on my machine. |
CVE-2024-40948 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: mm/page_table_check: fix crash on ZONE_DEVICE Not all pages may apply to pgtable check. |
CVE-2024-40947 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ima: Avoid blocking in RCU read-side critical section A panic happens in ima_match_policy: BUG: unable to handle kernel NULL pointer dereference at 0000000000000010 PGD… |
CVE-2024-40945 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: iommu: Return right value in iommu_sva_bind_device() iommu_sva_bind_device() should return either a sva bond handle or an ERR_PTR value in error cases. |
CVE-2024-40944 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Fix bug with call depth tracking The call to cc_platform_has() triggers a fault and system crash if call depth tracking is active because the GS segment has b… |
CVE-2024-40942 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects The hwmp code use objects of type mesh_preq_queue, added to a list in ieee80211_if_mesh, to keep track of mpath… |
CVE-2024-40941 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't read past the mfuart notifcation In case the firmware sends a notification that claims it has more data than it has, we will read past that was… |
CVE-2024-40938 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: landlock: Fix d_parent walk The WARN_ON_ONCE() in collect_domain_accesses() can be triggered when trying to link a root mount point. |
CVE-2024-40937 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: gve: Clear napi->skb before dev_kfree_skb_any() gve_rx_free_skb incorrectly leaves napi->skb referencing an skb after it is freed with dev_kfree_skb_any(). |
CVE-2024-40936 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix memregion leaks in devm_cxl_add_region() Move the mode verification to __create_region() before allocating the memregion to avoid the memregion leaks. |
CVE-2024-40934 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() Fix a memory leak on logi_dj_recv_send_report() error path. |
CVE-2024-40933 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: iio: temperature: mlx90635: Fix ERR_PTR dereference in mlx90635_probe() When devm_regmap_init_i2c() fails, regmap_ee could be error pointer, instead of checking for IS_E… |
CVE-2024-40932 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/exynos/vidi: fix memory leak in .get_modes() The duplicated EDID is never freed. |
CVE-2024-40931 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure snd_una is properly initialized on connect This is strictly related to commit fb7a0d334894 ("mptcp: ensure snd_nxt is properly initialized on connect"). |
CVE-2024-40930 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: validate HE operation element parsing Validate that the HE operation element has the correct length before parsing it. |
CVE-2024-40928 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() Clang static checker (scan-build) warning: net/ethtool/ioctl.c:line 2233, column 2 Called functi… |
CVE-2024-40926 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: don't attempt to schedule hpd_work on headless cards If the card doesn't have display hardware, hpd_work and hpd_lock are left uninitialized which causes BU… |
CVE-2024-40925 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: block: fix request.queuelist usage in flush Friedrich Weber reported a kernel crash problem and bisected to commit 81ada09cc25e ("blk-flush: reuse rq queuelist in flush… |
CVE-2024-40924 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/i915/dpt: Make DPT object unshrinkable In some scenarios, the DPT object gets shrunk but the actual framebuffer did not and thus its still there on the DPT's vm->bou… |
CVE-2024-40923 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: vmxnet3: disable rx data ring on dma allocation failure When vmxnet3_rq_create() fails to allocate memory for rq->data_ring.base, the subsequent call to vmxnet3_rq_destr… |
CVE-2024-40922 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: io_uring/rsrc: don't lock while !TASK_RUNNING There is a report of io_rsrc_ref_quiesce() locking a mutex while not TASK_RUNNING, which is due to forgetting restoring the… |
CVE-2024-40921 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state Pass the already obtained vlan group pointer to br_mst_vlan_set_state() instead of dereferencing it a… |
CVE-2024-40919 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() In case of token is released due to token->state == BNXT_HWRM_DEFERRED, released… |
CVE-2024-40917 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: memblock: make memblock_set_node() also warn about use of MAX_NUMNODES On an (old) x86 system with SRAT just covering space above 4Gb: ACPI: SRAT: Node 0 PXM 0 [mem… |
CVE-2024-40916 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found When reading EDID fails and driver reports no modes available, the DRM core adds an artificia… |
CVE-2024-40915 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: riscv: rewrite __kernel_map_pages() to fix sleeping in invalid context __kernel_map_pages() is a debug function which clears the valid bit in page table entry for deallo… |
CVE-2024-40914 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: don't unpoison huge_zero_folio When I did memory failure tests recently, below panic occurs: kernel BUG at include/linux/mm.h:1135! |
CVE-2024-40912 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() The ieee80211_sta_ps_deliver_wakeup() function takes sta->ps_lock to synchronizes with ieee80211_tx_h_u… |
CVE-2024-40911 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211_get_station Wiphy should be locked before calling rdev_get_station() (see lockdep assert in ieee80211_get_station()). |
CVE-2024-40910 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ax25: Fix refcount imbalance on inbound connections When releasing a socket in ax25_release(), we call netdev_put() to decrease the refcount on the associated ax.25 devi… |
CVE-2024-40908 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: Set run context for rawtp test_run callback syzbot reported crash when rawtp program executed through the test_run interface calls bpf_get_attach_cookie helper or a… |
CVE-2024-40907 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ionic: fix kernel panic in XDP_TX action In the XDP_TX path, ionic driver sends a packet to the TX path with rx page and corresponding dma address. |
CVE-2024-40904 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages The syzbot fuzzer found that the interrupt-URB completion callback in the cdc-wdm driver was taking… |
CVE-2024-39509 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: HID: core: remove unnecessary WARN_ON() in implement() Syzkaller hit a warning [1] in a call to implement() when trying to write a value into a field of smaller size in… |
CVE-2024-39507 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time… |
CVE-2024-39506 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet In lio_vf_rep_copy_packet() pg_info->page is compared to a NULL value, but then it is uncondition… |
CVE-2024-39505 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/komeda: check for error-valued pointer komeda_pipeline_get_state() may return an error-valued pointer, thus check the pointer for negative or null value before deref… |
CVE-2024-39504 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner express… |
CVE-2024-39498 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 [Why] Commit: - commit 5aa1dfcdf0a4 ("drm/mst: Refactor the flow for payload allocation/removement") ac… |
CVE-2024-39497 | Medium | 5.5 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) Lack of check for copy-on-write (COW) mapping in drm_gem_shmem_mmap allows users to call mmap with PROT_W… |
CVE-2024-39493 | Medium | 5.5 | — | 2024-07-10 | In the Linux kernel, the following vulnerability has been resolved: crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak Using completion_done to determine whether the caller has gone away only works after a complete call. |
CVE-2024-39491 | Medium | 5.5 | — | 2024-07-10 | In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l56: Fix lifetime of cs_dsp instance The cs_dsp instance is initialized in the driver probe() so it should be freed in the driver remove(). |
CVE-2024-39489 | Medium | 5.5 | — | 2024-07-10 | In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix memleak in seg6_hmac_init_algo seg6_hmac_init_algo returns without cleaning up the previous allocations if one fails, so it's going to leak all that memory… |
CVE-2024-39488 | Medium | 5.5 | — | 2024-07-10 | In the Linux kernel, the following vulnerability has been resolved: arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY When CONFIG_DEBUG_BUGVERBOSE=n, we fail to add necessary padding bytes to bug_table entries, and as a result the l… |
CVE-2024-41005 | Medium | 4.7 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: netpoll: Fix race condition in netpoll_owner_active KCSAN detected a race condition in netpoll: BUG: KCSAN: data-race in net_rx_action / netpoll_send_skb write (marke… |
CVE-2024-40953 | Medium | 4.7 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() Use {READ,WRITE}_ONCE() to access kvm->last_boosted_vcpu to ensure the loads and stores are atomic. |
CVE-2024-40943 | Medium | 4.7 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix races between hole punching and AIO+DIO After commit "ocfs2: return real error code in ocfs2_dio_wr_get_block", fstests/generic/300 become from always failed… |
CVE-2024-40905 | Medium | 4.7 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible race in __fib6_drop_pcpu_from() syzbot found a race in __fib6_drop_pcpu_from() [1] If compiler reads more than once (*ppcpu_rt), second read could re… |
CVE-2024-39508 | Medium | 4.7 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: io_uring/io-wq: Use set_bit() and test_bit() at worker->flags Utilize set_bit() and test_bit() on worker->flags within io_uring/io-wq to address potential data races. |
CVE-2024-39500 | Medium | 4.7 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: sock_map: avoid race between sock_map_close and sk_psock_put sk_psock_get will return NULL if the refcount of psock has gone to 0, which will happen when the last call o… |
N/a · 75 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40110 | Critical | 9.8 | — | 2024-07-12 | Sourcecodester Poultry Farm Management System v1.0 contains an Unauthenticated Remote Code Execution (RCE) vulnerability via the productimage parameter at /farm/product.php. |
CVE-2024-36435 | Critical | 9.8 | — | 2024-07-11 | An issue was discovered on Supermicro BMC firmware in select X11, X12, H12, B12, X13, H13, and B13 motherboards (and CMM6 modules). |
CVE-2024-25077 | Critical | 9.8 | — | 2024-07-10 | An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices. |
CVE-2024-39071 | Critical | 9.8 | — | 2024-07-09 | Fujian Kelixun <=7.6.6.4391 is vulnerable to SQL Injection in send_event.php. |
CVE-2023-48194 | Critical | 9.8 | — | 2024-07-09 | Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. |
CVE-2024-39171 | Critical | 9.8 | — | 2024-07-09 | Directory Travel in PHPVibe v11.0.46 due to incomplete blacklist checksums and directory checks, which can lead to code execution via writing specific statements to .htaccess and code to a file with a .png suffix. |
CVE-2024-36526 | Critical | 9.8 | — | 2024-07-09 | ZKTeco ZKBio CVSecurity v6.1.1 was discovered to contain a hardcoded cryptographic key. |
CVE-2024-30213 | High | 8.8 | — | 2024-07-12 | StoneFly Storage Concentrator (SC and SCVM) before 8.0.4.26 allows remote authenticated users to achieve Command Injection via a Ping URL, leading to remote code execution. |
CVE-2024-40552 | High | 8.8 | — | 2024-07-12 | PublicCMS v4.0.202302.e was discovered to contain a remote commande execution (RCE) vulnerability via the cmdarray parameter at /site/ScriptComponent.java. |
CVE-2024-40551 | High | 8.8 | — | 2024-07-12 | An arbitrary file upload vulnerability in the component /admin/cmsTemplate/doUpload of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2024-40550 | High | 8.8 | — | 2024-07-12 | An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlaceMetaData of Public CMS v.4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2024-40549 | High | 8.8 | — | 2024-07-12 | An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlace of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2024-40548 | High | 8.8 | — | 2024-07-12 | An arbitrary file upload vulnerability in the component /admin/cmsTemplate/save of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2024-40546 | High | 8.8 | — | 2024-07-12 | An arbitrary file upload vulnerability in the component /admin/cmsWebFile/save of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2024-40545 | High | 8.8 | — | 2024-07-12 | An arbitrary file upload vulnerability in the component /admin/cmsWebFile/doUpload of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2024-40544 | High | 8.8 | — | 2024-07-12 | PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the component /admin/#maintenance_sysTask/edit. |
CVE-2024-40543 | High | 8.8 | — | 2024-07-12 | PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the component /admin/ueditor?action=catchimage. |
CVE-2024-40522 | High | 8.8 | — | 2024-07-12 | There is a remote code execution vulnerability in SeaCMS 12.9. |
CVE-2024-40521 | High | 8.8 | — | 2024-07-12 | SeaCMS 12.9 has a remote code execution vulnerability. |
CVE-2024-40520 | High | 8.8 | — | 2024-07-12 | SeaCMS 12.9 has a remote code execution vulnerability. |
CVE-2024-40519 | High | 8.8 | — | 2024-07-12 | SeaCMS 12.9 has a remote code execution vulnerability. |
CVE-2024-40518 | High | 8.8 | — | 2024-07-12 | SeaCMS 12.9 has a remote code execution vulnerability. |
CVE-2024-39340 | High | 8.8 | — | 2024-07-12 | The authentication system of Securepoint UTM mishandles OTP keys. |
CVE-2023-50806 | High | 8.4 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850 Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380 Exynos 13… |
CVE-2024-21525 | High | 8.3 | — | 2024-07-10 | All versions of the package node-twain are vulnerable to Improper Check or Handling of Exceptional Conditions due to the length of the source data not being checked. |
CVE-2024-29153 | High | 8.1 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos… |
CVE-2023-50807 | High | 8.1 | — | 2024-07-09 | A vulnerability was discovered in Samsung Wearable Processor and Modems with versions Exynos 9110, Exynos Modem 5123, Exynos Modem 5300 that allows an out-of-bounds write in the heap in 2G (no auth). |
CVE-2023-50805 | High | 8.1 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos… |
CVE-2024-39069 | High | 7.8 | — | 2024-07-09 | An issue in ifood Order Manager v3.35.5 'Gestor de Peddios.exe' allows attackers to execute arbitrary code via a DLL hijacking attack. |
CVE-2024-21526 | High | 7.5 | — | 2024-07-10 | All versions of the package speaker are vulnerable to Denial of Service (DoS) when providing unexpected input types to the channels property of the Speaker object makes it possible to reach an assert macro. |
CVE-2024-21523 | High | 7.5 | — | 2024-07-10 | All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input types to several different functions. |
CVE-2024-21522 | High | 7.5 | — | 2024-07-10 | All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is provided to the new OpusDecoder().decode or new OpusDecoder().decodeFloat functions it is not checked for negative values. |
CVE-2024-21521 | High | 7.5 | — | 2024-07-10 | All versions of the package @discordjs/opus are vulnerable to Denial of Service (DoS) due to providing an input object with a property toString to several different functions. |
CVE-2024-36676 | High | 7.5 | — | 2024-07-09 | Incorrect access control in BookStack before v24.05.1 allows attackers to confirm existing system users and perform targeted notification email DoS via public facing forms. |
CVE-2024-25076 | Medium | 6.8 | — | 2024-07-10 | An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices. |
CVE-2024-40412 | Medium | 6.8 | — | 2024-07-10 | Tenda AX12 v1.0 v22.03.01.46 contains a stack overflow in the deviceList parameter of the sub_42E410 function. |
CVE-2024-27386 | Medium | 6.7 | — | 2024-07-09 | A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 related to no input validation check on tag_len for tx coming from userspace, which can lead to heap ov… |
CVE-2024-27385 | Medium | 6.7 | — | 2024-07-09 | A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 related to no input validation check on tag_len for rx coming from userspace, which can lead to heap ov… |
CVE-2024-31947 | Medium | 6.5 | — | 2024-07-12 | StoneFly Storage Concentrator (SC and SCVM) before 8.0.4.26 allows Directory Traversal by authenticated users. |
CVE-2024-40547 | Medium | 6.5 | — | 2024-07-12 | PublicCMS v4.0.202302.e was discovered to contain an arbitrary file content replacement vulnerability via the component /admin/cmsTemplate/replace. |
CVE-2024-40417 | Medium | 6.5 | — | 2024-07-10 | A vulnerability was found in Tenda AX1806 1.0.0.1. |
