Patch Tuesday — July 2024

2024-07-09 · 937 CVEs

CVEs published or modified the week of 2024-07-09, partitioned by vendor.

Microsoft (145 CVEs)

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38077Critical9.82024-07-09Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-38076Critical9.82024-07-09Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-38074Critical9.82024-07-09Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-38089Critical9.12024-07-09Microsoft Defender for IoT Elevation of Privilege Vulnerability
CVE-2024-21417High8.82024-07-10Windows Text Services Framework Elevation of Privilege Vulnerability
CVE-2024-38104High8.82024-07-09Windows Fax Service Remote Code Execution Vulnerability
CVE-2024-38092High8.82024-07-09Azure CycleCloud Elevation of Privilege Vulnerability
CVE-2024-38088High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-38087High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-38060High8.82024-07-09Windows Imaging Component Remote Code Execution Vulnerability
CVE-2024-38053High8.82024-07-09Windows Layer-2 Bridge Network Driver Remote Code Execution Vulnerability
CVE-2024-38021High8.82024-07-09Microsoft Outlook Remote Code Execution Vulnerability
CVE-2024-37973High8.82024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37336High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37334High8.82024-07-09Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability
CVE-2024-37333High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37332High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37331High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37330High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37329High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37328High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37327High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37326High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37324High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37323High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37322High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37321High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37320High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37319High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37318High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35272High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35271High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35256High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-30013High8.82024-07-09Windows MultiPoint Services Remote Code Execution Vulnerability
CVE-2024-28928High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-28899High8.82024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-21449High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21428High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21425High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21415High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21414High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21398High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21373High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21335High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21333High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21332High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21331High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21317High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21308High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21303High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-20701High8.82024-07-09SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37984High8.42024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-35264High8.12024-07-09.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2024-38011High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38010High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37989High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37988High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37987High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37986High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37981High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37978High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37977High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37975High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37974High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37972High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37971High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37970High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37969High8.02024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-20785High7.82024-07-09InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-20783High7.82024-07-09InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-20782High7.82024-07-09InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-20781High7.82024-07-09InDesign Desktop versions ID19.3, ID18.5.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-38100High7.82024-07-09Windows File Explorer Elevation of Privilege Vulnerability
CVE-2024-38085High7.82024-07-09Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-38080High7.8KEV2024-07-09Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2024-38079High7.82024-07-09Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-38070High7.82024-07-09Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability
CVE-2024-38066High7.82024-07-09Windows Win32k Elevation of Privilege Vulnerability
CVE-2024-38062High7.82024-07-09Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2024-38059High7.82024-07-09Win32k Elevation of Privilege Vulnerability
CVE-2024-38057High7.82024-07-09Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38054High7.82024-07-09Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38052High7.82024-07-09Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38051High7.82024-07-09Windows Graphics Component Remote Code Execution Vulnerability
CVE-2024-38050High7.82024-07-09Windows Workstation Service Elevation of Privilege Vulnerability
CVE-2024-38047High7.82024-07-09PowerShell Elevation of Privilege Vulnerability
CVE-2024-38043High7.82024-07-09PowerShell Elevation of Privilege Vulnerability
CVE-2024-38034High7.82024-07-09Windows Filtering Platform Elevation of Privilege Vulnerability
CVE-2024-35261High7.82024-07-09Azure Network Watcher VM Extension Elevation of Privilege Vulnerability
CVE-2024-30079High7.82024-07-09Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2024-4944High7.82024-07-09A local privilege escalation vlnerability in the WatchGuard Mobile VPN with SSL client on Windows enables a local user to execute arbitrary commands with elevated privileged.
CVE-2024-35267High7.62024-07-09Azure DevOps Server Spoofing Vulnerability
CVE-2024-35266High7.62024-07-09Azure DevOps Server Spoofing Vulnerability
CVE-2024-38112High7.5KEV2024-07-09Windows MSHTML Platform Spoofing Vulnerability
CVE-2024-38095High7.52024-07-09.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-38091High7.52024-07-09Microsoft WS-Discovery Denial of Service Vulnerability
CVE-2024-38078High7.52024-07-09Xbox Wireless Adapter Remote Code Execution Vulnerability
CVE-2024-38073High7.52024-07-09Windows Remote Desktop Licensing Service Denial of Service Vulnerability
CVE-2024-38072High7.52024-07-09Windows Remote Desktop Licensing Service Denial of Service Vulnerability
CVE-2024-38071High7.52024-07-09Windows Remote Desktop Licensing Service Denial of Service Vulnerability
CVE-2024-38068High7.52024-07-09Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability
CVE-2024-38067High7.52024-07-09Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability
CVE-2024-38064High7.52024-07-09Windows TCP/IP Information Disclosure Vulnerability
CVE-2024-38061High7.52024-07-09DCOM Remote Cross-Session Activation Elevation of Privilege Vulnerability
CVE-2024-38031High7.52024-07-09Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability
CVE-2024-38015High7.52024-07-09Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
CVE-2024-32987High7.52024-07-09Microsoft SharePoint Server Information Disclosure Vulnerability
CVE-2024-30105High7.52024-07-09.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-30098High7.52024-07-09Windows Cryptographic Services Security Feature Bypass Vulnerability
CVE-2024-38081High7.32024-07-09.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVE-2024-38033High7.32024-07-09PowerShell Elevation of Privilege Vulnerability
CVE-2024-30061High7.32024-07-09Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
CVE-2024-38094High7.2KEV2024-07-09Microsoft SharePoint Remote Code Execution Vulnerability
CVE-2024-38044High7.22024-07-09DHCP Server Service Remote Code Execution Vulnerability
CVE-2024-38028High7.22024-07-09Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
CVE-2024-38025High7.22024-07-09Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
CVE-2024-38024High7.22024-07-09Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2024-38023High7.22024-07-09Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2024-38019High7.22024-07-09Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
CVE-2024-38032High7.12024-07-09Microsoft Xbox Remote Code Execution Vulnerability
CVE-2024-30081High7.12024-07-09Windows NTLM Spoofing Vulnerability
CVE-2024-34123High7.02024-07-09Premiere Pro versions 23.6.5, 24.4.1 and earlier are affected by an Untrusted Search Path vulnerability that could lead to arbitrary code execution.
CVE-2024-6222High7.02024-07-09In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC messages.
CVE-2024-38069High7.02024-07-09Windows Enroll Engine Security Feature Bypass Vulnerability
CVE-2024-38022High7.02024-07-09Windows Image Acquisition Elevation of Privilege Vulnerability
CVE-2024-38065Medium6.82024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38058Medium6.82024-07-09BitLocker Security Feature Bypass Vulnerability
CVE-2024-26184Medium6.82024-07-09Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38013Medium6.72024-07-09Microsoft Windows Server Backup Elevation of Privilege Vulnerability
CVE-2024-38049Medium6.62024-07-09Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability
CVE-2024-38105Medium6.52024-07-09Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-38102Medium6.52024-07-09Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-38101Medium6.52024-07-09Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-38048Medium6.52024-07-09Windows Network Driver Interface Specification (NDIS) Denial of Service Vulnerability
CVE-2024-38030Medium6.52024-07-09Windows Themes Spoofing Vulnerability
CVE-2024-38027Medium6.52024-07-09Windows Line Printer Daemon Service Denial of Service Vulnerability
CVE-2024-38020Medium6.52024-07-09Microsoft Outlook Spoofing Vulnerability
CVE-2024-38086Medium6.42024-07-09Azure Kinect SDK Remote Code Execution Vulnerability
CVE-2024-38099Medium5.92024-07-09Windows Remote Desktop Licensing Service Denial of Service Vulnerability
CVE-2024-38056Medium5.52024-07-09Microsoft Windows Codecs Library Information Disclosure Vulnerability
CVE-2024-38055Medium5.52024-07-09Microsoft Windows Codecs Library Information Disclosure Vulnerability
CVE-2024-38041Medium5.52024-07-09Windows Kernel Information Disclosure Vulnerability
CVE-2024-38017Medium5.52024-07-09Microsoft Message Queuing Information Disclosure Vulnerability
CVE-2024-35270Medium5.32024-07-09Windows iSCSI Service Denial of Service Vulnerability
CVE-2024-30071Medium4.72024-07-09Windows Remote Access Connection Manager Information Disclosure Vulnerability

Other vendors (792 CVEs across 256 vendors)