CVE-2024-39181 | Medium | 6.5 | — | 2024-07-09 | Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to contain a buffer overflow via the ApCliSsid parameter in thegenerate_conf_router() function. |
CVE-2022-29946 | Medium | 6.3 | — | 2024-07-11 | NATS.io NATS Server before 2.8.2 and Streaming Server before 0.24.6 could allow a remote attacker to bypass security restrictions, caused by the failure to enforce negative user permissions in one scenario. |
CVE-2024-31957 | Medium | 6.2 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where they lack a check for the validation of native handles, which can result in a DoS(Denial of Service) attack by unmapping an invalid length. |
CVE-2024-38963 | Medium | 6.1 | — | 2024-07-09 | Nopcommerce 4.70.1 is vulnerable to Cross Site Scripting (XSS) via the combined "AddProductReview.Title" and "AddProductReview.ReviewText" parameter(s) (Reviews) when creating a new review. |
CVE-2024-40742 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/add. |
CVE-2024-40741 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/{id}/edit/. |
CVE-2024-40740 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-feeds/{id}/edit/. |
CVE-2024-40739 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-feeds/add. |
CVE-2024-40738 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-ports/{id}/edit/. |
CVE-2024-40737 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-ports/add. |
CVE-2024-40736 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/add. |
CVE-2024-40735 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/{id}/edit/. |
CVE-2024-40734 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/add/. |
CVE-2024-40733 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/{id}/edit/. |
CVE-2024-40732 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/add/. |
CVE-2024-40731 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/{id}/edit/. |
CVE-2024-40730 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/interfaces/{id}/edit/. |
CVE-2024-40729 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/interfaces/add/. |
CVE-2024-40728 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/{id}/edit/. |
CVE-2024-40727 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/add/. |
CVE-2024-40726 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-ports/{id}/edit/. |
CVE-2024-38972 | Medium | 6.1 | — | 2024-07-09 | A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-ports/add/. |
CVE-2024-39203 | Medium | 6.1 | — | 2024-07-08 | A cross-site scripting (XSS) vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. |
CVE-2024-27363 | Medium | 6.0 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processor Exynos 850, Exynos 9610, Exynos 980, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, and Exynos W930 where it does not properly check a pointer address, which can lead to a Inf… |
CVE-2024-27360 | Medium | 6.0 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, and Exynos W930 where they do not properly check length of the data, which can lead to a… |
CVE-2024-37865 | Medium | 5.9 | — | 2024-07-09 | An issue in S3Browser v.11.4.5 and v.10.9.9 and fixed in v.11.5.7 allows a remote attacker to obtain sensitive information via the S3 compatible storage component. |
CVE-2024-39031 | Medium | 5.4 | — | 2024-07-09 | In Silverpeas Core <= 6.3.5, in Mes Agendas, a user can create new events and add them to their calendar. |
CVE-2024-38971 | Medium | 5.4 | — | 2024-07-09 | vaeThink 1.0.2 is vulnerable to stored Cross Site Scripting (XSS) in the system backend. |
CVE-2024-28068 | Medium | 5.3 | — | 2024-07-09 | A vulnerability was discovered in SS in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, E… |
CVE-2024-28067 | Medium | 5.3 | — | 2024-07-09 | A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle (MITM) attacker to downgrade the security mode of packets going to the victim, enabling the attacker to send messages to the victim in plaintext. |
CVE-2024-27361 | Medium | 5.1 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processor Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, and Exynos 2400 that involves a time-of-check to time-of-use (TOCTOU) race condition, which… |
CVE-2024-38970 | Medium | 4.9 | — | 2024-07-09 | vaeThink 1.0.2 is vulnerable to Information Disclosure via the system backend,access management administrator function. |
CVE-2024-6647 | Medium | 4.7 | — | 2024-07-10 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in Croogo up to 4.0.7. |
CVE-2024-27362 | Medium | 4.4 | — | 2024-07-09 | A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330, Exynos 1380, and Exynos 2400 where they do not properly check the length of the data, which can lead to a Information disclosure. |
Juniper · 45 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39565 | High | 8.8 | — | 2024-07-10 | An Improper Neutralization of Data within XPath Expressions ('XPath Injection') vulnerability in J-Web shipped with Juniper Networks Junos OS allows an unauthenticated, network-based attacker to execute remote commands on the target device… |
CVE-2024-39524 | High | 7.8 | — | 2024-07-11 | An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th… |
CVE-2024-39523 | High | 7.8 | — | 2024-07-11 | An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th… |
CVE-2024-39522 | High | 7.8 | — | 2024-07-11 | An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th… |
CVE-2024-39521 | High | 7.8 | — | 2024-07-11 | An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th… |
CVE-2024-39520 | High | 7.8 | — | 2024-07-11 | An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th… |
CVE-2024-39552 | High | 7.5 | — | 2024-07-11 | An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows a network based, unauthenticated attacker to cause the RPD process to crash leading… |
CVE-2024-39551 | High | 7.5 | — | 2024-07-11 | An Uncontrolled Resource Consumption vulnerability in the H.323 ALG (Application Layer Gateway) of Juniper Networks Junos OS on SRX Series and MX Series with SPC3 and MS-MPC/MIC, allows an unauthenticated network-based attacker to send sp… |
CVE-2024-39549 | High | 7.5 | — | 2024-07-11 | A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an attacker to send a malformed BGP Path attribute update which allocates memor… |
CVE-2024-39548 | High | 7.5 | — | 2024-07-11 | An Uncontrolled Resource Consumption vulnerability in the aftmand process of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to consume memory resources, resulting in a Denial of Service (DoS) condition. |
CVE-2024-39545 | High | 7.5 | — | 2024-07-11 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the the IKE daemon (iked) of Juniper Networks Junos OS on SRX Series, MX Series with SPC3 and NFX350 allows allows an unauthenticated, network-based attacker sending… |
CVE-2024-39542 | High | 7.5 | — | 2024-07-11 | An Improper Validation of Syntactic Correctness of Input vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series with MPC10/11 or LC9600, MX304, and Junos OS Evolved on ACX Series and PTX Series allows… |
CVE-2024-39540 | High | 7.5 | — | 2024-07-11 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on SRX Series, and MX Series with SPC3 allows an unauthenticated, network-based attacker to cause a De… |
CVE-2024-39531 | High | 7.5 | — | 2024-07-11 | An Improper Handling of Values vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a network-based, unauthenticated attacker to cause a Denial-of-Service (DoS). |
CVE-2024-39530 | High | 7.5 | — | 2024-07-11 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management daemon (chassisd) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). |
CVE-2024-39529 | High | 7.5 | — | 2024-07-11 | A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). |
CVE-2024-39562 | High | 7.5 | — | 2024-07-10 | A Missing Release of Resource after Effective Lifetime vulnerability the xinetd process, responsible for spawning SSH daemon (sshd) instances, of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause a… |
CVE-2024-39555 | High | 7.5 | — | 2024-07-10 | An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an attacker sending a specific malformed BGP update message to cause the session to… |
CVE-2024-39518 | High | 7.5 | — | 2024-07-10 | A Heap-based Buffer Overflow vulnerability in the telemetry sensor process (sensord) of Juniper Networks Junos OS on MX240, MX480, MX960 platforms using MPC10E causes a steady increase in memory utilization, ultimately leading to a Denial… |
CVE-2024-39546 | High | 7.3 | — | 2024-07-11 | A Missing Authorization vulnerability in the Socket Intercept (SI) command file interface of Juniper Networks Junos OS Evolved allows an authenticated, low-privilege local attacker to modify certain files, allowing the attacker to cause an… |
CVE-2024-39512 | Medium | 6.6 | — | 2024-07-10 | An Improper Physical Access Control vulnerability in the console port control of Juniper Networks Junos OS Evolved allows an attacker with physical access to the device to get access to a user account. |
CVE-2024-39553 | Medium | 6.5 | — | 2024-07-11 | An Exposure of Resource to Wrong Sphere vulnerability in the sampling service of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to send arbitrary data to the device, which leads msvcsd process to crash w… |
CVE-2024-39550 | Medium | 6.5 | — | 2024-07-11 | A Missing Release of Memory after Effective Lifetime vulnerability in the rtlogd process of Juniper Networks Junos OS on MX Series with SPC3 allows an unauthenticated, adjacent attacker to trigger internal events cause ( which can be done… |
CVE-2024-39543 | Medium | 6.5 | — | 2024-07-11 | A Buffer Copy without Checking Size of Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated, adjacent attacker to send specific RPKI-RTR packe… |
CVE-2024-39541 | Medium | 6.5 | — | 2024-07-11 | An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS). |
CVE-2024-39538 | Medium | 6.5 | — | 2024-07-11 | A Buffer Copy without Checking Size of Input vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS)… |
CVE-2024-39537 | Medium | 6.5 | — | 2024-07-11 | An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, network-based attacker to cause a limited information disclosure and av… |
CVE-2024-39535 | Medium | 6.5 | — | 2024-07-11 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (… |
CVE-2024-39519 | Medium | 6.5 | — | 2024-07-11 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service… |
CVE-2024-39560 | Medium | 6.5 | — | 2024-07-10 | An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a logically adjacent downstream RSVP neighbor to cause kernel memory exhaustion, lea… |
CVE-2024-39558 | Medium | 6.5 | — | 2024-07-10 | An Unchecked Return Value vulnerability in the Routing Protocol Daemon (rpd) on Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows a logically adjacent, unauthenticated attacker sending a specific PIM packet to cause rp… |
CVE-2024-39557 | Medium | 6.5 | — | 2024-07-10 | An Uncontrolled Resource Consumption vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a memory leak, eventually exhausting all syste… |
CVE-2024-39517 | Medium | 6.5 | — | 2024-07-10 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Layer 2 Address Learning Daemon (l2ald) on Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause Denial of Service… |
CVE-2024-39514 | Medium | 6.5 | — | 2024-07-10 | An Improper Check or Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS). |
CVE-2024-39556 | Medium | 6.4 | — | 2024-07-10 | A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks Junos OS Evolved may allow a local, low-privileged attacker with access to the CLI the ability to load a malicious certificate file, leading to a… |
CVE-2024-39532 | Medium | 6.3 | — | 2024-07-11 | An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with high privileges to access sensitive information. |
CVE-2024-39559 | Medium | 5.9 | — | 2024-07-10 | An Improper Check for Unusual or Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS Evolved may allow a network-based unauthenticated attacker to crash the device (vmcore) by sending a specific TCP packe… |
CVE-2024-39554 | Medium | 5.9 | — | 2024-07-10 | A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated… |
CVE-2024-39533 | Medium | 5.8 | — | 2024-07-11 | An Unimplemented or Unsupported Feature in the UI vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series allows an unauthenticated, network-based attacker to cause a minor integrity impact to downstream networks.If… |
CVE-2024-39561 | Medium | 5.8 | — | 2024-07-10 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on SRX4600 and SRX5000 Series allows an attacker to send TCP packets with SYN/FIN or SYN/RST flags, bypas… |
CVE-2024-39528 | Medium | 5.7 | — | 2024-07-11 | A Use After Free vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated, network-based attacker to cause a Denial of Service (DoS).On all Junos OS and Junos Evolved plat… |
CVE-2024-39513 | Medium | 5.5 | — | 2024-07-10 | An Improper Input Validation vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved allows a local, low-privileged attacker to cause a Denial of Service (DoS). |
CVE-2024-39511 | Medium | 5.5 | — | 2024-07-10 | An Improper Input Validation vulnerability in the 802.1X Authentication (dot1x) Daemon of Juniper Networks Junos OS allows a local, low-privileged attacker with access to the CLI to cause a Denial of Service (DoS). |
CVE-2024-39539 | Medium | 5.3 | — | 2024-07-11 | A Missing Release of Memory after Effective Lifetime vulnerability in Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS). |
CVE-2024-39536 | Medium | 5.3 | — | 2024-07-11 | A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon (ppmd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial-of-Service… |
Google · 36 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-34722 | High | 8.8 | — | 2024-07-09 | In smp_proc_rand of smp_act.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a protocol. |
CVE-2024-34726 | High | 7.8 | — | 2024-07-09 | In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code. |
CVE-2024-34723 | High | 7.8 | — | 2024-07-09 | In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a logic error in the code. |
CVE-2024-34720 | High | 7.8 | — | 2024-07-09 | In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible method to perform arbitrary code execution in any app zygote processes due to a logic error in the… |
CVE-2024-31339 | High | 7.8 | — | 2024-07-09 | In multiple functions of StatsService.cpp, there is a possible memory corruption due to a use after free. |
CVE-2024-31335 | High | 7.8 | — | 2024-07-09 | In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. |
CVE-2024-31334 | High | 7.8 | — | 2024-07-09 | In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. |
CVE-2024-31332 | High | 7.8 | — | 2024-07-09 | In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi connections due to a missing permission check. |
CVE-2024-31326 | High | 7.8 | — | 2024-07-09 | In multiple locations, there is a possible way in which policy migration code will never be executed due to a logic error in the code. |
CVE-2024-31325 | High | 7.8 | — | 2024-07-09 | In multiple locations, there is a possible way to reveal images across users data due to a logic error in the code. |
CVE-2024-31323 | High | 7.8 | — | 2024-07-09 | In onCreate of multiple files, there is a possible way to trick the user into granting health permissions due to tapjacking. |
CVE-2024-31322 | High | 7.8 | — | 2024-07-09 | In updateServicesLocked of AccessibilityManagerService.java, there is a possible way for an app to be hidden from the Setting while retaining Accessibility Service due to improper input validation. |
CVE-2024-31320 | High | 7.8 | — | 2024-07-09 | In setSkipPrompt of AssociationRequest.java , there is a possible way to establish a companion device association without any confirmation due to CDM. |
CVE-2024-31319 | High | 7.8 | — | 2024-07-09 | In updateNotificationChannelFromPrivilegedListener of NotificationManagerService.java, there is a possible cross-user data leak due to a confused deputy. |
CVE-2024-31318 | High | 7.8 | — | 2024-07-09 | In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without user acceptance due to a missing permission check. |
CVE-2024-31317 | High | 7.8 | — | 2024-07-09 | In multiple functions of ZygoteProcess.java, there is a possible way to achieve code execution as any app via WRITE_SECURE_SETTINGS due to unsafe deserialization. |
CVE-2024-31316 | High | 7.8 | — | 2024-07-09 | In onResult of AccountManagerService.java, there is a possible way to perform an arbitrary background activity launch due to parcel mismatch. |
CVE-2024-31315 | High | 7.8 | — | 2024-07-09 | In multiple functions of ManagedServices.java, there is a possible way to hide an app with notification access in the Device & app notifications settings due to improper input validation. |
CVE-2024-31313 | High | 7.8 | — | 2024-07-09 | In availableToWriteBytes of MessageQueueBase.h, there is a possible out of bounds write due to an incorrect bounds check. |
CVE-2024-31311 | High | 7.8 | — | 2024-07-09 | In increment_annotation_count of stats_event.c, there is a possible out of bounds write due to a missing bounds check. |
CVE-2024-31310 | High | 7.8 | — | 2024-07-09 | In newServiceInfoLocked of AutofillManagerServiceImpl.java, there is a possible way to hide an enabled Autofill service app in the Autofill service settings due to improper input validation. |
CVE-2024-23711 | High | 7.8 | — | 2024-07-09 | In DevmemXIntUnreserveRange of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. |
CVE-2024-23698 | High | 7.8 | — | 2024-07-09 | In RGXFWChangeOSidPriority of rgxfwutils.c, there is a possible arbitrary code execution due to a missing bounds check. |
CVE-2024-23697 | High | 7.8 | — | 2024-07-09 | In RGXCreateHWRTData_aux of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. |
CVE-2024-23696 | High | 7.8 | — | 2024-07-09 | In RGXCreateZSBufferKM of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. |
CVE-2024-23695 | High | 7.8 | — | 2024-07-09 | In CacheOpPMRExec of cache_km.c, there is a possible out of bounds write due to an integer overflow. |
CVE-2023-21114 | High | 7.8 | — | 2024-07-09 | In multiple locations, there is a possible permission bypass due to a confused deputy. |
CVE-2023-21113 | High | 7.8 | — | 2024-07-09 | In multiple locations, there is a possible permission bypass due to a confused deputy. |
CVE-2024-31331 | High | 7.3 | — | 2024-07-09 | In setMimeGroup of PackageManagerService.java, there is a possible way to hide the service from Settings due to a logic error in the code. |
CVE-2024-31324 | High | 7.3 | — | 2024-07-09 | In hide of WindowState.java, there is a possible way to bypass tapjacking/overlay protection by launching the activity in portrait mode first and then rotating it to landscape mode. |
CVE-2024-34725 | High | 7.0 | — | 2024-07-09 | In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. |
CVE-2024-34724 | High | 7.0 | — | 2024-07-09 | In _UnrefAndMaybeDestroy of pmr.c, there is a possible arbitrary code execution due to a race condition. |
CVE-2024-31327 | High | 7.0 | — | 2024-07-09 | In multiple functions of MessageQueueBase.h, there is a possible out of bounds write due to a race condition. |
CVE-2024-34721 | Medium | 5.5 | — | 2024-07-09 | In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. |
CVE-2024-31314 | Medium | 5.5 | — | 2024-07-09 | In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource exhaustion. |
CVE-2024-31312 | Medium | 5.5 | — | 2024-07-09 | In multiple locations, there is a possible information leak due to a missing permission check. |
Siemens · 34 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39872 | Critical | 9.6 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-39866 | High | 8.8 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-39865 | High | 8.8 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-39675 | High | 8.8 | — | 2024-07-09 | A vulnerability has been identified in RUGGEDCOM RMC30 (All versions < V4.3.10), RUGGEDCOM RMC30NC (All versions < V4.3.10), RUGGEDCOM RP110 (All versions < V4.3.10), RUGGEDCOM RP110NC (All versions < V4.3.10), RUGGEDCOM RS400 (All version… |
CVE-2024-39571 | High | 8.8 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). |
CVE-2024-39570 | High | 8.8 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). |
CVE-2024-39568 | High | 7.8 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1). |
CVE-2024-39567 | High | 7.8 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1). |
CVE-2024-37997 | High | 7.8 | — | 2024-07-09 | A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (… |
CVE-2024-33654 | High | 7.8 | — | 2024-07-09 | A vulnerability has been identified in Simcenter Femap (All versions < V2406). |
CVE-2024-33653 | High | 7.8 | — | 2024-07-09 | A vulnerability has been identified in Simcenter Femap (All versions < V2406). |
CVE-2024-32056 | High | 7.8 | — | 2024-07-09 | A vulnerability has been identified in Simcenter Femap (All versions < V2406). |
CVE-2022-45147 | High | 7.8 | — | 2024-07-09 | A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP 7 V16 (All versions), SIMATIC STEP 7 V17 (All versions), SIMATIC STEP 7 V18 (All versions < V18 Update 2). |
CVE-2024-37999 | High | 7.8 | — | 2024-07-08 | A vulnerability has been identified in Medicalis Workflow Orchestrator (All versions). |
CVE-2024-39868 | High | 7.6 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-39867 | High | 7.6 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-39888 | High | 7.5 | — | 2024-07-09 | A vulnerability has been identified in Mendix Encryption (All versions >= V10.0.0 < V10.0.2). |
CVE-2024-39874 | High | 7.5 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-39873 | High | 7.5 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2023-52237 | High | 7.5 | — | 2024-07-09 | A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M… |
CVE-2024-39569 | Medium | 6.6 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1). |
CVE-2024-38278 | Medium | 6.6 | — | 2024-07-09 | A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.9.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.9.0), R… |
CVE-2024-39869 | Medium | 6.5 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2023-32735 | Medium | 6.5 | — | 2024-07-09 | A vulnerability has been identified in SIMATIC STEP 7 Safety V16 (All versions < V16 Update 7), SIMATIC STEP 7 Safety V17 (All versions < V17 Update 7), SIMATIC STEP 7 Safety V18 (All versions < V18 Update 2), SIMATIC STEP 7 V16 (All versi… |
CVE-2024-39871 | Medium | 6.3 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-39870 | Medium | 6.3 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2023-32737 | Medium | 6.3 | — | 2024-07-09 | A vulnerability has been identified in SIMATIC STEP 7 Safety V18 (All versions < V18 Update 2). |
CVE-2024-38867 | Medium | 5.9 | — | 2024-07-09 | A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.64), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions < V9.64), SIPROTEC 5 6MD86 (CP200) (All versions), SIPROTEC 5 6MD86 (CP… |
CVE-2024-30321 | Medium | 5.9 | — | 2024-07-09 | A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC05), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 5), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 2), SIMATIC W… |
CVE-2023-52891 | Medium | 5.3 | — | 2024-07-09 | A vulnerability has been identified in SIMATIC Energy Manager Basic (All versions < V7.5), SIMATIC Energy Manager PRO (All versions < V7.5), SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions), SIMIT V10 (All versio… |
CVE-2024-39875 | Medium | 4.3 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2023-52238 | Medium | 4.3 | — | 2024-07-09 | A vulnerability has been identified in RUGGEDCOM RST2228 (All versions < V5.9.0), RUGGEDCOM RST2228P (All versions < V5.9.0). |
CVE-2024-39876 | Medium | 4.0 | — | 2024-07-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). |
CVE-2024-37996 | Low | 3.3 | — | 2024-07-09 | A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (… |
Level1 · 21 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-46685 | Critical | 9.8 | — | 2024-07-08 | A hard-coded password vulnerability exists in the telnetd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. |
CVE-2023-47677 | High | 8.8 | — | 2024-07-08 | A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2024-21778 | High | 7.2 | — | 2024-07-08 | A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50383 | High | 7.2 | — | 2024-07-08 | Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50382 | High | 7.2 | — | 2024-07-08 | Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50381 | High | 7.2 | — | 2024-07-08 | Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50330 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50244 | High | 7.2 | — | 2024-07-08 | Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50243 | High | 7.2 | — | 2024-07-08 | Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50240 | High | 7.2 | — | 2024-07-08 | Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-50239 | High | 7.2 | — | 2024-07-08 | Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-49867 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-49595 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-49593 | High | 7.2 | — | 2024-07-08 | Leftover debug code exists in the boa formSysCmd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. |
CVE-2023-49073 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-48270 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-47856 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa set_RadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-45742 | High | 7.2 | — | 2024-07-08 | An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-45215 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-41251 | High | 7.2 | — | 2024-07-08 | A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11. |
CVE-2023-34435 | High | 7.2 | — | 2024-07-08 | A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. |
Mozilla · 16 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6611 | Critical | 9.8 | — | 2024-07-09 | A nested iframe, triggering a cross-site navigation, could send SameSite=Strict or Lax cookies. |
CVE-2024-6602 | Critical | 9.8 | — | 2024-07-09 | A mismatch between allocator and deallocator could have led to memory corruption. |
CVE-2024-6615 | High | 8.8 | — | 2024-07-09 | Memory safety bugs present in Firefox 127 and Thunderbird 127. |
CVE-2024-6609 | High | 8.8 | — | 2024-07-09 | When almost out-of-memory an elliptic curve key which was never allocated could have been freed again. |
CVE-2024-6607 | High | 8.8 | — | 2024-07-09 | It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay customValidity notifications from a `<select>` element over certain permission prompts. |
CVE-2024-6605 | High | 8.8 | — | 2024-07-09 | Firefox Android allowed immediate interaction with permission prompts. |
CVE-2024-6606 | High | 8.2 | — | 2024-07-09 | Clipboard code failed to check the index on an array access. |
CVE-2024-6604 | High | 7.5 | — | 2024-07-09 | Memory safety bugs present in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12. |
CVE-2024-6603 | High | 7.4 | — | 2024-07-09 | In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption. |
CVE-2024-6600 | Medium | 6.3 | — | 2024-07-09 | Due to large allocation checks in Angle for GLSL shaders being too lenient an out-of-bounds access could occur when allocating more than 8192 ints in private shader memory on macOS. |
CVE-2024-6613 | Medium | 5.5 | — | 2024-07-09 | The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. |
CVE-2024-6612 | Medium | 5.3 | — | 2024-07-09 | CSP violations generated links in the console tab of the developer tools, pointing to the violating resource. |
CVE-2024-6601 | Medium | 4.7 | — | 2024-07-09 | A race condition could lead to a cross-origin container obtaining permissions of the top-level origin. |
CVE-2024-6614 | Medium | 4.3 | — | 2024-07-09 | The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. |
CVE-2024-6610 | Medium | 4.3 | — | 2024-07-09 | Form validation popups could capture escape key presses. |
CVE-2024-6608 | Medium | 4.3 | — | 2024-07-09 | It was possible to move the cursor using pointerlock from an iframe. |
Sap · 16 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39592 | High | 7.7 | — | 2024-07-09 | Elements of PDCE does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. |
CVE-2024-39593 | Medium | 6.9 | — | 2024-07-09 | SAP Landscape Management allows an authenticated user to read confidential data disclosed by the REST Provider Definition response. |
CVE-2024-39594 | Medium | 6.1 | — | 2024-07-09 | SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user controlled inputs, resulting in Reflected Cross-Site Scripting (XSS) vulnerability. |
CVE-2024-37174 | Medium | 6.1 | — | 2024-07-09 | Custom CSS support option in SAP CRM WebClient UI does not sufficiently encode user-controlled inputs resulting in Cross-Site Scripting vulnerability. |
CVE-2024-37173 | Medium | 6.1 | — | 2024-07-09 | Due to insufficient input validation, SAP CRM WebClient UI allows an unauthenticated attacker to craft a URL link which embeds a malicious script. |
CVE-2024-34685 | Medium | 6.1 | — | 2024-07-09 | Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting (XSS) vulnerability. |
CVE-2024-39595 | Medium | 5.4 | — | 2024-07-09 | SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user-controlled inputs, resulting in Stored Cross-Site Scripting (XSS) vulnerability. |
CVE-2024-37172 | Medium | 5.4 | — | 2024-07-09 | SAP S/4HANA Finance (Advanced Payment Management) does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. |
CVE-2024-39600 | Medium | 5.0 | — | 2024-07-09 | Under certain conditions, the memory of SAP GUI for Windows contains the password used to log on to an SAP system, which might allow an attacker to get hold of the password and impersonate the affected user. |
CVE-2024-37171 | Medium | 5.0 | — | 2024-07-09 | SAP Transportation Management (Collaboration Portal) allows an attacker with non-administrative privileges to send a crafted request from a vulnerable web application. |
CVE-2024-34689 | Medium | 5.0 | — | 2024-07-09 | WebFlow Services of SAP Business Workflow allows an authenticated attacker to enumerate accessible HTTP endpoints in the internal network by specially crafting HTTP requests. |
CVE-2024-39598 | Medium | 5.0 | — | 2024-07-09 | SAP CRM (WebClient UI Framework) allows an authenticated attacker to enumerate accessible HTTP endpoints in the internal network by specially crafting HTTP requests. |
CVE-2024-39599 | Medium | 4.7 | — | 2024-07-09 | Due to a Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform, a developer can bypass the configured malware scanner API because of a programming error. |
CVE-2024-37175 | Medium | 4.3 | — | 2024-07-09 | SAP CRM WebClient does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. |
CVE-2024-37180 | Medium | 4.1 | — | 2024-07-09 | Under certain conditions SAP NetWeaver Application Server for ABAP and ABAP Platform allows an attacker to access remote-enabled function module with no further authorization which would otherwise be restricted, the function can be used to… |
CVE-2024-34692 | Low | 3.3 | — | 2024-07-09 | Due to missing verification of file type or content, SAP Enable Now allows an authenticated attacker to upload arbitrary files. |
Easyappointments · 14 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-3287 | Critical | 9.9 | — | 2024-07-09 | A BOLA vulnerability in POST /admins allows a low privileged user to create a high privileged user (admin) in the system. |
CVE-2023-38054 | Critical | 9.9 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /customers/{customerId} allows a low privileged user to fetch, modify or delete a low privileged user (customer). |
CVE-2023-38053 | Critical | 9.9 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /settings/{settingName} allows a low privileged user to fetch, modify or delete the settings of any user (including admin). |
CVE-2023-38052 | Critical | 9.9 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /admins/{adminId} allows a low privileged user to fetch, modify or delete a high privileged user (admin). |
CVE-2023-38051 | Critical | 9.9 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /secretaries/{secretaryId} allows a low privileged user to fetch, modify or delete a low privileged user (secretary). |
CVE-2023-38049 | Critical | 9.9 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /appointments/{appointmentId} allows a low privileged user to fetch, modify or delete an appointment of any user (including admin). |
CVE-2023-38048 | Critical | 9.9 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /providers/{providerId} allows a low privileged user to fetch, modify or delete a privileged user (provider). |
CVE-2023-38055 | Critical | 9.6 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /services/{serviceId} allows a low privileged user to fetch, modify or delete the services of any user (including admin). |
CVE-2023-38050 | Critical | 9.1 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /webhooks/{webhookId} allows a low privileged user to fetch, modify or delete a webhook of any user (including admin). |
CVE-2023-3288 | High | 8.5 | — | 2024-07-09 | A BOLA vulnerability in POST /providers allows a low privileged user to create a privileged user (provider) in the system. |
CVE-2023-38047 | High | 8.5 | — | 2024-07-09 | A BOLA vulnerability in GET, PUT, DELETE /categories/{categoryId} allows a low privileged user to fetch, modify or delete the category of any user (including admin). |
CVE-2023-3289 | High | 7.7 | — | 2024-07-09 | A BOLA vulnerability in POST /services allows a low privileged user to create a service for any user in the system (including admin). |
CVE-2023-3286 | High | 7.7 | — | 2024-07-09 | A BOLA vulnerability in POST /secretaries allows a low privileged user to create a low privileged user (secretary) in the system. |
CVE-2023-3290 | Medium | 5.0 | — | 2024-07-09 | A BOLA vulnerability in POST /customers allows a low privileged user to create a low privileged user (customer) in the system. |
Ibm · 12 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39742 | High | 8.1 | — | 2024-07-08 | IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to bypass authentication under certain configurations due to a partial string comparison vulnerability. |