Linux · 126 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-41003High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: bpf: Fix reg_set_min_max corruption of fake_reg Juan reported that after doing some changes to buzzer [0] and implementing a new fuzzing strategy guided by coverage, the…
CVE-2024-40996High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: bpf: Avoid splat in pskb_pull_reason syzkaller builds (CONFIG_DEBUG_NET=y) frequently trigger a debug hint in pskb_may_pull.
CVE-2024-40994High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: ptp: fix integer overflow in max_vclocks_store On 32bit systems, the "4 * max" multiply can overflow.
CVE-2024-40989High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Disassociate vcpus from redistributor region on teardown When tearing down a redistributor region, make sure we don't have any dangling pointer to that regio…
CVE-2024-40974High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Enforce hcall result buffer validity and size plpar_hcall(), plpar_hcall9(), and related functions expect callers to provide valid result buffers of cer…
CVE-2024-40958High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: netns: Make get_net_ns() handle zero refcount net Syzkaller hit a warning: refcount_t: addition on 0; use-after-free.
CVE-2024-40956High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list Use list_for_each_entry_safe() to allow iterating through the list and deleting the entry in the it…
CVE-2024-40954High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: net: do not leave a dangling sk pointer, when socket creation fails It is possible to trigger a use-after-free by: * attaching an fentry probe to __sock_release() and…
CVE-2024-40940High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5_lag_create_port_sel_table(), instead of previously cr…
CVE-2024-40939High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: Fix tainted pointer delete is case of region creation fail In case of region creation fail in ipc_devlink_create_region(), previously created regions de…
CVE-2024-40935High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: cachefiles: flush all requests after setting CACHEFILES_DEAD In ondemand mode, when the daemon is processing an open request, if the kernel flags the cache as CACHEFILES…
CVE-2024-40927High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: xhci: Handle TD clearing for multiple streams case When multiple streams are in use, multiple TDs might be in flight when an endpoint is stopped.
CVE-2024-40920High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix suspicious rcu usage in br_mst_set_state I converted br_mst_set_state to RCU to avoid a vlan use-after-free but forgot to change the vlan group der…
CVE-2024-40913High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: cachefiles: defer exposing anon_fd until after copy_to_user() succeeds After installing the anonymous fd, we can now see it in userland and close it.
CVE-2024-40909High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free in bpf_link_free() After commit 1a80dbcb2dba, bpf_link can be freed by link->ops->dealloc_deferred, but the code still tests and uses…
CVE-2024-40906High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardown_hca fails to execute during driver removal, mlx5 does not stop the health timer.
CVE-2024-40903High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps There could be a potential use-after-free case in tcpm_register_source_caps().
CVE-2024-40902High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it is printed out to the kernel log in hex format as a form of debugging.
CVE-2024-40901High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory There is a potential out-of-bounds access when using test_bit() on a single word.
CVE-2024-40900High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: cachefiles: remove requests from xarray during flushing requests Even with CACHEFILES_DEAD set, we can still read the requests, so in the following concurrency the reque…
CVE-2024-40899High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd() We got the following issue in a fuzz test of randomly issuing the restore command: =================…
CVE-2024-39510High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read() We got the following issue in a fuzz test of randomly issuing the restore command: ============…
CVE-2024-39502High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: ionic: fix use after netif_napi_del() When queues are started, netif_napi_add() and napi_enable() are called.
CVE-2024-39495High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: greybus: Fix use-after-free bug in gb_interface_release due to race condition.
CVE-2024-40978High7.12024-07-12In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix crash while reading debugfs attribute The qedi_dbg_do_not_recover_cmd_read() function invokes sprintf() directly on a __user pointer, which results into…
CVE-2024-40929High7.12024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids In some versions of cfg80211, the ssids poinet might be a valid one even though n_ssids is 0.
CVE-2024-39499High7.12024-07-12In the Linux kernel, the following vulnerability has been resolved: vmci: prevent speculation leaks by sanitizing event in event_deliver() Coverity spotted that event_msg is controlled by user-space, event_msg->event_data.event is passed…
CVE-2024-39487High7.12024-07-09In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() In function bond_option_arp_ip_targets_set(), if newval->string is an empty string, newval->string+1…
CVE-2024-39503High7.02024-07-12In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type Lion Ackermann reported that there is a race condition between namespace cleanup in ipse…
CVE-2024-39492High7.02024-07-10In the Linux kernel, the following vulnerability has been resolved: mailbox: mtk-cmdq: Fix pm_runtime_get_sync() warning in mbox shutdown The return value of pm_runtime_get_sync() in cmdq_mbox_shutdown() will return 1 when pm runtime sta…
CVE-2024-40918Medium6.32024-07-12In the Linux kernel, the following vulnerability has been resolved: parisc: Try to fix random segmentation faults in package builds PA-RISC systems with PA8800 and PA8900 processors have had problems with random segmentation faults for m…
CVE-2024-39490Medium6.22024-07-10In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix missing sk_buff release in seg6_input_core The seg6_input() function is responsible for adding the SRH into a packet, delegating the operation to the seg6_…
CVE-2024-41006Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: netrom: Fix a memory leak in nr_heartbeat_expiry() syzbot reported a memory leak in nr_create() [0].
CVE-2024-41004Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: tracing: Build event generation tests only as modules The kprobes and synth event generation test modules add events and lock (get a reference) those event file referenc…
CVE-2024-41002Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec - Fix memory leak for sec resource release The AIV is one of the SEC resources.
CVE-2024-41001Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: io_uring/sqpoll: work around a potential audit memory leak kmemleak complains that there's a memory leak related to connect handling: unreferenced object 0xffff0001093b…
CVE-2024-40999Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: net: ena: Add validation for completion descriptors consistency Validate that `first` flag is set only for the first descriptor in multi-buffer packets.
CVE-2024-40998Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() In the following concurrency we will access the uninitialized rs->lock: ext4_fill_super ex…
CVE-2024-40997Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate: fix memory leak on CPU EPP exit The cpudata memory from kzalloc() in amd_pstate_epp_cpu_init() is not freed in the analogous exit function, so fix t…
CVE-2024-40995Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() syzbot found hanging tasks waiting on rtnl_lock [1] A reproducer is available in the syzbot bug.
CVE-2024-40993Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix suspicious rcu_dereference_protected() When destroying all sets, we are either in pernet exit phase or are executing a "destroy all sets command" f…
CVE-2024-40992Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix responder length checking for UD request packets According to the IBA specification: If a UD request packet is detected with an invalid length, the request…
CVE-2024-40991Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma-glue: Fix of_k3_udma_glue_parse_chn_by_id() The of_k3_udma_glue_parse_chn_by_id() helper function erroneously invokes "of_node_put()" on the "udma…
CVE-2024-40990Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Add check for srq max_sge attribute max_sge attribute is passed by the user, and is inserted and used unchecked, so verify that the value doesn't exceed maxim…
CVE-2024-40988Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix UBSAN warning in kv_dpm.c Adds bounds check for sumo_vid_mapping_entry.
CVE-2024-40987Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix UBSAN warning in kv_dpm.c Adds bounds check for sumo_vid_mapping_entry.
CVE-2024-40986Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: dmaengine: xilinx: xdma: Fix data synchronisation in xdma_channel_isr() Requests the vchan lock before using xdma->stop_request.
CVE-2024-40985Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: net/tcp_ao: Don't leak ao_info on error-path It seems I introduced it together with TCP_AO_CMDF_AO_REQUIRED, on version 5 [1] of TCP-AO patches.
CVE-2024-40984Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs.
CVE-2024-40983Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: tipc: force a dst refcount before doing decryption As it says in commit 3bc07321ccc2 ("xfrm: Force a dst refcount before entering the xfrm type handlers"): "Crypto requ…
CVE-2024-40981Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: batman-adv: bypass empty buckets in batadv_purge_orig_ref() Many syzbot reports are pointing to soft lockups in batadv_purge_orig_ref() [1] Root cause is unknown, but w…
CVE-2024-40980Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drop_monitor: replace spin_lock by raw_spin_lock trace_drop_common() is called with preemption disabled, and it acquires a spin_lock.
CVE-2024-40979Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix kernel crash during resume Currently during resume, QMI target memory is not properly handled, resulting in kernel crash in case DMA remap is not suppo…
CVE-2024-40977Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery During chip recovery (e.g.
CVE-2024-40976Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/lima: mask irqs in timeout path before hard reset There is a race condition in which a rendering job might take just long enough to trigger the drm sched job timeout…
CVE-2024-40975Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: platform/x86: x86-android-tablets: Unregister devices in reverse order Not all subsystems support a device getting removed while there are still consumers of the device…
CVE-2024-40973Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: media: mtk-vcodec: potential null pointer deference in SCP The return value of devm_kzalloc() needs to be checked to avoid NULL pointer deference.
CVE-2024-40972Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ext4: do not create EA inode under buffer lock ext4_xattr_set_entry() creates new EA inodes while holding buffer lock on the external xattr block.
CVE-2024-40971Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: f2fs: remove clear SB_INLINECRYPT flag in default_options In f2fs_remount, SB_INLINECRYPT flag will be clear and re-set.
CVE-2024-40970Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: Avoid hw_desc array overrun in dw-axi-dmac I have a use case where nr_buffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel de…
CVE-2024-40969Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: f2fs: don't set RO when shutting down f2fs Shutdown does not check the error of thaw_super due to readonly, which causes a deadlock like below.
CVE-2024-40968Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: MIPS: Octeon: Add PCIe link status check The standard PCIe configuration read-write interface is used to access the configuration space of the peripheral PCIe devices of…
CVE-2024-40967Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: serial: imx: Introduce timeout when waiting on transmitter empty By waiting at most 1 second for USR2_TXDC to be set, we avoid a potential deadlock.
CVE-2024-40966Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: tty: add the option to have a tty reject a new ldisc ...
CVE-2024-40965Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: i2c: lpi2c: Avoid calling clk_get_rate during transfer Instead of repeatedly calling clk_get_rate for each transfer, lock the clock rate and cache the value.
CVE-2024-40964Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l41: Possible null pointer dereference in cs35l41_hda_unbind() The cs35l41_hda_unbind() function clears the hda_component entry matching it's index and th…
CVE-2024-40963Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: make sure CBR is correctly set It was discovered that some device have CBR address set to 0 causing kernel panic when arch_sync_dma_for_cpu_all is…
CVE-2024-40962Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he'…
CVE-2024-40961Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible NULL deref in fib6_nh_init() syzbot reminds us that in6_dev_get() can return NULL.
CVE-2024-40960Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible NULL dereference in rt6_probe() syzbot caught a NULL dereference in rt6_probe() [1] Bail out if __in6_dev_get() returns NULL.
CVE-2024-40959Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() ip6_dst_idev() can return NULL, xfrm6_get_saddr() must act accordingly.
CVE-2024-40957Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6 behaviors input_action_end_dx4() and input_action_end_dx6() are called NF_HOOK() for PREROUTING…
CVE-2024-40955Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ext4: fix slab-out-of-bounds in ext4_mb_find_good_group_avg_frag_lists() We can trigger a slab-out-of-bounds with the following commands: mkfs.ext4 -F /dev/$disk 10…
CVE-2024-40952Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix NULL pointer dereference in ocfs2_journal_dirty() bdev->bd_super has been removed and commit 8887b94d9322 change the usage from bdev->bd_super to b_assoc_map-…
CVE-2024-40951Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix NULL pointer dereference in ocfs2_abort_trigger() bdev->bd_super has been removed and commit 8887b94d9322 change the usage from bdev->bd_super to b_assoc_map-…
CVE-2024-40950Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: mm: huge_memory: fix misused mapping_large_folio_support() for anon folios When I did a large folios split test, a WARNING "[ 5059.122759][ T166] Cannot split file folio…
CVE-2024-40949Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: mm: shmem: fix getting incorrect lruvec when replacing a shmem folio When testing shmem swapin, I encountered the warning below on my machine.
CVE-2024-40948Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: mm/page_table_check: fix crash on ZONE_DEVICE Not all pages may apply to pgtable check.
CVE-2024-40947Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ima: Avoid blocking in RCU read-side critical section A panic happens in ima_match_policy: BUG: unable to handle kernel NULL pointer dereference at 0000000000000010 PGD…
CVE-2024-40945Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: iommu: Return right value in iommu_sva_bind_device() iommu_sva_bind_device() should return either a sva bond handle or an ERR_PTR value in error cases.
CVE-2024-40944Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Fix bug with call depth tracking The call to cc_platform_has() triggers a fault and system crash if call depth tracking is active because the GS segment has b…
CVE-2024-40942Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects The hwmp code use objects of type mesh_preq_queue, added to a list in ieee80211_if_mesh, to keep track of mpath…
CVE-2024-40941Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't read past the mfuart notifcation In case the firmware sends a notification that claims it has more data than it has, we will read past that was…
CVE-2024-40938Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: landlock: Fix d_parent walk The WARN_ON_ONCE() in collect_domain_accesses() can be triggered when trying to link a root mount point.
CVE-2024-40937Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: gve: Clear napi->skb before dev_kfree_skb_any() gve_rx_free_skb incorrectly leaves napi->skb referencing an skb after it is freed with dev_kfree_skb_any().
CVE-2024-40936Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix memregion leaks in devm_cxl_add_region() Move the mode verification to __create_region() before allocating the memregion to avoid the memregion leaks.
CVE-2024-40934Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() Fix a memory leak on logi_dj_recv_send_report() error path.
CVE-2024-40933Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: iio: temperature: mlx90635: Fix ERR_PTR dereference in mlx90635_probe() When devm_regmap_init_i2c() fails, regmap_ee could be error pointer, instead of checking for IS_E…
CVE-2024-40932Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/exynos/vidi: fix memory leak in .get_modes() The duplicated EDID is never freed.
CVE-2024-40931Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure snd_una is properly initialized on connect This is strictly related to commit fb7a0d334894 ("mptcp: ensure snd_nxt is properly initialized on connect").
CVE-2024-40930Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: validate HE operation element parsing Validate that the HE operation element has the correct length before parsing it.
CVE-2024-40928Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool() Clang static checker (scan-build) warning: net/ethtool/ioctl.c:line 2233, column 2 Called functi…
CVE-2024-40926Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: don't attempt to schedule hpd_work on headless cards If the card doesn't have display hardware, hpd_work and hpd_lock are left uninitialized which causes BU…
CVE-2024-40925Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: block: fix request.queuelist usage in flush Friedrich Weber reported a kernel crash problem and bisected to commit 81ada09cc25e ("blk-flush: reuse rq queuelist in flush…
CVE-2024-40924Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/i915/dpt: Make DPT object unshrinkable In some scenarios, the DPT object gets shrunk but the actual framebuffer did not and thus its still there on the DPT's vm->bou…
CVE-2024-40923Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: vmxnet3: disable rx data ring on dma allocation failure When vmxnet3_rq_create() fails to allocate memory for rq->data_ring.base, the subsequent call to vmxnet3_rq_destr…
CVE-2024-40922Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: io_uring/rsrc: don't lock while !TASK_RUNNING There is a report of io_rsrc_ref_quiesce() locking a mutex while not TASK_RUNNING, which is due to forgetting restoring the…
CVE-2024-40921Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state Pass the already obtained vlan group pointer to br_mst_vlan_set_state() instead of dereferencing it a…
CVE-2024-40919Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() In case of token is released due to token->state == BNXT_HWRM_DEFERRED, released…
CVE-2024-40917Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: memblock: make memblock_set_node() also warn about use of MAX_NUMNODES On an (old) x86 system with SRAT just covering space above 4Gb: ACPI: SRAT: Node 0 PXM 0 [mem…
CVE-2024-40916Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found When reading EDID fails and driver reports no modes available, the DRM core adds an artificia…
CVE-2024-40915Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: riscv: rewrite __kernel_map_pages() to fix sleeping in invalid context __kernel_map_pages() is a debug function which clears the valid bit in page table entry for deallo…
CVE-2024-40914Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: don't unpoison huge_zero_folio When I did memory failure tests recently, below panic occurs: kernel BUG at include/linux/mm.h:1135!
CVE-2024-40912Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() The ieee80211_sta_ps_deliver_wakeup() function takes sta->ps_lock to synchronizes with ieee80211_tx_h_u…
CVE-2024-40911Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211_get_station Wiphy should be locked before calling rdev_get_station() (see lockdep assert in ieee80211_get_station()).
CVE-2024-40910Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ax25: Fix refcount imbalance on inbound connections When releasing a socket in ax25_release(), we call netdev_put() to decrease the refcount on the associated ax.25 devi…
CVE-2024-40908Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: bpf: Set run context for rawtp test_run callback syzbot reported crash when rawtp program executed through the test_run interface calls bpf_get_attach_cookie helper or a…
CVE-2024-40907Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: ionic: fix kernel panic in XDP_TX action In the XDP_TX path, ionic driver sends a packet to the TX path with rx page and corresponding dma address.
CVE-2024-40904Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages The syzbot fuzzer found that the interrupt-URB completion callback in the cdc-wdm driver was taking…
CVE-2024-39509Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: HID: core: remove unnecessary WARN_ON() in implement() Syzkaller hit a warning [1] in a call to implement() when trying to write a value into a field of smaller size in…
CVE-2024-39507Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time…
CVE-2024-39506Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet In lio_vf_rep_copy_packet() pg_info->page is compared to a NULL value, but then it is uncondition…
CVE-2024-39505Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/komeda: check for error-valued pointer komeda_pipeline_get_state() may return an error-valued pointer, thus check the pointer for negative or null value before deref…
CVE-2024-39504Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner express…
CVE-2024-39498Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 [Why] Commit: - commit 5aa1dfcdf0a4 ("drm/mst: Refactor the flow for payload allocation/removement") ac…
CVE-2024-39497Medium5.52024-07-12In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) Lack of check for copy-on-write (COW) mapping in drm_gem_shmem_mmap allows users to call mmap with PROT_W…
CVE-2024-39493Medium5.52024-07-10In the Linux kernel, the following vulnerability has been resolved: crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak Using completion_done to determine whether the caller has gone away only works after a complete call.
CVE-2024-39491Medium5.52024-07-10In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l56: Fix lifetime of cs_dsp instance The cs_dsp instance is initialized in the driver probe() so it should be freed in the driver remove().
CVE-2024-39489Medium5.52024-07-10In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix memleak in seg6_hmac_init_algo seg6_hmac_init_algo returns without cleaning up the previous allocations if one fails, so it's going to leak all that memory…
CVE-2024-39488Medium5.52024-07-10In the Linux kernel, the following vulnerability has been resolved: arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY When CONFIG_DEBUG_BUGVERBOSE=n, we fail to add necessary padding bytes to bug_table entries, and as a result the l…
CVE-2024-41005Medium4.72024-07-12In the Linux kernel, the following vulnerability has been resolved: netpoll: Fix race condition in netpoll_owner_active KCSAN detected a race condition in netpoll: BUG: KCSAN: data-race in net_rx_action / netpoll_send_skb write (marke…
CVE-2024-40953Medium4.72024-07-12In the Linux kernel, the following vulnerability has been resolved: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() Use {READ,WRITE}_ONCE() to access kvm->last_boosted_vcpu to ensure the loads and stores are atomic.
CVE-2024-40943Medium4.72024-07-12In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix races between hole punching and AIO+DIO After commit "ocfs2: return real error code in ocfs2_dio_wr_get_block", fstests/generic/300 become from always failed…
CVE-2024-40905Medium4.72024-07-12In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible race in __fib6_drop_pcpu_from() syzbot found a race in __fib6_drop_pcpu_from() [1] If compiler reads more than once (*ppcpu_rt), second read could re…
CVE-2024-39508Medium4.72024-07-12In the Linux kernel, the following vulnerability has been resolved: io_uring/io-wq: Use set_bit() and test_bit() at worker->flags Utilize set_bit() and test_bit() on worker->flags within io_uring/io-wq to address potential data races.
CVE-2024-39500Medium4.72024-07-12In the Linux kernel, the following vulnerability has been resolved: sock_map: avoid race between sock_map_close and sk_psock_put sk_psock_get will return NULL if the refcount of psock has gone to 0, which will happen when the last call o…