CVE-2024-35154 | High | 7.2 | — | 2024-07-09 | IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has authorized access to the administrative console, to execute arbitrary code. |
CVE-2024-38330 | High | 7.0 | — | 2024-07-08 | IBM System Management for i 7.2, 7.3, and 7.4 could allow a local user to gain elevated privileges due to an unqualified library program call. |
CVE-2024-39743 | Medium | 5.9 | — | 2024-07-08 | IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 IBM MQ Container Developer Edition is vulnerable to denial of service caused by incorrect memory de-allocation. |
CVE-2024-25023 | Medium | 5.5 | — | 2024-07-10 | IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 stores potentially sensitive information in log files that could be read by a local user. |
CVE-2024-40690 | Medium | 5.4 | — | 2024-07-12 | IBM InfoSphere Server 11.7 is vulnerable to cross-site scripting. |
CVE-2023-35006 | Medium | 5.4 | — | 2024-07-10 | IBM Security QRadar EDR 3.12 is vulnerable to HTML injection. |
CVE-2023-33860 | Medium | 5.3 | — | 2024-07-10 | IBM Security QRadar EDR 3.12 does not set the secure attribute on authorization tokens or session cookies. |
CVE-2023-33859 | Medium | 5.3 | — | 2024-07-10 | IBM Security QRadar EDR 3.12 could disclose sensitive information due to an observable login response discrepancy. |
CVE-2024-37528 | Medium | 4.8 | — | 2024-07-08 | IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2, 23.0.1, and 23.0.2 is vulnerable to cross-site scripting. |
CVE-2024-39723 | Medium | 4.6 | — | 2024-07-08 | IBM FlashSystem 5300 USB ports may be usable even if the port has been disabled by the administrator. |
CVE-2024-31897 | Medium | 4.3 | — | 2024-07-08 | IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2, 23.0.1, and 23.0.2 vulnerable to server-side request forgery (SSRF). |
Fortinet · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-27784 | High | 8.8 | — | 2024-07-09 | Multiple Exposure of sensitive information to an unauthorized actor weaknesses [CWE-200] vulnerability in Fortinet FortiAIOps 2.0.0 may allow an authenticated, remote attacker to retrieve sensitive information from the API endpoint or log… |
CVE-2024-23663 | High | 8.8 | — | 2024-07-09 | An improper access control in Fortinet FortiExtender 4.1.1 - 4.1.9, 4.2.0 - 4.2.6, 5.3.2, 7.0.0 - 7.0.4, 7.2.0 - 7.2.4 and 7.4.0 - 7.4.2 allows an attacker to create users with elevated privileges via a crafted HTTP request. |
CVE-2024-27782 | High | 8.1 | — | 2024-07-09 | Multiple insufficient session expiration weaknesses [CWE-613] vulnerability in Fortinet FortiAIOps 2.0.0 may allow an attacker to re-use stolen old session tokens to perform unauthorized operations via crafted requests. |
CVE-2024-27783 | High | 7.6 | — | 2024-07-09 | Multiple cross-site request forgery (CSRF) weaknesses [CWE-352] vulnerability in Fortinet FortiAIOps 2.0.0 may allow an unauthenticated remote attacker to perform arbitrary actions on behalf of an authenticated user via tricking the victim… |
CVE-2023-50178 | High | 7.4 | — | 2024-07-09 | An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2.0 through 7.2.3, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions and 6.0 all versions may allow a remote and unauthenticated attacker… |
CVE-2024-27785 | Medium | 5.4 | — | 2024-07-09 | An improper neutralization of formula elements in a CSV File [CWE-1236] vulnerability in Fortinet FortiAIOps 2.0.0 may allow a remote authenticated attacker to execute arbitrary commands on a client's workstation via poisoned CSV reports. |
CVE-2023-50181 | Medium | 4.9 | — | 2024-07-09 | An improper access control vulnerability [CWE-284] in Fortinet FortiADC version 7.4.0 through 7.4.1 and before 7.2.4 allows a read only authenticated attacker to perform some write actions via crafted HTTP or HTTPS requests. |
CVE-2024-33509 | Medium | 4.8 | — | 2024-07-09 | An improper certificate validation vulnerability [CWE-295] in FortiWeb 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions and 6.3 all versions may allow a remote and unauthenticated attacker in a Man-in-the-Middle position to decipher… |
CVE-2023-50179 | Medium | 4.8 | — | 2024-07-09 | An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2 all versions, 7.1 all versions, 7.0 all versions may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication c… |
CVE-2024-21759 | Medium | 4.3 | — | 2024-07-09 | An authorization bypass through user-controlled key in Fortinet FortiPortal version 7.2.0, and versions 7.0.0 through 7.0.6 allows attacker to view unauthorized resources via HTTP or HTTPS requests. |
CVE-2024-26015 | Low | 3.4 | — | 2024-07-09 | An incorrect parsing of numbers with different radices vulnerability [CWE-1389] in FortiProxy version 7.4.3 and below, version 7.2.10 and below, version 7.0.17 and below and FortiOS version 7.4.3 and below, version 7.2.8 and below, version… |
Citrix · 10 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6148 | High | 8.8 | — | 2024-07-10 | Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5 |
CVE-2024-6235 | High | 8.8 | — | 2024-07-10 | Sensitive information disclosure in NetScaler Console |
CVE-2024-6677 | High | 7.8 | — | 2024-07-12 | Privilege escalation in uberAgent |
CVE-2024-6286 | High | 7.8 | — | 2024-07-10 | Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows |
CVE-2024-6151 | High | 7.8 | — | 2024-07-10 | Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS |
CVE-2024-6236 | High | 7.5 | — | 2024-07-10 | Denial of Service in NetScaler Console (formerly NetScaler ADM), NetScaler Agent, and NetScaler SDX |
CVE-2024-5491 | High | 7.5 | — | 2024-07-10 | Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler |
CVE-2024-6149 | Medium | 6.1 | — | 2024-07-10 | Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5 |
CVE-2024-5492 | Medium | 6.1 | — | 2024-07-10 | Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway |
CVE-2024-6150 | Medium | 4.3 | — | 2024-07-10 | A non-admin user can cause short-term disruption in Target VM availability in Citrix Provisioning |
Idccms · 10 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40332 | High | 8.8 | — | 2024-07-10 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/moneyRecord_deal.php?mudi=delRecord |
CVE-2024-40331 | High | 8.8 | — | 2024-07-10 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/dbBakMySQL_deal.php?mudi=backup |
CVE-2024-40334 | High | 8.8 | — | 2024-07-10 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/serverFile_deal.php?mudi=upFileDel&dataID=3 |
CVE-2024-40333 | High | 8.8 | — | 2024-07-10 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=del&dataID=2 |
CVE-2024-40329 | High | 8.8 | — | 2024-07-10 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=backup |
CVE-2024-40036 | High | 8.8 | — | 2024-07-09 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=add&nohrefStr=close |
CVE-2024-40328 | Medium | 6.3 | — | 2024-07-10 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/memberOnline_deal.php?mudi=del&dataType=&dataID=6 |
CVE-2024-40336 | Medium | 6.1 | — | 2024-07-10 | idccms v1.35 is vulnerable to Cross Site Scripting (XSS) within the 'Image Advertising Management.' |
CVE-2024-40035 | Medium | 5.9 | — | 2024-07-09 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=add. |
CVE-2024-40038 | Medium | 5.3 | — | 2024-07-09 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userScore_deal.php?mudi=rev |
Red Hat · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5971 | High | 7.5 | — | 2024-07-08 | A vulnerability was found in Undertow, where the chunked response hangs after the body was flushed. |
CVE-2024-6409 | High | 7.0 | — | 2024-07-08 | A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). |
CVE-2024-6237 | Medium | 6.5 | — | 2024-07-09 | A flaw was found in the 389 Directory Server. |
CVE-2023-39328 | Medium | 5.5 | — | 2024-07-09 | A vulnerability was found in OpenJPEG similar to CVE-2019-6988. |
CVE-2024-3653 | Medium | 5.3 | — | 2024-07-08 | A vulnerability was found in Undertow. |
CVE-2024-6501 | Low | 3.1 | — | 2024-07-09 | A flaw was found in NetworkManager. |
Schneider Electric · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6407 | Critical | 9.8 | — | 2024-07-11 | CWE-200: Information Exposure vulnerability exists that could cause disclosure of credentials when a specially crafted message is sent to the device. |
CVE-2024-5681 | High | 7.8 | — | 2024-07-11 | CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL ca… |
CVE-2024-2602 | High | 7.3 | — | 2024-07-11 | CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could result in remote code execution when an authenticated user executes a saved project file that has been tampered by a mal… |
CVE-2024-5680 | High | 7.1 | — | 2024-07-11 | CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of-service when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver. |
CVE-2024-5679 | High | 7.1 | — | 2024-07-11 | CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, or kernel memory leak when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver. |
CVE-2024-6528 | Medium | 5.4 | — | 2024-07-11 | CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause a vulnerability leading to a cross-site scripting condition where attackers can have a victim’s browser run… |
Gitlab · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6385 | Critical | 9.6 | — | 2024-07-11 | An issue was discovered in GitLab CE/EE affecting all versions starting from 15.8 prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2, which allows an attacker to trigger a pipeline as another user… |
CVE-2024-2177 | Medium | 6.8 | — | 2024-07-09 | A Cross Window Forgery vulnerability exists within GitLab CE/EE affecting all versions from 16.3 prior to 16.11.5, 17.0 prior to 17.0.3, and 17.1 prior to 17.1.1. |
CVE-2024-5257 | Medium | 4.9 | — | 2024-07-11 | An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Developer user with `admin_compliance_framework` custom role may have been able to modify the URL for a… |
CVE-2024-5470 | Low | 3.8 | — | 2024-07-11 | An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Guest user with `admin_push_rules` permission may have been able to create project-level deploy tokens. |
CVE-2024-2880 | Low | 2.7 | — | 2024-07-11 | An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2 in which a user with `admin_group_member` custom role permission… |
Ifm · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-28747 | Critical | 9.8 | — | 2024-07-09 | An unauthenticated remote attacker can use the hard-coded credentials to access the SmartSPS devices with high privileges. |
CVE-2024-28751 | Critical | 9.1 | — | 2024-07-09 | An high privileged remote attacker can enable telnet access that accepts hardcoded credentials. |
CVE-2024-28750 | High | 7.2 | — | 2024-07-09 | A remote attacker with high privileges may use a deleting file function to inject OS commands. |
CVE-2024-28749 | High | 7.2 | — | 2024-07-09 | A remote attacker with high privileges may use a writing file function to inject OS commands. |
CVE-2024-28748 | High | 7.2 | — | 2024-07-09 | A remote attacker with high privileges may use a reading file function to inject OS commands. |
Joomla · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-26279 | Medium | 6.1 | — | 2024-07-09 | The wrapper extensions do not correctly validate inputs, leading to XSS vectors. |
CVE-2024-26278 | Medium | 6.1 | — | 2024-07-09 | The Custom Fields component not correctly filter inputs, leading to a XSS vector. |
CVE-2024-21731 | Medium | 6.1 | — | 2024-07-09 | Improper handling of input could lead to an XSS vector in the StringHelper::truncate method. |
CVE-2024-21729 | Medium | 6.1 | — | 2024-07-09 | Inadequate input validation leads to XSS vulnerabilities in the accessiblemedia field. |
CVE-2024-21730 | Medium | 5.4 | — | 2024-07-09 | The fancyselect list field layout does not correctly escape inputs, leading to a self-XSS vector. |
Openvpn · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-1305 | Critical | 9.8 | — | 2024-07-08 | tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming write operations which an attacker can use to overflow memory buffers, resulting in a bug check and potentially arbitrary code execution in… |
CVE-2024-27903 | Critical | 9.8 | — | 2024-07-08 | OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service. |
CVE-2024-27459 | High | 7.8 | — | 2024-07-08 | The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack overflow which can be used to execute arbitrary code with more privileges. |
CVE-2024-24974 | High | 7.5 | — | 2024-07-08 | The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be accessed remotely, which allows a remote attacker to interact with the privileged OpenVPN interactive service. |
CVE-2024-28882 | Medium | 4.3 | — | 2024-07-08 | OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session |
Ping Identity · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-22377 | Medium | 5.3 | — | 2024-07-09 | The deploy directory in PingFederate runtime nodes is reachable to unauthorized users. |
CVE-2024-21832 | Low | 3.5 | — | 2024-07-09 | A potential JSON injection attack vector exists in PingFederate REST API data stores using the POST method and a JSON request body. |
CVE-2024-22477 | Low | 1.8 | — | 2024-07-09 | A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. |
CVE-2023-40702 | — | — | — | 2024-07-09 | PingOne MFA Integration Kit contains a vulnerability where the skipMFA action can be configured such that user authentication does not require the second factor authentication from the user's existing registered devices. |
CVE-2023-40356 | — | — | — | 2024-07-09 | PingOne MFA Integration Kit contains a vulnerability related to the Prompt Users to Set Up MFA configuration. |
Codermy · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40542 | Critical | 9.8 | — | 2024-07-12 | my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/role?offset. |
CVE-2024-40541 | Critical | 9.8 | — | 2024-07-12 | my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/dept/build. |
CVE-2024-40540 | Critical | 9.8 | — | 2024-07-12 | my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/dept. |
CVE-2024-40539 | Critical | 9.8 | — | 2024-07-12 | my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/user. |
Delta Electronics · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39883 | High | 8.8 | — | 2024-07-09 | Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. |
CVE-2024-39882 | High | 8.8 | — | 2024-07-09 | Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. |
CVE-2024-39881 | High | 8.8 | — | 2024-07-09 | Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a memory corruption condition. |
CVE-2024-39880 | High | 7.8 | — | 2024-07-09 | Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. |
Directus · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39896 | High | 7.5 | — | 2024-07-08 | Directus is a real-time API and App dashboard for managing SQL database content. |
CVE-2024-39895 | Medium | 6.5 | — | 2024-07-08 | Directus is a real-time API and App dashboard for managing SQL database content. |
CVE-2024-39701 | Medium | 6.3 | — | 2024-07-08 | Directus is a real-time API and App dashboard for managing SQL database content. |
CVE-2024-39699 | Medium | 5.0 | — | 2024-07-08 | Directus is a real-time API and App dashboard for managing SQL database content. |
Djangoproject · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39614 | High | 7.5 | — | 2024-07-10 | An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. |
CVE-2024-38875 | High | 7.5 | — | 2024-07-10 | An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. |
CVE-2024-39329 | Medium | 5.3 | — | 2024-07-10 | An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. |
CVE-2024-39330 | Medium | 4.3 | — | 2024-07-10 | An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. |
Gallagher · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-22387 | Medium | 6.8 | — | 2024-07-11 | External Control of Critical State Data (CWE-642) in the Controller 6000 and Controller 7000 diagnostic web interface allows an authenticated user to modify device I/O connections leading to unexpected behavior that in some circumstances c… |
CVE-2024-23317 | Medium | 6.3 | — | 2024-07-11 | External Control of File Name or Path (CWE-73) in the Controller 6000 and Controller 7000 allows an attacker with local access to the Controller to perform arbitrary code execution. |
CVE-2024-23485 | Medium | 4.6 | — | 2024-07-11 | Improperly Preserved Integrity of Hardware Configuration State During a Power Save/Restore Operation (CWE-1304) in the Controller 6000 and 7000 can lead to secured door locks connected via Aperio Communication Hubs to momentarily allow fre… |
CVE-2024-23194 | Low | 3.3 | — | 2024-07-11 | Improper output Neutralization for Logs (CWE-117) in the Command Centre API Diagnostics Endpoint could allow an attacker limited ability to modify Command Centre log files. |
Longse Technology · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5634 | — | — | — | 2024-07-09 | Longse model LBH30FE200W cameras, as well as products based on this device, make use of telnet passwords which follow a specific pattern. |
CVE-2024-5633 | — | — | — | 2024-07-09 | Longse model LBH30FE200W cameras, as well as products based on this device, provide an unrestricted access for an attacker located in the same local network to an undocumented binary service CoolView on one of the ports. An attacker with… |
CVE-2024-5632 | — | — | — | 2024-07-09 | Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password. |
CVE-2024-5631 | — | — | — | 2024-07-09 | Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device, are transmitting user's login and password to a remote control service without using any encryption. |
Oisf · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38536 | High | 7.5 | — | 2024-07-11 | Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. |
CVE-2024-38535 | High | 7.5 | — | 2024-07-11 | Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. |
CVE-2024-38534 | High | 7.5 | — | 2024-07-11 | Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. |
CVE-2024-37151 | Medium | 5.3 | — | 2024-07-11 | Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. |
Palo Alto Networks · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5910 | Critical | 9.8 | KEV | 2024-07-10 | Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. |
CVE-2024-5913 | Medium | 6.1 | — | 2024-07-10 | An improper input validation vulnerability in Palo Alto Networks PAN-OS software enables an attacker with the ability to tamper with the physical file system to elevate privileges. |
CVE-2024-5911 | Medium | 4.9 | — | 2024-07-10 | An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and crash the Panorama. |
CVE-2024-5912 | — | — | — | 2024-07-10 | An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. |
Unitecms · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6166 | High | 8.8 | — | 2024-07-09 | The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘addons_order’ parameter in all versions up to, and including, 1.5.112 due to insufficient escapi… |
CVE-2024-6170 | Medium | 6.4 | — | 2024-07-09 | The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘email’ parameter in all versions up to, and including, 1.5.112 due to insufficient input sani… |
CVE-2024-6169 | Medium | 6.4 | — | 2024-07-09 | The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘username’ parameter in all versions up to, and including, 1.5.112 due to insufficient input s… |
CVE-2024-6171 | Medium | 5.3 | — | 2024-07-09 | The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to IP Address Spoofing in all versions up to, and including, 1.5.112 due to insufficient IP address validation and/or use of user-sup… |
Webmin · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-36451 | High | 8.8 | — | 2024-07-10 | Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm module of Webmin prior to 2.003. |
CVE-2024-36453 | Medium | 6.1 | — | 2024-07-10 | Cross-site scripting vulnerability exists in session_login.cgi of Webmin versions prior to 1.970 and Usermin versions prior to 1.820. |
CVE-2024-36450 | Medium | 5.4 | — | 2024-07-10 | Cross-site scripting vulnerability exists in sysinfo.cgi of Webmin versions prior to 1.910. |
CVE-2024-36452 | Low | 3.1 | — | 2024-07-10 | Cross-site request forgery vulnerability exists in ajaxterm module of Webmin versions prior to 2.003. |
Witmy · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6681 | Medium | 6.3 | — | 2024-07-11 | A vulnerability, which was classified as critical, has been found in witmy my-springsecurity-plus up to 2024-07-04. |
CVE-2024-6680 | Medium | 6.3 | — | 2024-07-11 | A vulnerability classified as critical was found in witmy my-springsecurity-plus up to 2024-07-04. |
CVE-2024-6679 | Medium | 6.3 | — | 2024-07-11 | A vulnerability classified as critical has been found in witmy my-springsecurity-plus up to 2024-07-04. |
CVE-2024-6676 | Medium | 6.3 | — | 2024-07-11 | A vulnerability has been found in witmy my-springsecurity-plus up to 2024-07-03 and classified as critical. |
Adamsolymosi · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6024 | High | 8.8 | — | 2024-07-12 | The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when deleting groups or emails, which could allow attackers to make a logged in admin remove them via a CSRF attack |
CVE-2024-6023 | High | 8.8 | — | 2024-07-12 | The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when adding emails, which could allow attackers to make a logged in admin perform such action via a CSRF attack |
CVE-2024-6022 | High | 8.8 | — | 2024-07-12 | The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack |
Automattic · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37424 | Critical | 9.9 | — | 2024-07-09 | Unrestricted Upload of File with Dangerous Type vulnerability in Automattic Newspack Blocks allows Upload a Web Shell to a Web Server.This issue affects Newspack Blocks: from n/a through 3.0.8. |
CVE-2024-37115 | High | 7.5 | — | 2024-07-10 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Automattic Newspack Blocks.This issue affects Newspack Blocks: from n/a through 3.0.8. |
CVE-2024-35777 | Low | 3.5 | — | 2024-07-09 | Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in Automattic WooCommerce allows Content Spoofing.This issue affects WooCommerce: from n/a through 8.9.2. |
Checkmk · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-28828 | High | 8.8 | — | 2024-07-10 | Cross-Site request forgery in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL) could lead to 1-click compromize of the site. |
CVE-2024-28827 | High | 8.8 | — | 2024-07-10 | Incorrect permissions on the Checkmk Windows Agent's data directory in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL) allows a local attacker to gain SYSTEM privileges. |
CVE-2024-6163 | Medium | 5.3 | — | 2024-07-08 | Certain http endpoints of Checkmk in Checkmk < 2.3.0p10 < 2.2.0p31, < 2.1.0p46, <= 2.0.0p39 allows remote attacker to bypass authentication and access data |
Cliengo · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5992 | Medium | 6.5 | — | 2024-07-09 | The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'update_chatbot_token' and 'update_chatbot_position' functions in all versions up to, and including, 3.0… |
CVE-2024-5993 | Medium | 5.4 | — | 2024-07-09 | The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'update_session' function in all versions up to, and including, 3.0.2. |
CVE-2024-37923 | Medium | 5.4 | — | 2024-07-09 | Cross-Site Request Forgery (CSRF) vulnerability in cliengo Cliengo – Chatbot cliengo allows Cross Site Request Forgery.This issue affects Cliengo – Chatbot: from n/a through <= 3.0.4. |
Debian · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-41000 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: block/ioctl: prefer different overflow check Running syzkaller with the newly reintroduced signed integer overflow sanitizer shows this report: [ 62.982337] ---------… |
CVE-2024-39496 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after-free due to race with dev replace While loading a zone's info during creation of a block group, we can race with a device replace operation a… |
CVE-2024-39494 | High | 7.8 | — | 2024-07-12 | In the Linux kernel, the following vulnerability has been resolved: ima: Fix use-after-free on a dentry's dname.name ->d_name.name can change on rename and the earlier value can be freed; there are conditions sufficient to stabilize it (… |
Decidim · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-32469 | High | 7.1 | — | 2024-07-10 | Decidim is a participatory democracy framework. |
CVE-2024-27095 | Medium | 5.4 | — | 2024-07-10 | Decidim is a participatory democracy framework. |
CVE-2024-27090 | Medium | 5.3 | — | 2024-07-10 | Decidim is a participatory democracy framework, written in Ruby on Rails, originally developed for the Barcelona City government online and offline participation website. |
Dell · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38301 | Medium | 6.7 | — | 2024-07-10 | Dell Alienware Command Center, version 5.7.3.0 and prior, contains an improper access control vulnerability. |
CVE-2023-32472 | Medium | 5.7 | — | 2024-07-10 | Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. |
CVE-2023-32467 | Medium | 5.7 | — | 2024-07-10 | Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. |
Gaizhenbiao · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6037 | Critical | 9.1 | — | 2024-07-10 | A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows an attacker to create arbitrary folders at any location on the server, including the root directory (C: dir). |
CVE-2024-6036 | Critical | 9.1 | — | 2024-07-10 | A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to restart the server at will by sending a specific request to the `/queue/join?` endpoint with `"fn_index":66`. |
CVE-2024-6035 | Medium | 6.1 | — | 2024-07-11 | A Stored Cross-Site Scripting (XSS) vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240410. |
Glpi-project · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37148 | High | 8.1 | — | 2024-07-10 | GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. |
CVE-2024-37149 | High | 7.2 | — | 2024-07-10 | GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. |
CVE-2024-37147 | Medium | 4.3 | — | 2024-07-10 | GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. |
Idccms_project · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40039 | High | 8.8 | — | 2024-07-09 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=del |
CVE-2024-40037 | High | 8.8 | — | 2024-07-09 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userScore_deal.php?mudi=del |
CVE-2024-40034 | High | 8.8 | — | 2024-07-09 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=del |
Membership Software · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37112 | Critical | 10.0 | — | 2024-07-09 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Membership Software WishList Member X.This issue affects WishList Member X: from n/a before 3.26.7. |
CVE-2024-37113 | Critical | 9.8 | — | 2024-07-10 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Membership Software WishList Member X.This issue affects WishList Member X: from n/a before 3.26.7. |
CVE-2024-37110 | High | 7.5 | — | 2024-07-10 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Membership Software WishList Member X.This issue affects WishList Member X: from n/a before 3.26.7. |
Nodejs · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-22020 | Medium | 6.5 | — | 2024-07-09 | A security flaw in Node.js allows a bypass of network import restrictions. |
CVE-2024-22018 | Low | 2.9 | — | 2024-07-10 | A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-read flag is used. |
CVE-2024-38372 | Low | 2.0 | — | 2024-07-08 | Undici is an HTTP/1.1 client, written from scratch for Node.js. |
Samsung · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-34603 | Medium | 4.0 | — | 2024-07-08 | Improper access control in Samsung Message prior to SMR Jul-2024 Release 1 allows local attackers to access location data. |
CVE-2024-34602 | Low | 3.3 | — | 2024-07-08 | Use of implicit intent for sensitive communication in Samsung Messages prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information. |
CVE-2024-32670 | — | — | — | 2024-07-10 | Exposure of Sensitive Information to an Unauthorized Actor in Samsung Galaxy SmartTag2 prior to 0.20.04 allows attackes to potentially identify the tag's location by scanning the BLE adversting. |
Servicenow · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5217 | Critical | 9.8 | KEV | 2024-07-10 | ServiceNow has addressed an input validation vulnerability that was identified in the Washington DC, Vancouver, and earlier Now Platform releases. |
CVE-2024-4879 | Critical | 9.8 | KEV | 2024-07-10 | ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and Washington DC Now Platform releases. |
CVE-2024-5178 | Medium | 4.9 | — | 2024-07-10 | ServiceNow has addressed a sensitive file read vulnerability that was identified in the Washington DC, Vancouver, and Utah Now Platform releases. |
Stitionai · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5549 | High | 8.1 | — | 2024-07-09 | A CORS misconfiguration in the stitionai/devika repository allows attackers to steal sensitive information such as logs, browser sessions, and settings containing private API keys from other services. |
CVE-2024-6433 | High | 7.5 | — | 2024-07-10 | The application zips all the files in the folder specified by the user, which allows an attacker to read arbitrary files on the system by providing a crafted path. |
CVE-2024-5711 | Medium | 6.1 | — | 2024-07-08 | A stored Cross-Site Scripting (XSS) vulnerability exists in the stitionai/devika chat feature, allowing attackers to inject malicious payloads into the chat input. |
Adobe · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-34139 | High | 7.8 | — | 2024-07-09 | Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-34140 | Medium | 5.5 | — | 2024-07-09 | Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
Advanced File Manager · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-7062 | High | 8.8 | — | 2024-07-10 | The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4. |
CVE-2023-7061 | High | 8.8 | — | 2024-07-10 | The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 2.5.3. |
Aimhubio · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6396 | Critical | 9.8 | — | 2024-07-12 | A vulnerability in the `_backup_run` function in aimhubio/aim version 3.19.3 allows remote attackers to overwrite any file on the host server and exfiltrate arbitrary data. |
CVE-2024-6227 | High | 7.5 | — | 2024-07-08 | A vulnerability in aimhubio/aim version 3.19.3 allows an attacker to cause an infinite loop by configuring the remote tracking server to point at itself. |
Anhvnit · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37933 | Critical | 9.3 | — | 2024-07-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in anhvnit Woocommerce OpenPos.This issue affects Woocommerce OpenPos: from n/a through 6.4.4. |
CVE-2024-37932 | High | 8.6 | — | 2024-07-12 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in anhvnit Woocommerce OpenPos allows File Manipulation.This issue affects Woocommerce OpenPos: from n/a through 6.4.4. |
Apache · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-36522 | Critical | 9.8 | — | 2024-07-12 | The default configuration of XSLTResourceStream.java is vulnerable to remote code execution via XSLT injection when processing input from an untrusted source without validation. |
CVE-2024-37389 | Medium | 4.6 | — | 2024-07-08 | Apache NiFi 1.10.0 through 1.26.0 and 2.0.0-M1 through 2.0.0-M3 support a description field in the Parameter Context configuration that is vulnerable to cross-site scripting. |
Aprokopenko · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6168 | Medium | 4.3 | — | 2024-07-09 | The Just Custom Fields plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.3.2. |
CVE-2024-6167 | Medium | 4.3 | — | 2024-07-09 | The Just Custom Fields plugin for WordPress is vulnerable to unauthorized access of functionality due to a missing capability check on several AJAX functions in all versions up to, and including, 3.3.2. |
Ays-pro · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6138 | Medium | 4.8 | — | 2024-07-11 | The Secure Copy Content Protection and Content Locking WordPress plugin before 4.0.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks eve… |
CVE-2024-37442 | Low | 3.8 | — | 2024-07-09 | Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in Photo Gallery Team Photo Gallery by Ays allows Code Injection.This issue affects Photo Gallery by Ays: from n/a before 5.7… |
Dwieeb · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6321 | High | 8.8 | — | 2024-07-09 | The ScrollTo Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.1.1. |
CVE-2024-6320 | High | 8.8 | — | 2024-07-09 | The ScrollTo Top plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.2.2. |
Elfsight · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4102 | Medium | 5.4 | — | 2024-07-09 | The Pricing Table plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax() function in all versions up to, and including, 2.0.1. |
CVE-2024-4100 | Medium | 5.3 | — | 2024-07-09 | The Pricing Table plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.1. |
Fogproject · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39914 | Critical | 9.8 | — | 2024-07-12 | FOG is a cloning/imaging/rescue suite/inventory management system. |
CVE-2024-39916 | Medium | 6.4 | — | 2024-07-12 | FOG is a free open-source cloning/imaging/rescue suite/inventory management system. |
Getoutline · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37829 | High | 8.8 | — | 2024-07-09 | An issue in Outline <= v0.76.1 allows attackers to execute a session hijacking attack via user interaction with a crafted magic sign-in link. |
CVE-2024-37830 | Medium | 6.1 | — | 2024-07-09 | An issue in Outline <= v0.76.1 allows attackers to redirect a victim user to a malicious site via intercepting and changing the state cookie. |
Hackmd · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38354 | High | 8.1 | — | 2024-07-10 | CodiMD allows realtime collaborative markdown notes on all platforms. |
CVE-2024-38353 | Medium | 5.3 | — | 2024-07-10 | CodiMD allows realtime collaborative markdown notes on all platforms. |