N/a · 75 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40110Critical9.82024-07-12Sourcecodester Poultry Farm Management System v1.0 contains an Unauthenticated Remote Code Execution (RCE) vulnerability via the productimage parameter at /farm/product.php.
CVE-2024-36435Critical9.82024-07-11An issue was discovered on Supermicro BMC firmware in select X11, X12, H12, B12, X13, H13, and B13 motherboards (and CMM6 modules).
CVE-2024-25077Critical9.82024-07-10An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices.
CVE-2024-39071Critical9.82024-07-09Fujian Kelixun <=7.6.6.4391 is vulnerable to SQL Injection in send_event.php.
CVE-2023-48194Critical9.82024-07-09Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0.
CVE-2024-39171Critical9.82024-07-09Directory Travel in PHPVibe v11.0.46 due to incomplete blacklist checksums and directory checks, which can lead to code execution via writing specific statements to .htaccess and code to a file with a .png suffix.
CVE-2024-36526Critical9.82024-07-09ZKTeco ZKBio CVSecurity v6.1.1 was discovered to contain a hardcoded cryptographic key.
CVE-2024-30213High8.82024-07-12StoneFly Storage Concentrator (SC and SCVM) before 8.0.4.26 allows remote authenticated users to achieve Command Injection via a Ping URL, leading to remote code execution.
CVE-2024-40552High8.82024-07-12PublicCMS v4.0.202302.e was discovered to contain a remote commande execution (RCE) vulnerability via the cmdarray parameter at /site/ScriptComponent.java.
CVE-2024-40551High8.82024-07-12An arbitrary file upload vulnerability in the component /admin/cmsTemplate/doUpload of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-40550High8.82024-07-12An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlaceMetaData of Public CMS v.4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-40549High8.82024-07-12An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlace of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-40548High8.82024-07-12An arbitrary file upload vulnerability in the component /admin/cmsTemplate/save of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-40546High8.82024-07-12An arbitrary file upload vulnerability in the component /admin/cmsWebFile/save of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-40545High8.82024-07-12An arbitrary file upload vulnerability in the component /admin/cmsWebFile/doUpload of PublicCMS v4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-40544High8.82024-07-12PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the component /admin/#maintenance_sysTask/edit.
CVE-2024-40543High8.82024-07-12PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery (SSRF) via the component /admin/ueditor?action=catchimage.
CVE-2024-40522High8.82024-07-12There is a remote code execution vulnerability in SeaCMS 12.9.
CVE-2024-40521High8.82024-07-12SeaCMS 12.9 has a remote code execution vulnerability.
CVE-2024-40520High8.82024-07-12SeaCMS 12.9 has a remote code execution vulnerability.
CVE-2024-40519High8.82024-07-12SeaCMS 12.9 has a remote code execution vulnerability.
CVE-2024-40518High8.82024-07-12SeaCMS 12.9 has a remote code execution vulnerability.
CVE-2024-39340High8.82024-07-12The authentication system of Securepoint UTM mishandles OTP keys.
CVE-2023-50806High8.42024-07-09A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850 Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380 Exynos 13…
CVE-2024-21525High8.32024-07-10All versions of the package node-twain are vulnerable to Improper Check or Handling of Exceptional Conditions due to the length of the source data not being checked.
CVE-2024-29153High8.12024-07-09A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos…
CVE-2023-50807High8.12024-07-09A vulnerability was discovered in Samsung Wearable Processor and Modems with versions Exynos 9110, Exynos Modem 5123, Exynos Modem 5300 that allows an out-of-bounds write in the heap in 2G (no auth).
CVE-2023-50805High8.12024-07-09A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos…
CVE-2024-39069High7.82024-07-09An issue in ifood Order Manager v3.35.5 'Gestor de Peddios.exe' allows attackers to execute arbitrary code via a DLL hijacking attack.
CVE-2024-21526High7.52024-07-10All versions of the package speaker are vulnerable to Denial of Service (DoS) when providing unexpected input types to the channels property of the Speaker object makes it possible to reach an assert macro.
CVE-2024-21523High7.52024-07-10All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input types to several different functions.
CVE-2024-21522High7.52024-07-10All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is provided to the new OpusDecoder().decode or new OpusDecoder().decodeFloat functions it is not checked for negative values.
CVE-2024-21521High7.52024-07-10All versions of the package @discordjs/opus are vulnerable to Denial of Service (DoS) due to providing an input object with a property toString to several different functions.
CVE-2024-36676High7.52024-07-09Incorrect access control in BookStack before v24.05.1 allows attackers to confirm existing system users and perform targeted notification email DoS via public facing forms.
CVE-2024-25076Medium6.82024-07-10An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices.
CVE-2024-40412Medium6.82024-07-10Tenda AX12 v1.0 v22.03.01.46 contains a stack overflow in the deviceList parameter of the sub_42E410 function.
CVE-2024-27386Medium6.72024-07-09A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 related to no input validation check on tag_len for tx coming from userspace, which can lead to heap ov…
CVE-2024-27385Medium6.72024-07-09A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 related to no input validation check on tag_len for rx coming from userspace, which can lead to heap ov…
CVE-2024-31947Medium6.52024-07-12StoneFly Storage Concentrator (SC and SCVM) before 8.0.4.26 allows Directory Traversal by authenticated users.
CVE-2024-40547Medium6.52024-07-12PublicCMS v4.0.202302.e was discovered to contain an arbitrary file content replacement vulnerability via the component /admin/cmsTemplate/replace.
CVE-2024-40417Medium6.52024-07-10A vulnerability was found in Tenda AX1806 1.0.0.1.
CVE-2024-39181Medium6.52024-07-09Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to contain a buffer overflow via the ApCliSsid parameter in thegenerate_conf_router() function.
CVE-2022-29946Medium6.32024-07-11NATS.io NATS Server before 2.8.2 and Streaming Server before 0.24.6 could allow a remote attacker to bypass security restrictions, caused by the failure to enforce negative user permissions in one scenario.
CVE-2024-31957Medium6.22024-07-09A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where they lack a check for the validation of native handles, which can result in a DoS(Denial of Service) attack by unmapping an invalid length.
CVE-2024-38963Medium6.12024-07-09Nopcommerce 4.70.1 is vulnerable to Cross Site Scripting (XSS) via the combined "AddProductReview.Title" and "AddProductReview.ReviewText" parameter(s) (Reviews) when creating a new review.
CVE-2024-40742Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/add.
CVE-2024-40741Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/{id}/edit/.
CVE-2024-40740Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-feeds/{id}/edit/.
CVE-2024-40739Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-feeds/add.
CVE-2024-40738Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-ports/{id}/edit/.
CVE-2024-40737Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-ports/add.
CVE-2024-40736Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/add.
CVE-2024-40735Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/{id}/edit/.
CVE-2024-40734Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/add/.
CVE-2024-40733Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/{id}/edit/.
CVE-2024-40732Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/add/.
CVE-2024-40731Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/{id}/edit/.
CVE-2024-40730Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/interfaces/{id}/edit/.
CVE-2024-40729Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/interfaces/add/.
CVE-2024-40728Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/{id}/edit/.
CVE-2024-40727Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/add/.
CVE-2024-40726Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-ports/{id}/edit/.
CVE-2024-38972Medium6.12024-07-09A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-ports/add/.
CVE-2024-39203Medium6.12024-07-08A cross-site scripting (XSS) vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVE-2024-27363Medium6.02024-07-09A vulnerability was discovered in Samsung Mobile Processor Exynos 850, Exynos 9610, Exynos 980, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, and Exynos W930 where it does not properly check a pointer address, which can lead to a Inf…
CVE-2024-27360Medium6.02024-07-09A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, and Exynos W930 where they do not properly check length of the data, which can lead to a…
CVE-2024-37865Medium5.92024-07-09An issue in S3Browser v.11.4.5 and v.10.9.9 and fixed in v.11.5.7 allows a remote attacker to obtain sensitive information via the S3 compatible storage component.
CVE-2024-39031Medium5.42024-07-09In Silverpeas Core <= 6.3.5, in Mes Agendas, a user can create new events and add them to their calendar.
CVE-2024-38971Medium5.42024-07-09vaeThink 1.0.2 is vulnerable to stored Cross Site Scripting (XSS) in the system backend.
CVE-2024-28068Medium5.32024-07-09A vulnerability was discovered in SS in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, E…
CVE-2024-28067Medium5.32024-07-09A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle (MITM) attacker to downgrade the security mode of packets going to the victim, enabling the attacker to send messages to the victim in plaintext.
CVE-2024-27361Medium5.12024-07-09A vulnerability was discovered in Samsung Mobile Processor Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, and Exynos 2400 that involves a time-of-check to time-of-use (TOCTOU) race condition, which…
CVE-2024-38970Medium4.92024-07-09vaeThink 1.0.2 is vulnerable to Information Disclosure via the system backend,access management administrator function.
CVE-2024-6647Medium4.72024-07-10** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in Croogo up to 4.0.7.
CVE-2024-27362Medium4.42024-07-09A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330, Exynos 1380, and Exynos 2400 where they do not properly check the length of the data, which can lead to a Information disclosure.

Juniper · 45 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39565High8.82024-07-10An Improper Neutralization of Data within XPath Expressions ('XPath Injection') vulnerability in J-Web shipped with Juniper Networks Junos OS allows an unauthenticated, network-based attacker to execute remote commands on the target device…
CVE-2024-39524High7.82024-07-11An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th…
CVE-2024-39523High7.82024-07-11An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th…
CVE-2024-39522High7.82024-07-11An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th…
CVE-2024-39521High7.82024-07-11An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th…
CVE-2024-39520High7.82024-07-11An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of th…
CVE-2024-39552High7.52024-07-11An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows a network based, unauthenticated attacker to cause the RPD process to crash leading…
CVE-2024-39551High7.52024-07-11An Uncontrolled Resource Consumption vulnerability in the H.323 ALG (Application Layer Gateway) of  Juniper Networks Junos OS on SRX Series and MX Series with SPC3 and MS-MPC/MIC, allows an unauthenticated network-based attacker to send sp…
CVE-2024-39549High7.52024-07-11A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an attacker to send a malformed BGP Path attribute update which allocates memor…
CVE-2024-39548High7.52024-07-11An Uncontrolled Resource Consumption vulnerability in the aftmand process of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to consume memory resources, resulting in a Denial of Service (DoS) condition.
CVE-2024-39545High7.52024-07-11An Improper Check for Unusual or Exceptional Conditions vulnerability in the the IKE daemon (iked) of Juniper Networks Junos OS on SRX Series, MX Series with SPC3 and NFX350 allows allows an unauthenticated, network-based attacker sending…
CVE-2024-39542High7.52024-07-11An Improper Validation of Syntactic Correctness of Input vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series with MPC10/11 or LC9600, MX304, and Junos OS Evolved on ACX Series and PTX Series allows…
CVE-2024-39540High7.52024-07-11An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on SRX Series, and MX Series with SPC3 allows an unauthenticated, network-based attacker to cause a De…
CVE-2024-39531High7.52024-07-11An Improper Handling of Values vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a network-based, unauthenticated attacker to cause a Denial-of-Service (DoS).
CVE-2024-39530High7.52024-07-11An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management daemon (chassisd) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).
CVE-2024-39529High7.52024-07-11A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).
CVE-2024-39562High7.52024-07-10A Missing Release of Resource after Effective Lifetime vulnerability the xinetd process, responsible for spawning SSH daemon (sshd) instances, of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause a…
CVE-2024-39555High7.52024-07-10An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an attacker sending a specific malformed BGP update message to cause the session to…
CVE-2024-39518High7.52024-07-10A Heap-based Buffer Overflow vulnerability in the telemetry sensor process (sensord) of Juniper Networks Junos OS on MX240, MX480, MX960 platforms using MPC10E causes a steady increase in memory utilization, ultimately leading to a Denial…
CVE-2024-39546High7.32024-07-11A Missing Authorization vulnerability in the Socket Intercept (SI) command file interface of Juniper Networks Junos OS Evolved allows an authenticated, low-privilege local attacker to modify certain files, allowing the attacker to cause an…
CVE-2024-39512Medium6.62024-07-10An Improper Physical Access Control vulnerability in the console port control of Juniper Networks Junos OS Evolved allows an attacker with physical access to the device to get access to a user account.
CVE-2024-39553Medium6.52024-07-11An Exposure of Resource to Wrong Sphere vulnerability in the sampling service of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to send arbitrary data to the device, which leads msvcsd process to crash w…
CVE-2024-39550Medium6.52024-07-11A Missing Release of Memory after Effective Lifetime vulnerability in the rtlogd process of Juniper Networks Junos OS on MX Series with SPC3 allows an unauthenticated, adjacent attacker to trigger internal events cause ( which can be done…
CVE-2024-39543Medium6.52024-07-11A Buffer Copy without Checking Size of Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated, adjacent attacker to send specific RPKI-RTR packe…
CVE-2024-39541Medium6.52024-07-11An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS).
CVE-2024-39538Medium6.52024-07-11A Buffer Copy without Checking Size of Input vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a  Denial-of-Service (DoS)…
CVE-2024-39537Medium6.52024-07-11An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, network-based attacker to cause a limited information disclosure and av…
CVE-2024-39535Medium6.52024-07-11An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (…
CVE-2024-39519Medium6.52024-07-11An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service…
CVE-2024-39560Medium6.52024-07-10An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a logically adjacent downstream RSVP neighbor to cause kernel memory exhaustion, lea…
CVE-2024-39558Medium6.52024-07-10An Unchecked Return Value vulnerability in the Routing Protocol Daemon (rpd) on Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows a logically adjacent, unauthenticated attacker sending a specific PIM packet to cause rp…
CVE-2024-39557Medium6.52024-07-10An Uncontrolled Resource Consumption vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a memory leak, eventually exhausting all syste…
CVE-2024-39517Medium6.52024-07-10An Improper Check for Unusual or Exceptional Conditions vulnerability in the Layer 2 Address Learning Daemon (l2ald) on Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause Denial of Service…
CVE-2024-39514Medium6.52024-07-10An Improper Check or Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS).
CVE-2024-39556Medium6.42024-07-10A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks Junos OS Evolved may allow a local, low-privileged attacker with access to the CLI the ability to load a malicious certificate file, leading to a…
CVE-2024-39532Medium6.32024-07-11An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with high privileges to access sensitive information.
CVE-2024-39559Medium5.92024-07-10An Improper Check for Unusual or Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS Evolved may allow a network-based unauthenticated attacker to crash the device (vmcore) by sending a specific TCP packe…
CVE-2024-39554Medium5.92024-07-10A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated…
CVE-2024-39533Medium5.82024-07-11An Unimplemented or Unsupported Feature in the UI vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series allows an unauthenticated, network-based attacker to cause a minor integrity impact to downstream networks.If…
CVE-2024-39561Medium5.82024-07-10An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on SRX4600 and SRX5000 Series allows an attacker to send TCP packets with SYN/FIN or SYN/RST flags, bypas…
CVE-2024-39528Medium5.72024-07-11A Use After Free vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated, network-based attacker to cause a Denial of Service (DoS).On all Junos OS and Junos Evolved plat…
CVE-2024-39513Medium5.52024-07-10An Improper Input Validation vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved allows a local, low-privileged attacker to cause a Denial of Service (DoS).
CVE-2024-39511Medium5.52024-07-10An Improper Input Validation vulnerability in the 802.1X Authentication (dot1x) Daemon of Juniper Networks Junos OS allows a local, low-privileged attacker with access to the CLI to cause a Denial of Service (DoS).
CVE-2024-39539Medium5.32024-07-11A Missing Release of Memory after Effective Lifetime vulnerability in Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS).
CVE-2024-39536Medium5.32024-07-11A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon (ppmd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial-of-Service…