Happydevs · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5669 | Medium | 6.4 | — | 2024-07-09 | The XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ffw_activate_template' function in all versions up… |
CVE-2024-5704 | Medium | 4.3 | — | 2024-07-09 | The XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions (i.e. |
Hyumika · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3604 | Critical | 9.9 | — | 2024-07-09 | The OSM – OpenStreetMap plugin for WordPress is vulnerable to SQL Injection via the 'tagged_filter' attribute of the 'osm_map_v3' shortcode in all versions up to, and including, 6.0.3 due to insufficient escaping on the user supplied param… |
CVE-2024-3603 | Medium | 6.4 | — | 2024-07-09 | The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'osm_map' shortcode in all versions up to, and including, 6.0.3 due to insufficient input sanitization and output escaping on user s… |
Itsourcecode · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37873 | Critical | 9.8 | — | 2024-07-09 | SQL injection vulnerability in view_payslip.php in Itsourcecode Payroll Management System Project In PHP With Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. |
CVE-2024-37870 | Critical | 9.8 | — | 2024-07-09 | SQL injection vulnerability in processscore.php in Learning Management System Project In PHP With Source Code 1.0 allows attackers to execute arbitrary SQL commands via the id parameter. |
Johnson Controls · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-32753 | — | — | — | 2024-07-11 | Under certain circumstances the camera may be susceptible to known vulnerabilities associated with the JQuery versions prior to 3.5.0 third-party component |
CVE-2024-32759 | — | — | — | 2024-07-10 | Under certain circumstances the Software House C●CURE 9000 installer will utilize weak credentials. |
Metagauss · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6411 | High | 8.8 | — | 2024-07-10 | The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 5.8.9. |
CVE-2024-6410 | Medium | 4.3 | — | 2024-07-10 | The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.8.9 via the 'pm_upload_image' function due to missing validation on a us… |
Mythemeshop · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5802 | Medium | 4.8 | — | 2024-07-09 | The URL Shortener by Myhop WordPress plugin through 1.0.17 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallo… |
CVE-2024-37938 | Medium | 4.3 | — | 2024-07-12 | Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop SociallyViral.This issue affects SociallyViral: from n/a through 1.0.10. |
Nootheme · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37927 | Critical | 9.8 | — | 2024-07-12 | Incorrect Privilege Assignment vulnerability in NooTheme Jobmonster noo-jobmonster allows Privilege Escalation.This issue affects Jobmonster: from n/a through <= 4.7.5. |
CVE-2024-37928 | High | 8.6 | — | 2024-07-12 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NooTheme Jobmonster allows File Manipulation.This issue affects Jobmonster: from n/a through 4.7.0. |
Opensearch · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39900 | Medium | 5.4 | — | 2024-07-09 | OpenSearch Dashboards Reports allows ‘Report Owner’ export and share reports from OpenSearch Dashboards. |
CVE-2024-39901 | Medium | 4.2 | — | 2024-07-09 | OpenSearch Observability is collection of plugins and applications that visualize data-driven events. |
Oretnom23 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6649 | Medium | 4.3 | — | 2024-07-10 | A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. |
CVE-2024-6650 | Low | 2.4 | — | 2024-07-10 | A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. |
Pandavideo · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5456 | High | 8.8 | — | 2024-07-09 | The Panda Video plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.4.0 via the 'selected_button' parameter. |
CVE-2024-5457 | Medium | 6.4 | — | 2024-07-09 | The Panda Video plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.4.0 due to insufficient input sanitization and output escaping. |
Pepperl+fuchs · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6422 | Critical | 9.8 | — | 2024-07-10 | An unauthenticated remote attacker can manipulate the device via Telnet, stop processes, read, delete and change data. |
CVE-2024-6421 | High | 7.5 | — | 2024-07-10 | An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service. |
Phoniebox · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3799 | — | — | — | 2024-07-10 | Insecure handling of POST header parameter body included in requests being sent to an instance of the open-source project Phoniebox allows an attacker to create a website, which – when visited by a user – will send malicious requests to mu… |
CVE-2024-3798 | — | — | — | 2024-07-10 | Insecure handling of GET header parameter file included in requests being sent to an instance of the open-source project Phoniebox allows an attacker to create a website, which – when visited by a user – will send malicious requests to mul… |
Renesas · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6563 | High | 7.5 | — | 2024-07-08 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Renesas arm-trusted-firmware allows Local Execution of Code. |
CVE-2024-6564 | Medium | 6.7 | — | 2024-07-08 | Buffer overflow in "rcar_dev_init" due to using due to using untrusted data (rcar_image_number) as a loop counter before verifying it against RCAR_MAX_BL3X_IMAGE. |
Sap_se · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39597 | High | 7.2 | — | 2024-07-09 | In SAP Commerce, a user can misuse the forgotten password functionality to gain access to a Composable Storefront B2B site for which early login and registration is activated, without requiring the merchant to approve the account beforehan… |
CVE-2024-39596 | Medium | 4.3 | — | 2024-07-09 | Due to missing authorization checks, SAP Enable Now allows an author to escalate privileges to access information which should otherwise be restricted. |
Tencent · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39684 | High | 7.8 | — | 2024-07-09 | Tencent RapidJSON is vulnerable to privilege escalation due to an integer overflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream. |
CVE-2024-38517 | High | 7.8 | — | 2024-07-09 | Tencent RapidJSON is vulnerable to privilege escalation due to an integer underflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream. |
Themeum · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37256 | High | 7.6 | — | 2024-07-09 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.1. |
CVE-2024-37266 | Medium | 4.9 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Themeum Tutor LMS allows Path Traversal.This issue affects Tutor LMS: from n/a through 2.7.1. |
Wpmudev · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6554 | Medium | 5.3 | — | 2024-07-11 | The Branda – White Label WordPress, Custom Login Page Customizer plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.18. |
CVE-2024-6556 | Medium | 5.3 | — | 2024-07-10 | The SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.10.8. |
Zealopensource · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6317 | High | 8.8 | — | 2024-07-09 | The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. |
CVE-2024-6316 | High | 8.8 | — | 2024-07-09 | The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. |
/N Software · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6580 | Medium | 6.5 | — | 2024-07-08 | The /n software IPWorks SSH library SFTPServer component can be induced to make unintended filesystem or network path requests when loading a SSH public key or certificate. |
10web · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6026 | Medium | 5.4 | — | 2024-07-11 | The Slider by 10Web WordPress plugin before 1.2.56 does not sanitise and escape some of its Slide options, which could allow authenticated users with access to the Sliders (by default Administrator, however this can be changed via the Sli… |
Admerc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6652 | Medium | 6.3 | — | 2024-07-10 | A vulnerability was found in itsourcecode Gym Management System 1.0. |
Airbytehq · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38363 | High | 8.5 | — | 2024-07-09 | Airbyte is a data integration platform for ELT pipelines. |
Amttgroup · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39072 | Medium | 5.5 | — | 2024-07-09 | AMTT Hotel Broadband Operation System (HiBOS) v3.0.3.151204 is vulnerable to SQL injection via manager/conference/calendar_remind.php. |
Andy_moyle · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37418 | Critical | 9.9 | — | 2024-07-09 | Unrestricted Upload of File with Dangerous Type vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a through <= 4.4.6. |
Angeljudesuarez · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37872 | High | 8.1 | — | 2024-07-09 | SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter. |
Ashanjay · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6180 | High | 7.2 | — | 2024-07-09 | The EventON plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'eventon_import_settings' ajax action in all versions up to, and including, 2.2.15. |
Aumkub · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5677 | Medium | 4.3 | — | 2024-07-10 | The Featured Image Generator plugin for WordPress is vulnerable to unauthorized image upload due to a missing capability check on the fig_save_after_generate_image function in all versions up to, and including, 1.3.1. |
Auth0 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-6813 | Medium | 6.1 | — | 2024-07-10 | The Login by Auth0 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘wle’ parameter in all versions up to, and including, 4.6.0 due to insufficient input sanitization and output escaping. |
Awsm · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37454 | Medium | 6.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in AWSM Innovations AWSM Team allows Path Traversal.This issue affects AWSM Team: from n/a through 1.3.1. |
B1ackc4t · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37770 | Critical | 9.1 | — | 2024-07-10 | 14Finger v1.1 was discovered to contain a remote command execution (RCE) vulnerability in the fingerprint function. |
Bastho · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-1375 | Medium | 4.3 | — | 2024-07-12 | The Event post plugin for WordPress is vulnerable to unauthorized bulk metadata update due to a missing nonce check on the save_bulkdatas function in all versions up to, and including, 5.9.10. |
Bastien Ho · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38735 | High | 7.5 | — | 2024-07-12 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Bastien Ho Event post event-post.This issue affects Event post: from n/a through <= 5.9.5. |
Bestwebsoft · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3112 | Medium | 4.8 | — | 2024-07-12 | The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (f… |
Binarycarpenter · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37202 | Medium | 6.5 | — | 2024-07-12 | Missing Authorization vulnerability in BinaryCarpenter Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter custom-add-to-cart-button-for-woocommerce.This issue affects Ultimate Custom Add To Cart Button (Ajax) For… |
Bitpressadmin · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6123 | High | 7.2 | — | 2024-07-09 | The Bit Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'iconUpload' function in all versions up to, and including, 2.13.3. |
Blubrry · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6588 | Medium | 6.4 | — | 2024-07-12 | The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘media_url’ parameter in all versions up to, and including, 11.9.10 due to insufficient input sanitization and output… |
Blue Plugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38716 | Medium | 6.5 | — | 2024-07-12 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Blue Plugins Events Calendar for Google allows PHP Local File Inclusion.This issue affects Events Calendar for Google: from n/a through 2.1.0. |
Bmwebproperties · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-0974 | Medium | 4.8 | — | 2024-07-12 | The Social Media Widget WordPress plugin before 4.0.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capa… |
Bobbingwide · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6391 | Medium | 6.4 | — | 2024-07-09 | The oik plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bw_button shortcode in all versions up to, and including, 4.10.3 due to insufficient input sanitization and output escaping on user supplied attribu… |
Booking Ultra Pro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38717 | High | 7.1 | — | 2024-07-12 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Booking Ultra Pro allows PHP Local File Inclusion.This issue affects Booking Ultra Pro: from n/a through 1.1.13. |
Bootstrap · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6485 | Medium | 6.4 | — | 2024-07-11 | A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting (XSS) attacks. |
Botan_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39312 | Medium | 5.3 | — | 2024-07-08 | Botan is a C++ cryptography library. |
Brainstorm Force · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37455 | High | 8.8 | — | 2024-07-09 | Improper Privilege Management vulnerability in Brainstorm Force Ultimate Addons for Elementor allows Privilege Escalation.This issue affects Ultimate Addons for Elementor: from n/a through 1.36.31. |
Broadcom · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3596 | Critical | 9.0 | — | 2024-07-09 | RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against… |
Cisco · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-20456 | Medium | 6.7 | — | 2024-07-10 | A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Cisco Secure Boot functionality and load unverified software on an affected device. |
Cloud · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3325 | High | 7.2 | — | 2024-07-10 | Vulnerability in Jaspersoft JasperReport Servers.This issue affects JasperReport Servers: from 8.0.4 through 9.0.0. |
Code-projects · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6653 | High | 7.3 | — | 2024-07-11 | A vulnerability was found in code-projects Simple Task List 1.0. |
Codeastrology · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4866 | Medium | 6.4 | — | 2024-07-10 | The UltraAddons – Elementor Addons (Header Footer Builder, Custom Font, Custom CSS,Woo Widget, Menu Builder, Anywhere Elementor Shortcode) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versio… |
Codeless · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37419 | High | 7.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Codeless Cowidgets – Elementor Addons allows Path Traversal.This issue affects Cowidgets – Elementor Addons: from n/a through 1.1.1. |
Cog-creators · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39905 | Medium | 5.3 | — | 2024-07-11 | Red is a fully modular Discord bot. |
Creativeitem · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38959 | Medium | 6.1 | — | 2024-07-09 | Cross Site Scripting vulnerability in Creativeitem Academy LMS Learning Management System v.6.8.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the string parameter. |
Crocoblock · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37497 | High | 7.7 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Crocoblock JetThemeCore jet-theme-core.This issue affects JetThemeCore: from n/a through < 2.2.1. |
Data443 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5626 | Medium | 6.1 | — | 2024-07-12 | The Inline Related Posts WordPress plugin before 3.7.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as adm… |
Deano1987 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6310 | High | 8.8 | — | 2024-07-09 | The Advanced AJAX Page Loader plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 2.7.7. |
Devitems · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38706 | Medium | 6.5 | — | 2024-07-12 | Path Traversal: '.../...//' vulnerability in DevItems HT Mega ht-mega-for-elementor.This issue affects HT Mega: from n/a through <= 2.5.7. |
Digireturn · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3410 | Medium | 4.3 | — | 2024-07-09 | The DN Footer Contacts WordPress plugin before 1.6.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capab… |
Dj-extensions · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-27183 | Medium | 6.1 | — | 2024-07-09 | XSS vulnerability in DJ-HelpfulArticles component for Joomla. |
Dlink · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39202 | High | 8.8 | — | 2024-07-08 | D-Link DIR-823X firmware - 240126 was discovered to contain a remote command execution (RCE) vulnerability via the dhcpd_startip parameter at /goform/set_lan_settings. |
Docker · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5652 | Medium | 6.1 | — | 2024-07-09 | In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windows Denial-of-Service through the exec-path Docker daemon config option in Windows containers mode. |