Google · 36 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-34722High8.82024-07-09In smp_proc_rand of smp_act.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a protocol.
CVE-2024-34726High7.82024-07-09In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code.
CVE-2024-34723High7.82024-07-09In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a logic error in the code.
CVE-2024-34720High7.82024-07-09In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible method to perform arbitrary code execution in any app zygote processes due to a logic error in the…
CVE-2024-31339High7.82024-07-09In multiple functions of StatsService.cpp, there is a possible memory corruption due to a use after free.
CVE-2024-31335High7.82024-07-09In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code.
CVE-2024-31334High7.82024-07-09In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code.
CVE-2024-31332High7.82024-07-09In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi connections due to a missing permission check.
CVE-2024-31326High7.82024-07-09In multiple locations, there is a possible way in which policy migration code will never be executed due to a logic error in the code.
CVE-2024-31325High7.82024-07-09In multiple locations, there is a possible way to reveal images across users data due to a logic error in the code.
CVE-2024-31323High7.82024-07-09In onCreate of multiple files, there is a possible way to trick the user into granting health permissions due to tapjacking.
CVE-2024-31322High7.82024-07-09In updateServicesLocked of AccessibilityManagerService.java, there is a possible way for an app to be hidden from the Setting while retaining Accessibility Service due to improper input validation.
CVE-2024-31320High7.82024-07-09In setSkipPrompt of AssociationRequest.java , there is a possible way to establish a companion device association without any confirmation due to CDM.
CVE-2024-31319High7.82024-07-09In updateNotificationChannelFromPrivilegedListener of NotificationManagerService.java, there is a possible cross-user data leak due to a confused deputy.
CVE-2024-31318High7.82024-07-09In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without user acceptance due to a missing permission check.
CVE-2024-31317High7.82024-07-09In multiple functions of ZygoteProcess.java, there is a possible way to achieve code execution as any app via WRITE_SECURE_SETTINGS due to unsafe deserialization.
CVE-2024-31316High7.82024-07-09In onResult of AccountManagerService.java, there is a possible way to perform an arbitrary background activity launch due to parcel mismatch.
CVE-2024-31315High7.82024-07-09In multiple functions of ManagedServices.java, there is a possible way to hide an app with notification access in the Device & app notifications settings due to improper input validation.
CVE-2024-31313High7.82024-07-09In availableToWriteBytes of MessageQueueBase.h, there is a possible out of bounds write due to an incorrect bounds check.
CVE-2024-31311High7.82024-07-09In increment_annotation_count of stats_event.c, there is a possible out of bounds write due to a missing bounds check.
CVE-2024-31310High7.82024-07-09In newServiceInfoLocked of AutofillManagerServiceImpl.java, there is a possible way to hide an enabled Autofill service app in the Autofill service settings due to improper input validation.
CVE-2024-23711High7.82024-07-09In DevmemXIntUnreserveRange of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code.
CVE-2024-23698High7.82024-07-09In RGXFWChangeOSidPriority of rgxfwutils.c, there is a possible arbitrary code execution due to a missing bounds check.
CVE-2024-23697High7.82024-07-09In RGXCreateHWRTData_aux of rgxta3d.c, there is a possible arbitrary code execution due to a use after free.
CVE-2024-23696High7.82024-07-09In RGXCreateZSBufferKM of rgxta3d.c, there is a possible arbitrary code execution due to a use after free.
CVE-2024-23695High7.82024-07-09In CacheOpPMRExec of cache_km.c, there is a possible out of bounds write due to an integer overflow.
CVE-2023-21114High7.82024-07-09In multiple locations, there is a possible permission bypass due to a confused deputy.
CVE-2023-21113High7.82024-07-09In multiple locations, there is a possible permission bypass due to a confused deputy.
CVE-2024-31331High7.32024-07-09In setMimeGroup of PackageManagerService.java, there is a possible way to hide the service from Settings due to a logic error in the code.
CVE-2024-31324High7.32024-07-09In hide of WindowState.java, there is a possible way to bypass tapjacking/overlay protection by launching the activity in portrait mode first and then rotating it to landscape mode.
CVE-2024-34725High7.02024-07-09In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition.
CVE-2024-34724High7.02024-07-09In _UnrefAndMaybeDestroy of pmr.c, there is a possible arbitrary code execution due to a race condition.
CVE-2024-31327High7.02024-07-09In multiple functions of MessageQueueBase.h, there is a possible out of bounds write due to a race condition.
CVE-2024-34721Medium5.52024-07-09In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation.
CVE-2024-31314Medium5.52024-07-09In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource exhaustion.
CVE-2024-31312Medium5.52024-07-09In multiple locations, there is a possible information leak due to a missing permission check.

Siemens · 34 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39872Critical9.62024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-39866High8.82024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-39865High8.82024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-39675High8.82024-07-09A vulnerability has been identified in RUGGEDCOM RMC30 (All versions < V4.3.10), RUGGEDCOM RMC30NC (All versions < V4.3.10), RUGGEDCOM RP110 (All versions < V4.3.10), RUGGEDCOM RP110NC (All versions < V4.3.10), RUGGEDCOM RS400 (All version…
CVE-2024-39571High8.82024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1).
CVE-2024-39570High8.82024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1).
CVE-2024-39568High7.82024-07-09A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1).
CVE-2024-39567High7.82024-07-09A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1).
CVE-2024-37997High7.82024-07-09A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (…
CVE-2024-33654High7.82024-07-09A vulnerability has been identified in Simcenter Femap (All versions < V2406).
CVE-2024-33653High7.82024-07-09A vulnerability has been identified in Simcenter Femap (All versions < V2406).
CVE-2024-32056High7.82024-07-09A vulnerability has been identified in Simcenter Femap (All versions < V2406).
CVE-2022-45147High7.82024-07-09A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP 7 V16 (All versions), SIMATIC STEP 7 V17 (All versions), SIMATIC STEP 7 V18 (All versions < V18 Update 2).
CVE-2024-37999High7.82024-07-08A vulnerability has been identified in Medicalis Workflow Orchestrator (All versions).
CVE-2024-39868High7.62024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-39867High7.62024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-39888High7.52024-07-09A vulnerability has been identified in Mendix Encryption (All versions >= V10.0.0 < V10.0.2).
CVE-2024-39874High7.52024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-39873High7.52024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2023-52237High7.52024-07-09A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801, RUGGEDCOM i801NC, RUGGEDCOM i802, RUGGEDCOM i802NC, RUGGEDCOM i803, RUGGEDCOM i803NC, RUGGEDCOM M2100, RUGGEDCOM M2100NC, RUGGEDCOM M2200, RUGGEDCOM M…
CVE-2024-39569Medium6.62024-07-09A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1).
CVE-2024-38278Medium6.62024-07-09A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.9.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.9.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.9.0), R…
CVE-2024-39869Medium6.52024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2023-32735Medium6.52024-07-09A vulnerability has been identified in SIMATIC STEP 7 Safety V16 (All versions < V16 Update 7), SIMATIC STEP 7 Safety V17 (All versions < V17 Update 7), SIMATIC STEP 7 Safety V18 (All versions < V18 Update 2), SIMATIC STEP 7 V16 (All versi…
CVE-2024-39871Medium6.32024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-39870Medium6.32024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2023-32737Medium6.32024-07-09A vulnerability has been identified in SIMATIC STEP 7 Safety V18 (All versions < V18 Update 2).
CVE-2024-38867Medium5.92024-07-09A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.64), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions < V9.64), SIPROTEC 5 6MD86 (CP200) (All versions), SIPROTEC 5 6MD86 (CP…
CVE-2024-30321Medium5.92024-07-09A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC05), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 5), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 2), SIMATIC W…
CVE-2023-52891Medium5.32024-07-09A vulnerability has been identified in SIMATIC Energy Manager Basic (All versions < V7.5), SIMATIC Energy Manager PRO (All versions < V7.5), SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions), SIMIT V10 (All versio…
CVE-2024-39875Medium4.32024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2023-52238Medium4.32024-07-09A vulnerability has been identified in RUGGEDCOM RST2228 (All versions < V5.9.0), RUGGEDCOM RST2228P (All versions < V5.9.0).
CVE-2024-39876Medium4.02024-07-09A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).
CVE-2024-37996Low3.32024-07-09A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (…

Level1 · 21 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2023-46685Critical9.82024-07-08A hard-coded password vulnerability exists in the telnetd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623.
CVE-2023-47677High8.82024-07-08A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2024-21778High7.22024-07-08A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50383High7.22024-07-08Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50382High7.22024-07-08Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50381High7.22024-07-08Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50330High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50244High7.22024-07-08Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50243High7.22024-07-08Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50240High7.22024-07-08Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-50239High7.22024-07-08Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-49867High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-49595High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-49593High7.22024-07-08Leftover debug code exists in the boa formSysCmd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623.
CVE-2023-49073High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-48270High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-47856High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa set_RadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-45742High7.22024-07-08An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-45215High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-41251High7.22024-07-08A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11.
CVE-2023-34435High7.22024-07-08A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11.

Mozilla · 16 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6611Critical9.82024-07-09A nested iframe, triggering a cross-site navigation, could send SameSite=Strict or Lax cookies.
CVE-2024-6602Critical9.82024-07-09A mismatch between allocator and deallocator could have led to memory corruption.
CVE-2024-6615High8.82024-07-09Memory safety bugs present in Firefox 127 and Thunderbird 127.
CVE-2024-6609High8.82024-07-09When almost out-of-memory an elliptic curve key which was never allocated could have been freed again.
CVE-2024-6607High8.82024-07-09It was possible to prevent a user from exiting pointerlock when pressing escape and to overlay customValidity notifications from a `&lt;select&gt;` element over certain permission prompts.
CVE-2024-6605High8.82024-07-09Firefox Android allowed immediate interaction with permission prompts.
CVE-2024-6606High8.22024-07-09Clipboard code failed to check the index on an array access.
CVE-2024-6604High7.52024-07-09Memory safety bugs present in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12.
CVE-2024-6603High7.42024-07-09In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption.
CVE-2024-6600Medium6.32024-07-09Due to large allocation checks in Angle for GLSL shaders being too lenient an out-of-bounds access could occur when allocating more than 8192 ints in private shader memory on macOS.
CVE-2024-6613Medium5.52024-07-09The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces.
CVE-2024-6612Medium5.32024-07-09CSP violations generated links in the console tab of the developer tools, pointing to the violating resource.
CVE-2024-6601Medium4.72024-07-09A race condition could lead to a cross-origin container obtaining permissions of the top-level origin.
CVE-2024-6614Medium4.32024-07-09The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces.
CVE-2024-6610Medium4.32024-07-09Form validation popups could capture escape key presses.
CVE-2024-6608Medium4.32024-07-09It was possible to move the cursor using pointerlock from an iframe.

Sap · 16 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39592High7.72024-07-09Elements of PDCE does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
CVE-2024-39593Medium6.92024-07-09SAP Landscape Management allows an authenticated user to read confidential data disclosed by the REST Provider Definition response.
CVE-2024-39594Medium6.12024-07-09SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user controlled inputs, resulting in Reflected Cross-Site Scripting (XSS) vulnerability.
CVE-2024-37174Medium6.12024-07-09Custom CSS support option in SAP CRM WebClient UI does not sufficiently encode user-controlled inputs resulting in Cross-Site Scripting vulnerability.
CVE-2024-37173Medium6.12024-07-09Due to insufficient input validation, SAP CRM WebClient UI allows an unauthenticated attacker to craft a URL link which embeds a malicious script.
CVE-2024-34685Medium6.12024-07-09Due to weak encoding of user-controlled input in SAP NetWeaver Knowledge Management XMLEditor which allows malicious scripts can be executed in the application, potentially leading to a Cross-Site Scripting (XSS) vulnerability.
CVE-2024-39595Medium5.42024-07-09SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user-controlled inputs, resulting in Stored Cross-Site Scripting (XSS) vulnerability.
CVE-2024-37172Medium5.42024-07-09SAP S/4HANA Finance (Advanced Payment Management) does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges.
CVE-2024-39600Medium5.02024-07-09Under certain conditions, the memory of SAP GUI for Windows contains the password used to log on to an SAP system, which might allow an attacker to get hold of the password and impersonate the affected user.
CVE-2024-37171Medium5.02024-07-09SAP Transportation Management (Collaboration Portal) allows an attacker with non-administrative privileges to send a crafted request from a vulnerable web application.
CVE-2024-34689Medium5.02024-07-09WebFlow Services of SAP Business Workflow allows an authenticated attacker to enumerate accessible HTTP endpoints in the internal network by specially crafting HTTP requests.
CVE-2024-39598Medium5.02024-07-09SAP CRM (WebClient UI Framework) allows an authenticated attacker to enumerate accessible HTTP endpoints in the internal network by specially crafting HTTP requests.
CVE-2024-39599Medium4.72024-07-09Due to a Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform, a developer can bypass the configured malware scanner API because of a programming error.
CVE-2024-37175Medium4.32024-07-09SAP CRM WebClient does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges.
CVE-2024-37180Medium4.12024-07-09Under certain conditions SAP NetWeaver Application Server for ABAP and ABAP Platform allows an attacker to access remote-enabled function module with no further authorization which would otherwise be restricted, the function can be used to…
CVE-2024-34692Low3.32024-07-09Due to missing verification of file type or content, SAP Enable Now allows an authenticated attacker to upload arbitrary files.

Easyappointments · 14 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2023-3287Critical9.92024-07-09A BOLA vulnerability in POST /admins allows a low privileged user to create a high privileged user (admin) in the system.
CVE-2023-38054Critical9.92024-07-09A BOLA vulnerability in GET, PUT, DELETE /customers/{customerId} allows a low privileged user to fetch, modify or delete a low privileged user (customer).
CVE-2023-38053Critical9.92024-07-09A BOLA vulnerability in GET, PUT, DELETE /settings/{settingName} allows a low privileged user to fetch, modify or delete the settings of any user (including admin).
CVE-2023-38052Critical9.92024-07-09A BOLA vulnerability in GET, PUT, DELETE /admins/{adminId} allows a low privileged user to fetch, modify or delete a high privileged user (admin).
CVE-2023-38051Critical9.92024-07-09A BOLA vulnerability in GET, PUT, DELETE /secretaries/{secretaryId} allows a low privileged user to fetch, modify or delete a low privileged user (secretary).
CVE-2023-38049Critical9.92024-07-09A BOLA vulnerability in GET, PUT, DELETE /appointments/{appointmentId} allows a low privileged user to fetch, modify or delete an appointment of any user (including admin).
CVE-2023-38048Critical9.92024-07-09A BOLA vulnerability in GET, PUT, DELETE /providers/{providerId} allows a low privileged user to fetch, modify or delete a privileged user (provider).
CVE-2023-38055Critical9.62024-07-09A BOLA vulnerability in GET, PUT, DELETE /services/{serviceId} allows a low privileged user to fetch, modify or delete the services of any user (including admin).
CVE-2023-38050Critical9.12024-07-09A BOLA vulnerability in GET, PUT, DELETE /webhooks/{webhookId} allows a low privileged user to fetch, modify or delete a webhook of any user (including admin).
CVE-2023-3288High8.52024-07-09A BOLA vulnerability in POST /providers allows a low privileged user to create a privileged user (provider) in the system.
CVE-2023-38047High8.52024-07-09A BOLA vulnerability in GET, PUT, DELETE /categories/{categoryId} allows a low privileged user to fetch, modify or delete the category of any user (including admin).
CVE-2023-3289High7.72024-07-09A BOLA vulnerability in POST /services allows a low privileged user to create a service for any user in the system (including admin).
CVE-2023-3286High7.72024-07-09A BOLA vulnerability in POST /secretaries allows a low privileged user to create a low privileged user (secretary) in the system.
CVE-2023-3290Medium5.02024-07-09A BOLA vulnerability in POST /customers allows a low privileged user to create a low privileged user (customer) in the system.

Ibm · 12 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39742High8.12024-07-08IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to bypass authentication under certain configurations due to a partial string comparison vulnerability.
CVE-2024-35154High7.22024-07-09IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has authorized access to the administrative console, to execute arbitrary code.
CVE-2024-38330High7.02024-07-08IBM System Management for i 7.2, 7.3, and 7.4 could allow a local user to gain elevated privileges due to an unqualified library program call.
CVE-2024-39743Medium5.92024-07-08IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 IBM MQ Container Developer Edition is vulnerable to denial of service caused by incorrect memory de-allocation.
CVE-2024-25023Medium5.52024-07-10IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 stores potentially sensitive information in log files that could be read by a local user.
CVE-2024-40690Medium5.42024-07-12IBM InfoSphere Server 11.7 is vulnerable to cross-site scripting.
CVE-2023-35006Medium5.42024-07-10IBM Security QRadar EDR 3.12 is vulnerable to HTML injection.
CVE-2023-33860Medium5.32024-07-10IBM Security QRadar EDR 3.12 does not set the secure attribute on authorization tokens or session cookies.
CVE-2023-33859Medium5.32024-07-10IBM Security QRadar EDR 3.12 could disclose sensitive information due to an observable login response discrepancy.
CVE-2024-37528Medium4.82024-07-08IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2, 23.0.1, and 23.0.2 is vulnerable to cross-site scripting.
CVE-2024-39723Medium4.62024-07-08IBM FlashSystem 5300 USB ports may be usable even if the port has been disabled by the administrator.
CVE-2024-31897Medium4.32024-07-08IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2, 23.0.1, and 23.0.2 vulnerable to server-side request forgery (SSRF).

Fortinet · 11 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-27784High8.82024-07-09Multiple Exposure of sensitive information to an unauthorized actor weaknesses [CWE-200] vulnerability in Fortinet FortiAIOps 2.0.0 may allow an authenticated, remote attacker to retrieve sensitive information from the API endpoint or log…
CVE-2024-23663High8.82024-07-09An improper access control in Fortinet FortiExtender 4.1.1 - 4.1.9, 4.2.0 - 4.2.6, 5.3.2, 7.0.0 - 7.0.4, 7.2.0 - 7.2.4 and 7.4.0 - 7.4.2 allows an attacker to create users with elevated privileges via a crafted HTTP request.
CVE-2024-27782High8.12024-07-09Multiple insufficient session expiration weaknesses [CWE-613] vulnerability in Fortinet FortiAIOps 2.0.0 may allow an attacker to re-use stolen old session tokens to perform unauthorized operations via crafted requests.
CVE-2024-27783High7.62024-07-09Multiple cross-site request forgery (CSRF) weaknesses [CWE-352] vulnerability in Fortinet FortiAIOps 2.0.0 may allow an unauthenticated remote attacker to perform arbitrary actions on behalf of an authenticated user via tricking the victim…
CVE-2023-50178High7.42024-07-09An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2.0 through 7.2.3, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions and 6.0 all versions may allow a remote and unauthenticated attacker…
CVE-2024-27785Medium5.42024-07-09An improper neutralization of formula elements in a CSV File [CWE-1236] vulnerability in Fortinet FortiAIOps 2.0.0 may allow a remote authenticated attacker to execute arbitrary commands on a client's workstation via poisoned CSV reports.
CVE-2023-50181Medium4.92024-07-09An improper access control vulnerability [CWE-284] in Fortinet FortiADC version 7.4.0 through 7.4.1 and before 7.2.4 allows a read only authenticated attacker to perform some write actions via crafted HTTP or HTTPS requests.
CVE-2024-33509Medium4.82024-07-09An improper certificate validation vulnerability [CWE-295] in FortiWeb 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions and 6.3 all versions may allow a remote and unauthenticated attacker in a Man-in-the-Middle position to decipher…
CVE-2023-50179Medium4.82024-07-09An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2 all versions, 7.1 all versions, 7.0 all versions may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication c…
CVE-2024-21759Medium4.32024-07-09An authorization bypass through user-controlled key in Fortinet FortiPortal version 7.2.0, and versions 7.0.0 through 7.0.6 allows attacker to view unauthorized resources via HTTP or HTTPS requests.
CVE-2024-26015Low3.42024-07-09An incorrect parsing of numbers with different radices vulnerability [CWE-1389] in FortiProxy version 7.4.3 and below, version 7.2.10 and below, version 7.0.17 and below and FortiOS version 7.4.3 and below, version 7.2.8 and below, version…

Citrix · 10 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6148High8.82024-07-10Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5
CVE-2024-6235High8.82024-07-10Sensitive information disclosure in NetScaler Console
CVE-2024-6677High7.82024-07-12Privilege escalation in uberAgent
CVE-2024-6286High7.82024-07-10Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
CVE-2024-6151High7.82024-07-10Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual Delivery Agent for Windows used by Citrix Virtual Apps and Desktops and Citrix DaaS
CVE-2024-6236High7.52024-07-10Denial of Service in NetScaler Console (formerly NetScaler ADM), NetScaler Agent, and NetScaler SDX
CVE-2024-5491High7.52024-07-10Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler
CVE-2024-6149Medium6.12024-07-10Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5
CVE-2024-5492Medium6.12024-07-10Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway
CVE-2024-6150Medium4.32024-07-10A non-admin user can cause short-term disruption in Target VM availability in Citrix Provisioning

Idccms · 10 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40332High8.82024-07-10idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/moneyRecord_deal.php?mudi=delRecord
CVE-2024-40331High8.82024-07-10idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/dbBakMySQL_deal.php?mudi=backup
CVE-2024-40334High8.82024-07-10idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/serverFile_deal.php?mudi=upFileDel&dataID=3
CVE-2024-40333High8.82024-07-10idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=del&dataID=2
CVE-2024-40329High8.82024-07-10idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=backup
CVE-2024-40036High8.82024-07-09idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=add&nohrefStr=close
CVE-2024-40328Medium6.32024-07-10idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/memberOnline_deal.php?mudi=del&dataType=&dataID=6
CVE-2024-40336Medium6.12024-07-10idccms v1.35 is vulnerable to Cross Site Scripting (XSS) within the 'Image Advertising Management.'
CVE-2024-40035Medium5.92024-07-09idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=add.
CVE-2024-40038Medium5.32024-07-09idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userScore_deal.php?mudi=rev

Red Hat · 6 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5971High7.52024-07-08A vulnerability was found in Undertow, where the chunked response hangs after the body was flushed.
CVE-2024-6409High7.02024-07-08A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd).
CVE-2024-6237Medium6.52024-07-09A flaw was found in the 389 Directory Server.
CVE-2023-39328Medium5.52024-07-09A vulnerability was found in OpenJPEG similar to CVE-2019-6988.
CVE-2024-3653Medium5.32024-07-08A vulnerability was found in Undertow.
CVE-2024-6501Low3.12024-07-09A flaw was found in NetworkManager.