Dotcamp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4655 | Medium | 5.4 | — | 2024-07-11 | The Ultimate Blocks WordPress plugin before 3.1.9 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to p… |
Dream Train Internet Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39886 | Low | 3.7 | — | 2024-07-10 | TONE store App version 3.4.2 and earlier contains an issue with unprotected primary channel. |
Dylan James · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37484 | High | 8.8 | — | 2024-07-09 | Improper Privilege Management vulnerability in Dylan James Zephyr Project Manager allows Privilege Escalation.This issue affects Zephyr Project Manager: from n/a through 3.3.97. |
Dynamicweblab · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38704 | Medium | 6.5 | — | 2024-07-12 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DynamicWebLab WordPress Team Manager allows PHP Local File Inclusion.This issue affects WordPress Team Manager: from n/a through 2.1.12. |
E4jconnect · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-1845 | High | 8.8 | — | 2024-07-11 | The VikRentCar Car Rental Management System WordPress plugin before 1.3.2 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks |
Electron · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39698 | High | 7.5 | — | 2024-07-09 | electron-updater allows for automatic updates for Electron apps. |
Elementor · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37437 | Medium | 5.5 | — | 2024-07-09 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elementor Elementor Website Builder elementor.This issue affects Elementor Website Builder: from n/a through <= 3.22.1. |
Embedded-solutions · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-31504 | High | 7.5 | — | 2024-07-08 | Buffer Overflow vulnerability in SILA Embedded Solutions GmbH freemodbus v.2018-09-12 allows a remtoe attacker to cause a denial of service via the LINUXTCP server component. |
Emiloi · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37871 | High | 8.2 | — | 2024-07-09 | SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP with Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the email parameter. |
Everest · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37310 | Critical | 9.0 | — | 2024-07-10 | EVerest is an EV charging software stack. |
Exiv2 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39695 | Medium | 5.3 | — | 2024-07-08 | Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. |
Expresstech · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6025 | Medium | 5.4 | — | 2024-07-11 | The Quiz and Survey Master (QSM) WordPress plugin before 9.0.5 does not sanitise and escape some of its Quiz settings, which could allow contributors and higher to perform Stored Cross-Site Scripting attacks |
Exs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38715 | Medium | 6.5 | — | 2024-07-12 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ExS ExS Widgets allows PHP Local File Inclusion.This issue affects ExS Widgets: from n/a through 0.3.1. |
Extremepacs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4341 | Medium | 6.5 | — | 2024-07-08 | Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users. |
Favethemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5793 | High | 8.8 | — | 2024-07-09 | The Houzez Theme - Functionality plugin for WordPress is vulnerable to SQL Injection via the ‘currency_code’ parameter in all versions up to, and including, 3.2.2 due to insufficient escaping on the user supplied parameter and lack of suff… |
Fullservices · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6447 | High | 7.2 | — | 2024-07-11 | The FULL – Cliente plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the license plan parameter in all versions up to, and including, 3.1.12 due to insufficient input sanitization and output escaping as well as missing… |
G5plus · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37462 | High | 8.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in G5Theme Ultimate Bootstrap Elements for Elementor allows Path Traversal.This issue affects Ultimate Bootstrap Elements for Elementor: from n/a… |
Genetechproducts · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6069 | High | 8.8 | — | 2024-07-09 | The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing ca… |
Guru-aliexpress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37213 | High | 7.1 | — | 2024-07-12 | Cross-Site Request Forgery (CSRF) vulnerability in guru-aliexpress AliNext ali2woo-lite allows Cross Site Request Forgery.This issue affects AliNext: from n/a through <= 3.4.6. |
Happymonkeyagency · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5600 | Medium | 5.4 | — | 2024-07-09 | The SCSS Happy Compiler – Compile SCSS to CSS & Automatic Enqueue plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to a missing capability check and insufficient sanitization on the import_settings() function in all ve… |
Hashicorp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6468 | High | 7.5 | — | 2024-07-11 | Vault and Vault Enterprise did not properly handle requests originating from unauthorized IP addresses when the TCP listener option, proxy_protocol_behavior, was set to deny_unauthorized. |
Hcl Software · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-23562 | Medium | 5.3 | — | 2024-07-08 | A security vulnerability in HCL Domino could allow disclosure of sensitive configuration information. |
Houzez · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5792 | High | 8.8 | — | 2024-07-10 | The Houzez CRM plugin for WordPress is vulnerable to time-based SQL Injection via the notes ‘belong_to’ parameter in all versions up to, and including, 1.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficien… |
Ideabox · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37410 | Medium | 4.9 | — | 2024-07-09 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in IdeaBox Creations PowerPack Lite for Beaver Builder powerpack-addon-for-beaver-builder.This issue affects PowerPack Li… |
Idioweb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4868 | Medium | 6.4 | — | 2024-07-09 | The Extensions for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's EE Events and EE Flipbox widgets in all versions up to, and including, 2.0.32 due to insufficient input sanitization and output… |
Inspireui · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6328 | Critical | 9.8 | — | 2024-07-12 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.14.7. |
Instawp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6397 | Critical | 9.8 | — | 2024-07-11 | The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 0.1.0.44. |
Internal Link Juicer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37941 | Medium | 4.3 | — | 2024-07-12 | Cross-Site Request Forgery (CSRF) vulnerability in Internal Link Juicer Internal Link Juicer: SEO Auto Linker for WordPress.This issue affects Internal Link Juicer: SEO Auto Linker for WordPress: from n/a through 2.24.3. |
Iqbalrony · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37560 | High | 8.0 | — | 2024-07-12 | Improper Privilege Management vulnerability in IqbalRony WP User Switch allows Privilege Escalation.This issue affects WP User Switch: from n/a through 1.1.0. |
Isc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-28872 | High | 8.9 | — | 2024-07-11 | The TLS certificate validation code is flawed. |
Jan Syski · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6527 | — | — | — | 2024-07-09 | SQL Injection vulnerability in parameter "w" in file "druk.php" in MegaBIP software allows unauthorized attacker to disclose the contents of the database and obtain administrator's token to modify the content of pages. This issue affects… |
Jaraco · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5569 | Medium | 6.2 | — | 2024-07-09 | A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1. |
Jevnet · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5479 | High | 7.2 | — | 2024-07-09 | The Easy Pixels plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin settings in all versions up to, and including, 2.13 due to insufficient input sanitization and output escaping. |
Kainelabs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37494 | High | 8.5 | — | 2024-07-09 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in KaineLabs Youzify.This issue affects Youzify: from n/a through 1.2.5. |
Kaptinlin · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37268 | High | 8.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in kaptinlin Striking allows Path Traversal.This issue affects Striking: from n/a through 2.3.4. |
Khoj · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-25639 | Medium | 5.9 | — | 2024-07-08 | Khoj is an application that creates personal AI agents. |
Kibokolabs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-2640 | Medium | 5.4 | — | 2024-07-12 | The Watu Quiz WordPress plugin before 3.4.1.2 does not sanitise and escape some of its settings, which could allow users such as authors (if they've been authorized by admins) to perform Stored Cross-Site Scripting attacks even when the un… |
Knime · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6598 | Medium | 6.5 | — | 2024-07-09 | A denial-of-service attack is possible through the execution functionality of KNIME Business Hub 1.10.0 and 1.10.1. |
Leap13 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6495 | Medium | 6.4 | — | 2024-07-12 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Animated Text widget in all versions up to, and including, 4.10.36 due to insufficient input sanitization and output escapi… |
Limesurvey · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39063 | High | 8.8 | — | 2024-07-09 | Lime Survey <= 6.5.12 is vulnerable to Cross Site Request Forgery (CSRF). |
Linksys · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40750 | Medium | 5.3 | — | 2024-07-09 | Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi passwords over the public Internet during app-based installation. |
M_uysl · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6625 | Medium | 5.5 | — | 2024-07-12 | The WP Total Branding – Complete branding solution for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2 due to insufficient input sanitization and outp… |
Magazine3 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6334 | Medium | 6.1 | — | 2024-07-09 | The Easy Table of Contents WordPress plugin before 2.0.67.1 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disa… |
Magiclen · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-21524 | High | 8.2 | — | 2024-07-10 | All versions of the package node-stringbuilder are vulnerable to Out-of-bounds Read due to incorrect memory length calculation, by calling ToBuffer, ToString, or CharAt on a StringBuilder object with a non-empty string value input. |
Mardojai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5937 | Medium | 6.4 | — | 2024-07-09 | The Simple Alert Boxes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Alert shortcode in all versions up to, and including, 1.4.0 due to insufficient input sanitization and output escaping on user suppli… |
Mark8barnes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5444 | Medium | 5.4 | — | 2024-07-11 | The Bible Text WordPress plugin through 0.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above… |
Matteoenna · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-2430 | Medium | 5.4 | — | 2024-07-12 | The Website Content in Page or Post WordPress plugin before 2024.04.09 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the… |
Mhuertos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2016-15039 | Medium | 6.3 | — | 2024-07-11 | A vulnerability classified as critical was found in mhuertos phpLDAPadmin up to 665dbc2690ebeb5392d38f1fece0a654225a0b38. |
Milan Petrovic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38709 | Medium | 5.3 | — | 2024-07-12 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Milan Petrovic GD Rating System allows PHP Local File Inclusion.This issue affects GD Rating System: from n/a through 3.6. |
Mommyheather · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39118 | Medium | 5.5 | — | 2024-07-09 | Mommy Heather Advanced Backups up to v3.5.3 allows attackers to write arbitrary files via restoring a crafted back up. |
Monsterinsights · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5902 | High | 7.2 | — | 2024-07-12 | The User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the name parameter in all versions up to, and including, 1.0.15 due to insuffici… |
Naver · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40618 | Critical | 9.6 | — | 2024-07-11 | Whale browser before 3.26.244.21 allows an attacker to execute malicious JavaScript due to improper sanitization when processing a built-in extension. |
Netapp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-21993 | Medium | 5.7 | — | 2024-07-09 | SnapCenter versions prior to 5.0p1 are susceptible to a vulnerability which could allow an authenticated attacker to discover plaintext credentials. |
Netgear · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6646 | Medium | 5.3 | — | 2024-07-10 | A vulnerability was found in Netgear WN604 up to 20240710. |
Neutrinolabs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39917 | High | 7.2 | — | 2024-07-12 | xrdp is an open source RDP server. |
Nhibernate · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39677 | Medium | 5.9 | — | 2024-07-08 | NHibernate is an object-relational mapper for the .NET framework. |
Nikolaystrikhar · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6313 | Critical | 9.8 | — | 2024-07-09 | The Gutenberg Forms plugin for WordPress is vulnerable to arbitrary file uploads due to the users can specify the allowed file types in the 'upload' function in versions up to, and including, 2.2.9. |
Ninja Team · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37504 | Medium | 5.3 | — | 2024-07-10 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ninja Team FileBird Document Library.This issue affects FileBird Document Library: from n/a through 2.0.6. |
Ninjaforms · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37934 | Medium | 5.4 | — | 2024-07-09 | Improper Control of Generation of Code ('Code Injection') vulnerability in Saturday Drive Ninja Forms allows Code Injection.This issue affects Ninja Forms: from n/a through 3.8.4. |
Nuvoton · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38433 | Medium | 6.7 | — | 2024-07-11 | Nuvoton - CWE-305: Authentication Bypass by Primary Weakness An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock reference code can modify the u-boot image header on flash parsed by… |
Openclarity · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39909 | Medium | 6.5 | — | 2024-07-12 | KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems. |
Paid Memberships Pro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37486 | High | 7.6 | — | 2024-07-09 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Paid Memberships Pro.This issue affects Paid Memberships Pro: from n/a through 3.0.5. |
Parorrey · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6624 | Critical | 9.8 | — | 2024-07-11 | The JSON API User plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.9.3. |
Patreon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37430 | Medium | 5.3 | — | 2024-07-09 | Authentication Bypass by Spoofing vulnerability in patreon Patreon WordPress patreon-connect.This issue affects Patreon WordPress: from n/a through <= 1.9.0. |
Pauple · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37498 | Medium | 5.3 | — | 2024-07-10 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pauple Table & Contact Form 7 Database – Tablesome.This issue affects Table & Contact Form 7 Database – Tablesome: from n/a through 1.0.33. |
Payflex · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-0619 | Medium | 5.3 | — | 2024-07-11 | The Payflex Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the payment_callback() function in all versions up to, and including, 2.5.0. |
Payplus Ltd · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37564 | High | 8.5 | — | 2024-07-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PayPlus LTD PayPlus Payment Gateway.This issue affects PayPlus Payment Gateway: from n/a through 7.0.7. |
Pickplugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3608 | Medium | 5.3 | — | 2024-07-09 | The Product Designer plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the product_designer_ajax_delete_attach_id() function in all versions up to, and including, 1.0.33. |
Pjgalbraith · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6161 | High | 8.8 | — | 2024-07-09 | The Default Thumbnail Plus plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'get_cache_image' function in all versions up to, and including, 1.0.2.3. |
Plugin-devs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4667 | Medium | 6.4 | — | 2024-07-09 | The Blog, Posts and Category Filter for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Post and Category Filter widget in all versions up to, and including, 1.0.3 due to insufficient input sanitization… |