Schneider Electric · 6 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6407Critical9.82024-07-11CWE-200: Information Exposure vulnerability exists that could cause disclosure of credentials when a specially crafted message is sent to the device.
CVE-2024-5681High7.82024-07-11CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL ca…
CVE-2024-2602High7.32024-07-11CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could result in remote code execution when an authenticated user executes a saved project file that has been tampered by a mal…
CVE-2024-5680High7.12024-07-11CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of-service when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver.
CVE-2024-5679High7.12024-07-11CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, or kernel memory leak when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver.
CVE-2024-6528Medium5.42024-07-11CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause a vulnerability leading to a cross-site scripting condition where attackers can have a victim’s browser run…

Gitlab · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6385Critical9.62024-07-11An issue was discovered in GitLab CE/EE affecting all versions starting from 15.8 prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2, which allows an attacker to trigger a pipeline as another user…
CVE-2024-2177Medium6.82024-07-09A Cross Window Forgery vulnerability exists within GitLab CE/EE affecting all versions from 16.3 prior to 16.11.5, 17.0 prior to 17.0.3, and 17.1 prior to 17.1.1.
CVE-2024-5257Medium4.92024-07-11An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Developer user with `admin_compliance_framework` custom role may have been able to modify the URL for a…
CVE-2024-5470Low3.82024-07-11An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Guest user with `admin_push_rules` permission may have been able to create project-level deploy tokens.
CVE-2024-2880Low2.72024-07-11An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2 in which a user with `admin_group_member` custom role permission…

Ifm · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-28747Critical9.82024-07-09An unauthenticated remote attacker can use the hard-coded credentials to access the SmartSPS devices with high privileges.
CVE-2024-28751Critical9.12024-07-09An high privileged remote attacker can enable telnet access that accepts hardcoded credentials.
CVE-2024-28750High7.22024-07-09A remote attacker with high privileges may use a deleting file function to inject OS commands.
CVE-2024-28749High7.22024-07-09A remote attacker with high privileges may use a writing file function to inject OS commands.
CVE-2024-28748High7.22024-07-09A remote attacker with high privileges may use a reading file function to inject OS commands.

Joomla · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-26279Medium6.12024-07-09The wrapper extensions do not correctly validate inputs, leading to XSS vectors.
CVE-2024-26278Medium6.12024-07-09The Custom Fields component not correctly filter inputs, leading to a XSS vector.
CVE-2024-21731Medium6.12024-07-09Improper handling of input could lead to an XSS vector in the StringHelper::truncate method.
CVE-2024-21729Medium6.12024-07-09Inadequate input validation leads to XSS vulnerabilities in the accessiblemedia field.
CVE-2024-21730Medium5.42024-07-09The fancyselect list field layout does not correctly escape inputs, leading to a self-XSS vector.

Openvpn · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-1305Critical9.82024-07-08tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming write operations which an attacker can use to overflow memory buffers, resulting in a bug check and potentially arbitrary code execution in…
CVE-2024-27903Critical9.82024-07-08OpenVPN plug-ins on Windows with OpenVPN 2.6.9 and earlier could be loaded from any directory, which allows an attacker to load an arbitrary plug-in which can be used to interact with the privileged OpenVPN interactive service.
CVE-2024-27459High7.82024-07-08The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack overflow which can be used to execute arbitrary code with more privileges.
CVE-2024-24974High7.52024-07-08The interactive service in OpenVPN 2.6.9 and earlier allows the OpenVPN service pipe to be accessed remotely, which allows a remote attacker to interact with the privileged OpenVPN interactive service.
CVE-2024-28882Medium4.32024-07-08OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session

Ping Identity · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-22377Medium5.32024-07-09The deploy directory in PingFederate runtime nodes is reachable to unauthorized users.
CVE-2024-21832Low3.52024-07-09A potential JSON injection attack vector exists in PingFederate REST API data stores using the POST method and a JSON request body.
CVE-2024-22477Low1.82024-07-09A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor.
CVE-2023-407022024-07-09PingOne MFA Integration Kit contains a vulnerability where the skipMFA action can be configured such that user authentication does not require the second factor authentication from the user's existing registered devices.
CVE-2023-403562024-07-09PingOne MFA Integration Kit contains a vulnerability related to the Prompt Users to Set Up MFA configuration.

Codermy · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40542Critical9.82024-07-12my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/role?offset.
CVE-2024-40541Critical9.82024-07-12my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/dept/build.
CVE-2024-40540Critical9.82024-07-12my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/dept.
CVE-2024-40539Critical9.82024-07-12my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/user.

Delta Electronics · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39883High8.82024-07-09Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer.
CVE-2024-39882High8.82024-07-09Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a read past the end of an allocated buffer.
CVE-2024-39881High8.82024-07-09Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a memory corruption condition.
CVE-2024-39880High7.82024-07-09Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer.

Directus · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39896High7.52024-07-08Directus is a real-time API and App dashboard for managing SQL database content.
CVE-2024-39895Medium6.52024-07-08Directus is a real-time API and App dashboard for managing SQL database content.
CVE-2024-39701Medium6.32024-07-08Directus is a real-time API and App dashboard for managing SQL database content.
CVE-2024-39699Medium5.02024-07-08Directus is a real-time API and App dashboard for managing SQL database content.

Djangoproject · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39614High7.52024-07-10An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14.
CVE-2024-38875High7.52024-07-10An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7.
CVE-2024-39329Medium5.32024-07-10An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14.
CVE-2024-39330Medium4.32024-07-10An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14.

Gallagher · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-22387Medium6.82024-07-11External Control of Critical State Data (CWE-642) in the Controller 6000 and Controller 7000 diagnostic web interface allows an authenticated user to modify device I/O connections leading to unexpected behavior that in some circumstances c…
CVE-2024-23317Medium6.32024-07-11External Control of File Name or Path (CWE-73) in the Controller 6000 and Controller 7000 allows an attacker with local access to the Controller to perform arbitrary code execution.
CVE-2024-23485Medium4.62024-07-11Improperly Preserved Integrity of Hardware Configuration State During a Power Save/Restore Operation (CWE-1304) in the Controller 6000 and 7000 can lead to secured door locks connected via Aperio Communication Hubs to momentarily allow fre…
CVE-2024-23194Low3.32024-07-11Improper output Neutralization for Logs (CWE-117) in the Command Centre API Diagnostics Endpoint could allow an attacker limited ability to modify Command Centre log files.

Longse Technology · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-56342024-07-09Longse model LBH30FE200W cameras, as well as products based on this device, make use of telnet passwords which follow a specific pattern.
CVE-2024-56332024-07-09Longse model LBH30FE200W cameras, as well as products based on this device, provide an unrestricted access for an attacker located in the same local network to an undocumented binary service CoolView on one of the ports.  An attacker with…
CVE-2024-56322024-07-09Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password.
CVE-2024-56312024-07-09Longse NVR (Network Video Recorder) model NVR3608PGE2W, as well as products based on this device, are transmitting user's login and password to a remote control service without using any encryption.

Oisf · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38536High7.52024-07-11Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
CVE-2024-38535High7.52024-07-11Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
CVE-2024-38534High7.52024-07-11Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
CVE-2024-37151Medium5.32024-07-11Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.

Palo Alto Networks · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5910Critical9.8KEV2024-07-10Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition.
CVE-2024-5913Medium6.12024-07-10An improper input validation vulnerability in Palo Alto Networks PAN-OS software enables an attacker with the ability to tamper with the physical file system to elevate privileges.
CVE-2024-5911Medium4.92024-07-10An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authenticated read-write administrator with access to the web interface to disrupt system processes and crash the Panorama.
CVE-2024-59122024-07-10An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device.

Unitecms · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6166High8.82024-07-09The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘addons_order’ parameter in all versions up to, and including, 1.5.112 due to insufficient escapi…
CVE-2024-6170Medium6.42024-07-09The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘email’ parameter in all versions up to, and including, 1.5.112 due to insufficient input sani…
CVE-2024-6169Medium6.42024-07-09The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘username’ parameter in all versions up to, and including, 1.5.112 due to insufficient input s…
CVE-2024-6171Medium5.32024-07-09The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to IP Address Spoofing in all versions up to, and including, 1.5.112 due to insufficient IP address validation and/or use of user-sup…

Webmin · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-36451High8.82024-07-10Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm module of Webmin prior to 2.003.
CVE-2024-36453Medium6.12024-07-10Cross-site scripting vulnerability exists in session_login.cgi of Webmin versions prior to 1.970 and Usermin versions prior to 1.820.
CVE-2024-36450Medium5.42024-07-10Cross-site scripting vulnerability exists in sysinfo.cgi of Webmin versions prior to 1.910.
CVE-2024-36452Low3.12024-07-10Cross-site request forgery vulnerability exists in ajaxterm module of Webmin versions prior to 2.003.

Witmy · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6681Medium6.32024-07-11A vulnerability, which was classified as critical, has been found in witmy my-springsecurity-plus up to 2024-07-04.
CVE-2024-6680Medium6.32024-07-11A vulnerability classified as critical was found in witmy my-springsecurity-plus up to 2024-07-04.
CVE-2024-6679Medium6.32024-07-11A vulnerability classified as critical has been found in witmy my-springsecurity-plus up to 2024-07-04.
CVE-2024-6676Medium6.32024-07-11A vulnerability has been found in witmy my-springsecurity-plus up to 2024-07-03 and classified as critical.

Adamsolymosi · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6024High8.82024-07-12The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when deleting groups or emails, which could allow attackers to make a logged in admin remove them via a CSRF attack
CVE-2024-6023High8.82024-07-12The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when adding emails, which could allow attackers to make a logged in admin perform such action via a CSRF attack
CVE-2024-6022High8.82024-07-12The ContentLock WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Automattic · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37424Critical9.92024-07-09Unrestricted Upload of File with Dangerous Type vulnerability in Automattic Newspack Blocks allows Upload a Web Shell to a Web Server.This issue affects Newspack Blocks: from n/a through 3.0.8.
CVE-2024-37115High7.52024-07-10Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Automattic Newspack Blocks.This issue affects Newspack Blocks: from n/a through 3.0.8.
CVE-2024-35777Low3.52024-07-09Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in Automattic WooCommerce allows Content Spoofing.This issue affects WooCommerce: from n/a through 8.9.2.

Checkmk · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-28828High8.82024-07-10Cross-Site request forgery in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL) could lead to 1-click compromize of the site.
CVE-2024-28827High8.82024-07-10Incorrect permissions on the Checkmk Windows Agent's data directory in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL) allows a local attacker to gain SYSTEM privileges.
CVE-2024-6163Medium5.32024-07-08Certain http endpoints of Checkmk in Checkmk < 2.3.0p10 < 2.2.0p31, < 2.1.0p46, <= 2.0.0p39 allows remote attacker to bypass authentication and access data

Cliengo · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5992Medium6.52024-07-09The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'update_chatbot_token' and 'update_chatbot_position' functions in all versions up to, and including, 3.0…
CVE-2024-5993Medium5.42024-07-09The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'update_session' function in all versions up to, and including, 3.0.2.
CVE-2024-37923Medium5.42024-07-09Cross-Site Request Forgery (CSRF) vulnerability in cliengo Cliengo – Chatbot cliengo allows Cross Site Request Forgery.This issue affects Cliengo – Chatbot: from n/a through <= 3.0.4.