Pluginsware · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37501 | High | 8.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in PluginsWare Advanced Classifieds & Directory Pro allows Path Traversal.This issue affects Advanced Classifieds & Directory Pro: from n/a throug… |
Praveen-rajan · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6309 | High | 8.8 | — | 2024-07-09 | The Attachment File Icons (AF Icons) plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.3. |
Privatebin · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39899 | Medium | 5.3 | — | 2024-07-09 | PrivateBin is an online pastebin where the server has zero knowledge of pasted data. |
Progress Software Corporation · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4882 | — | — | — | 2024-07-08 | The user may be redirected to an arbitrary site in Sitefinity 15.1.8321.0 and previous versions. |
Project-zot · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39897 | Medium | 4.3 | — | 2024-07-09 | zot is an OCI image registry. |
Quantumcloud · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5811 | Medium | 5.4 | — | 2024-07-12 | The Simple Video Directory WordPress plugin before 1.4.4 does not sanitise and escape some of its settings, which could allow contributors and higher to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability i… |
Radiustheme · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37520 | Medium | 6.5 | — | 2024-07-09 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor… |
Rails_admin_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39308 | Medium | 5.4 | — | 2024-07-08 | RailsAdmin is a Rails engine that provides an interface for managing data. |
Randombit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-34702 | Medium | 5.3 | — | 2024-07-08 | Botan is a C++ cryptography library. |
Realmag777 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38700 | Medium | 6.5 | — | 2024-07-12 | Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in realmag777 WPCS allows Code Injection.This issue affects WPCS: from n/a through 1.2.0.3. |
Realtyna · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38736 | Critical | 9.1 | — | 2024-07-12 | Unrestricted Upload of File with Dangerous Type vulnerability in Realtyna Realtyna Organic IDX plugin allows Code Injection.This issue affects Realtyna Organic IDX plugin: from n/a through 4.14.13. |
Ricoh Company, Ltd. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39927 | High | 8.2 | — | 2024-07-10 | Out-of-bounds write vulnerability exists in Ricoh MFPs and printers. |
Rmac0001 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6314 | Critical | 9.8 | — | 2024-07-09 | The IQ Testimonials plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'process_image_upload' function in versions up to, and including, 2.2.7. |
Rocket.chat · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37405 | Medium | 6.5 | — | 2024-07-12 | Livechat messages can be leaked by combining two NoSQL injections affecting livechat:loginByToken (pre-authentication) and livechat:loadHistory. |
Saleswonder Team: Tobias · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37544 | Medium | 4.3 | — | 2024-07-12 | Missing Authorization vulnerability in Saleswonder Team: Tobias Get Better Reviews for WooCommerce more-better-reviews-for-woocommerce.This issue affects Get Better Reviews for WooCommerce: from n/a through <= 4.0.6. |
Seopress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5488 | Critical | 9.8 | — | 2024-07-09 | The SEOPress WordPress plugin before 7.9 does not properly protect some of its REST API routes, which combined with another Object Injection vulnerability can allow unauthenticated attackers to unserialize malicious gadget chains, comprom… |
Seraphinite Solutions · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37940 | High | 7.4 | — | 2024-07-12 | Cross-Site Request Forgery (CSRF) vulnerability in Seraphinite Solutions Seraphinite Accelerator (Full, premium).This issue affects Seraphinite Accelerator (Full, premium): from n/a through 2.21.13. |
Servit Software Solutions · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37205 | Medium | 5.3 | — | 2024-07-10 | Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4. |
Silabs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-41093 | Low | 3.1 | — | 2024-07-12 | Use After Free vulnerability in Silicon Labs Bluetooth SDK on 32 bit, ARM may allow an attacker with precise timing capabilities to intercept a small number of packets intended for a recipient that has left the network.This issue affects S… |
Sirv · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6392 | Medium | 5.4 | — | 2024-07-11 | The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to unauthorized plugin settings modification due to missing capability checks on the plugin functions in all versions up to, and including, 7.2.7. |
Slui · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5855 | Medium | 4.3 | — | 2024-07-09 | The Media Hygiene: Remove or Delete Unused Images and More! |
Smartypants · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37224 | High | 7.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in smartypants SP Project & Document Manager.This issue affects SP Project & Document Manager: from n/a through 4.71. |
Smashballoon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6256 | Medium | 6.4 | — | 2024-07-11 | The Feeds for YouTube (YouTube video, channel, and gallery plugin) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'youtube-feed' shortcode in all versions up to, and including, 2.2.1 due to insufficient… |
Smub · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6210 | Medium | 5.3 | — | 2024-07-11 | The Duplicator plugin for WordPress is vulnerable to information exposure in all versions up to, and including, 1.5.9. |
Sonaar · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5664 | Medium | 6.4 | — | 2024-07-10 | The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute within the plugin's sonaar_audioplayer shortcode in all versions up to, and incl… |
Spreadsheetconverter · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38734 | Critical | 9.1 | — | 2024-07-12 | Unrestricted Upload of File with Dangerous Type vulnerability in SpreadsheetConverter Import Spreadsheets from Microsoft Excel allows Code Injection.This issue affects Import Spreadsheets from Microsoft Excel: from n/a through 10.1.4. |
Spring By Vmware Tanzu · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-22271 | High | 8.2 | — | 2024-07-09 | In Spring Cloud Function framework, versions 4.1.x prior to 4.1.2, 4.0.x prior to 4.0.8 an application is vulnerable to a DOS attack when attempting to compose functions with non-existing functions. |
Squelch · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5946 | Medium | 6.4 | — | 2024-07-09 | The Squelch Tabs and Accordions Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tab’ shortcode in all versions up to, and including, 0.4.8 due to insufficient input sanitization and output escaping. |
Standalonetech · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6353 | High | 8.8 | — | 2024-07-12 | The Wallet for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'search[value]' parameter in all versions up to, and including, 1.5.4 due to insufficient escaping on the user supplied parameter and lack of sufficient… |
Stellarwp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5648 | Medium | 5.4 | — | 2024-07-09 | The LearnDash LMS – Reports plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions (i.e. |
Studiopress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3563 | Medium | 6.4 | — | 2024-07-09 | The Genesis Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Sharing block in all versions up to, and including, 3.1.3 due to insufficient input sanitization and output escaping on user supplied att… |
Stylemixthemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37090 | High | 8.5 | — | 2024-07-09 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes Masterstudy Elementor Widgets, StylemixThemes Consulting Elementor Widgets.This issue affects Masterstudy Elementor Widget… |
Swiftideas · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-2696 | Medium | 4.8 | — | 2024-07-12 | The socialdriver-framework WordPress plugin before 2024.04.30 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_h… |
Themeenergy · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37952 | High | 8.8 | — | 2024-07-09 | Improper Privilege Management vulnerability in themeenergy BookYourTravel allows Privilege Escalation.This issue affects BookYourTravel: from n/a through 8.18.17. |
Themewinter · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37513 | High | 8.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Themewinter WPCafe allows Path Traversal.This issue affects WPCafe: from n/a through 2.2.27. |
Timersys · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6555 | Medium | 5.3 | — | 2024-07-12 | The WP Popups – WordPress Popup builder plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.2.0.1. |
Torchbox · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39317 | Medium | 6.5 | — | 2024-07-11 | Wagtail is an open source content management system built on Django. |
Tranbinhcse · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5881 | Medium | 6.4 | — | 2024-07-09 | The Webico Slider Flatsome Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wbc_image shortcode in all versions up to, and including, 2.0.1 due to insufficient input sanitization and output escaping… |
Trustedlogin · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37270 | Medium | 5.3 | — | 2024-07-10 | Insertion of Sensitive Information into Log File vulnerability in TrustedLogin TrustedLogin Vendor.This issue affects TrustedLogin Vendor: from n/a before 1.1.1. |
Tyxla · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6550 | Medium | 5.3 | — | 2024-07-10 | The Gravity Forms: Multiple Form Instances plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.1.1. |
Ubiquiti · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-34786 | Medium | 4.8 | — | 2024-07-09 | UniFi iOS app 10.15.0 introduces a misconfiguration on 2nd Generation UniFi Access Points configured as standalone (not using UniFi Network Application) that could cause the SSID name to change and/or the WiFi Password to be removed on the… |
Unattributed · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-3285 | High | 7.7 | — | 2024-07-09 | A BOLA vulnerability in POST /appointments allows a low privileged user to create an appointment for any user in the system (including admin). |
Unknown · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4753 | Medium | 4.8 | — | 2024-07-12 | The WP Secure Maintenance WordPress plugin before 1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capa… |
Vcita · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37499 | Medium | 6.5 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in vCita Online Booking & Scheduling Calendar for WordPress by vcita allows Path Traversal.This issue affects Online Booking & Scheduling Calendar… |
Vercel · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39693 | High | 7.5 | — | 2024-07-10 | Next.js is a React framework. |
Vmware · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-22280 | High | 8.5 | — | 2024-07-11 | VMware Aria Automation does not apply correct input validation which allows for SQL-injection in the product. An authenticated malicious user could enter specially crafted SQL queries and perform unauthorised read/write operations in the d… |
Vnotex · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39904 | High | 8.8 | — | 2024-07-11 | VNote is a note-taking platform. |
Volthemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37939 | Medium | 4.3 | — | 2024-07-12 | Cross-Site Request Forgery (CSRF) vulnerability in VolThemes Patricia Lite.This issue affects Patricia Lite: from n/a through 1.2.3. |
Watchguard · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5974 | High | 7.2 | — | 2024-07-09 | A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall. |
Webnus · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5441 | High | 8.8 | — | 2024-07-09 | The Modern Events Calendar plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_featured_image function in all versions up to, and including, 7.11.0. |
Wedevs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6666 | High | 8.8 | — | 2024-07-11 | The WP ERP plugin for WordPress is vulnerable to SQL Injection via the ‘vendor_id’ and 'status' parameter in all versions up to, and including, 1.13.0 due to insufficient escaping on the user supplied parameter and lack of sufficient prepa… |
Whisperfish · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39697 | High | 8.6 | — | 2024-07-09 | phonenumber is a library for parsing, formatting and validating international phone numbers. |
Widgetti · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39903 | High | 8.6 | — | 2024-07-12 | Solara is a pure Python, React-style framework for scaling Jupyter and web apps. |
Woobewoo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6365 | Critical | 9.8 | — | 2024-07-09 | The Product Table by WBW plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.0.1 via the 'saveCustomTitle' function. |
Wp2speed · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5810 | Medium | 5.3 | — | 2024-07-09 | The WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0.1. |
Wpbits · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4862 | Medium | 6.4 | — | 2024-07-09 | The WPBITS Addons For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 1.5 due to insufficient input sanitization and output escaping on user… |
Wpdirectorykit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37253 | Low | 2.7 | — | 2024-07-09 | Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in WpDirectoryKit WP Directory Kit allows Code Injection.This issue affects WP Directory Kit: from n/a through 1.3.6. |
Wpjohnny, Zeroneit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-35773 | High | 7.1 | — | 2024-07-12 | Cross-Site Request Forgery (CSRF) vulnerability in WPJohnny, zerOneIT Comment Reply Email allows Cross-Site Scripting (XSS).This issue affects Comment Reply Email: from n/a through 1.3. |
Wpkube · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3228 | Medium | 5.3 | — | 2024-07-09 | The Social Sharing Plugin – Kiwi plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.1.7 via the 'kiwi-nw-pinterest' class. |
Wppuzzle · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5856 | Medium | 4.3 | — | 2024-07-09 | The Comment Images Reloaded plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the cir_delete_image AJAX action in all versions up to, and including, 2.2.1. |
Wpvibes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5325 | High | 8.8 | — | 2024-07-12 | The Form Vibes plugin for WordPress is vulnerable to SQL Injection via the ‘fv_export_data’ parameter in all versions up to, and including, 1.4.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparati… |
Wpweb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37502 | Medium | 5.4 | — | 2024-07-09 | Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login woo-social-login.This issue affects WooCommerce Social Login: from n/a through <= 2.6.3. |
Wpzita · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37420 | Critical | 9.9 | — | 2024-07-09 | Unrestricted Upload of File with Dangerous Type vulnerability in WPZita Zita Elementor Site Library allows Upload a Web Shell to a Web Server.This issue affects Zita Elementor Site Library: from n/a through 1.6.1. |
Wpzoom · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37464 | Medium | 4.9 | — | 2024-07-09 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WPZOOM Beaver Builder Addons by WPZOOM allows Path Traversal.This issue affects Beaver Builder Addons by WPZOOM: from n/a through 1.3.5. |
Wukongopensource · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6645 | Medium | 6.3 | — | 2024-07-10 | A vulnerability was found in WuKongOpenSource Wukong_nocode up to 20230807. |
Zealousweb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37555 | Critical | 9.1 | — | 2024-07-09 | Unrestricted Upload of File with Dangerous Type vulnerability in ZealousWeb Generate PDF using Contact Form 7 generate-pdf-using-contact-form-7.This issue affects Generate PDF using Contact Form 7: from n/a through <= 4.1.2. |
Zmops · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6644 | Medium | 6.3 | — | 2024-07-10 | A vulnerability was found in zmops ArgusDBM up to 0.1.0. |
Zoho · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37225 | High | 8.5 | — | 2024-07-09 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Zoho Marketing Automation.This issue affects Zoho Marketing Automation: from n/a through 1.2.7. |
Zte · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-22062 | Medium | 6.3 | — | 2024-07-09 | There is a permissions and access control vulnerability in ZXCLOUD IRAI.An attacker can elevate non-administrator permissions to administrator permissions by modifying the configuration. |