Debian · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-41000High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: block/ioctl: prefer different overflow check Running syzkaller with the newly reintroduced signed integer overflow sanitizer shows this report: [ 62.982337] ---------…
CVE-2024-39496High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after-free due to race with dev replace While loading a zone's info during creation of a block group, we can race with a device replace operation a…
CVE-2024-39494High7.82024-07-12In the Linux kernel, the following vulnerability has been resolved: ima: Fix use-after-free on a dentry's dname.name ->d_name.name can change on rename and the earlier value can be freed; there are conditions sufficient to stabilize it (…

Decidim · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-32469High7.12024-07-10Decidim is a participatory democracy framework.
CVE-2024-27095Medium5.42024-07-10Decidim is a participatory democracy framework.
CVE-2024-27090Medium5.32024-07-10Decidim is a participatory democracy framework, written in Ruby on Rails, originally developed for the Barcelona City government online and offline participation website.

Dell · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38301Medium6.72024-07-10Dell Alienware Command Center, version 5.7.3.0 and prior, contains an improper access control vulnerability.
CVE-2023-32472Medium5.72024-07-10Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability.
CVE-2023-32467Medium5.72024-07-10Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability.

Gaizhenbiao · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6037Critical9.12024-07-10A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows an attacker to create arbitrary folders at any location on the server, including the root directory (C: dir).
CVE-2024-6036Critical9.12024-07-10A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to restart the server at will by sending a specific request to the `/queue/join?` endpoint with `"fn_index":66`.
CVE-2024-6035Medium6.12024-07-11A Stored Cross-Site Scripting (XSS) vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240410.

Glpi-project · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37148High8.12024-07-10GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing.
CVE-2024-37149High7.22024-07-10GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing.
CVE-2024-37147Medium4.32024-07-10GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing.

Idccms_project · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40039High8.82024-07-09idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=del
CVE-2024-40037High8.82024-07-09idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userScore_deal.php?mudi=del
CVE-2024-40034High8.82024-07-09idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=del

Membership Software · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37112Critical10.02024-07-09Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Membership Software WishList Member X.This issue affects WishList Member X: from n/a before 3.26.7.
CVE-2024-37113Critical9.82024-07-10Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Membership Software WishList Member X.This issue affects WishList Member X: from n/a before 3.26.7.
CVE-2024-37110High7.52024-07-10Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Membership Software WishList Member X.This issue affects WishList Member X: from n/a before 3.26.7.

Nodejs · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-22020Medium6.52024-07-09A security flaw in Node.js allows a bypass of network import restrictions.
CVE-2024-22018Low2.92024-07-10A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-read flag is used.
CVE-2024-38372Low2.02024-07-08Undici is an HTTP/1.1 client, written from scratch for Node.js.

Samsung · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-34603Medium4.02024-07-08Improper access control in Samsung Message prior to SMR Jul-2024 Release 1 allows local attackers to access location data.
CVE-2024-34602Low3.32024-07-08Use of implicit intent for sensitive communication in Samsung Messages prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
CVE-2024-326702024-07-10Exposure of Sensitive Information to an Unauthorized Actor in Samsung Galaxy SmartTag2 prior to 0.20.04 allows attackes to potentially identify the tag's location by scanning the BLE adversting.

Servicenow · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5217Critical9.8KEV2024-07-10ServiceNow has addressed an input validation vulnerability that was identified in the Washington DC, Vancouver, and earlier Now Platform releases.
CVE-2024-4879Critical9.8KEV2024-07-10ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and Washington DC Now Platform releases.
CVE-2024-5178Medium4.92024-07-10ServiceNow has addressed a sensitive file read vulnerability that was identified in the Washington DC, Vancouver, and Utah Now Platform releases.

Stitionai · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5549High8.12024-07-09A CORS misconfiguration in the stitionai/devika repository allows attackers to steal sensitive information such as logs, browser sessions, and settings containing private API keys from other services.
CVE-2024-6433High7.52024-07-10The application zips all the files in the folder specified by the user, which allows an attacker to read arbitrary files on the system by providing a crafted path.
CVE-2024-5711Medium6.12024-07-08A stored Cross-Site Scripting (XSS) vulnerability exists in the stitionai/devika chat feature, allowing attackers to inject malicious payloads into the chat input.

Adobe · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-34139High7.82024-07-09Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-34140Medium5.52024-07-09Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.

Advanced File Manager · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2023-7062High8.82024-07-10The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4.
CVE-2023-7061High8.82024-07-10The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 2.5.3.

Aimhubio · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6396Critical9.82024-07-12A vulnerability in the `_backup_run` function in aimhubio/aim version 3.19.3 allows remote attackers to overwrite any file on the host server and exfiltrate arbitrary data.
CVE-2024-6227High7.52024-07-08A vulnerability in aimhubio/aim version 3.19.3 allows an attacker to cause an infinite loop by configuring the remote tracking server to point at itself.

Anhvnit · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37933Critical9.32024-07-12Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in anhvnit Woocommerce OpenPos.This issue affects Woocommerce OpenPos: from n/a through 6.4.4.
CVE-2024-37932High8.62024-07-12Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in anhvnit Woocommerce OpenPos allows File Manipulation.This issue affects Woocommerce OpenPos: from n/a through 6.4.4.

Apache · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-36522Critical9.82024-07-12The default configuration of XSLTResourceStream.java is vulnerable to remote code execution via XSLT injection when processing input from an untrusted source without validation.
CVE-2024-37389Medium4.62024-07-08Apache NiFi 1.10.0 through 1.26.0 and 2.0.0-M1 through 2.0.0-M3 support a description field in the Parameter Context configuration that is vulnerable to cross-site scripting.

Aprokopenko · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6168Medium4.32024-07-09The Just Custom Fields plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.3.2.
CVE-2024-6167Medium4.32024-07-09The Just Custom Fields plugin for WordPress is vulnerable to unauthorized access of functionality due to a missing capability check on several AJAX functions in all versions up to, and including, 3.3.2.

Ays-pro · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6138Medium4.82024-07-11The Secure Copy Content Protection and Content Locking WordPress plugin before 4.0.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks eve…
CVE-2024-37442Low3.82024-07-09Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in Photo Gallery Team Photo Gallery by Ays allows Code Injection.This issue affects Photo Gallery by Ays: from n/a before 5.7…

Dwieeb · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6321High8.82024-07-09The ScrollTo Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.1.1.
CVE-2024-6320High8.82024-07-09The ScrollTo Top plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.2.2.

Elfsight · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4102Medium5.42024-07-09The Pricing Table plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax() function in all versions up to, and including, 2.0.1.
CVE-2024-4100Medium5.32024-07-09The Pricing Table plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.1.

Fogproject · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39914Critical9.82024-07-12FOG is a cloning/imaging/rescue suite/inventory management system.
CVE-2024-39916Medium6.42024-07-12FOG is a free open-source cloning/imaging/rescue suite/inventory management system.

Getoutline · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37829High8.82024-07-09An issue in Outline <= v0.76.1 allows attackers to execute a session hijacking attack via user interaction with a crafted magic sign-in link.
CVE-2024-37830Medium6.12024-07-09An issue in Outline <= v0.76.1 allows attackers to redirect a victim user to a malicious site via intercepting and changing the state cookie.

Hackmd · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38354High8.12024-07-10CodiMD allows realtime collaborative markdown notes on all platforms.
CVE-2024-38353Medium5.32024-07-10CodiMD allows realtime collaborative markdown notes on all platforms.

Happydevs · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5669Medium6.42024-07-09The XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ffw_activate_template' function in all versions up…
CVE-2024-5704Medium4.32024-07-09The XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions (i.e.

Hyumika · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3604Critical9.92024-07-09The OSM – OpenStreetMap plugin for WordPress is vulnerable to SQL Injection via the 'tagged_filter' attribute of the 'osm_map_v3' shortcode in all versions up to, and including, 6.0.3 due to insufficient escaping on the user supplied param…
CVE-2024-3603Medium6.42024-07-09The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'osm_map' shortcode in all versions up to, and including, 6.0.3 due to insufficient input sanitization and output escaping on user s…

Itsourcecode · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37873Critical9.82024-07-09SQL injection vulnerability in view_payslip.php in Itsourcecode Payroll Management System Project In PHP With Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2024-37870Critical9.82024-07-09SQL injection vulnerability in processscore.php in Learning Management System Project In PHP With Source Code 1.0 allows attackers to execute arbitrary SQL commands via the id parameter.

Johnson Controls · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-327532024-07-11Under certain circumstances the camera may be susceptible to known vulnerabilities associated with the JQuery versions prior to 3.5.0 third-party component
CVE-2024-327592024-07-10Under certain circumstances the Software House C●CURE 9000 installer will utilize weak credentials.

Metagauss · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6411High8.82024-07-10The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 5.8.9.
CVE-2024-6410Medium4.32024-07-10The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.8.9 via the 'pm_upload_image' function due to missing validation on a us…

Mythemeshop · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5802Medium4.82024-07-09The URL Shortener by Myhop WordPress plugin through 1.0.17 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallo…
CVE-2024-37938Medium4.32024-07-12Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop SociallyViral.This issue affects SociallyViral: from n/a through 1.0.10.

Nootheme · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37927Critical9.82024-07-12Incorrect Privilege Assignment vulnerability in NooTheme Jobmonster noo-jobmonster allows Privilege Escalation.This issue affects Jobmonster: from n/a through <= 4.7.5.
CVE-2024-37928High8.62024-07-12Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NooTheme Jobmonster allows File Manipulation.This issue affects Jobmonster: from n/a through 4.7.0.

Opensearch · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39900Medium5.42024-07-09OpenSearch Dashboards Reports allows ‘Report Owner’ export and share reports from OpenSearch Dashboards.
CVE-2024-39901Medium4.22024-07-09OpenSearch Observability is collection of plugins and applications that visualize data-driven events.

Oretnom23 · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6649Medium4.32024-07-10A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic.
CVE-2024-6650Low2.42024-07-10A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic.

Pandavideo · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5456High8.82024-07-09The Panda Video plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.4.0 via the 'selected_button' parameter.
CVE-2024-5457Medium6.42024-07-09The Panda Video plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.4.0 due to insufficient input sanitization and output escaping.

Pepperl+fuchs · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6422Critical9.82024-07-10An unauthenticated remote attacker can manipulate the device via Telnet, stop processes, read, delete and change data.
CVE-2024-6421High7.52024-07-10An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service.

Phoniebox · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37992024-07-10Insecure handling of POST header parameter body included in requests being sent to an instance of the open-source project Phoniebox allows an attacker to create a website, which – when visited by a user – will send malicious requests to mu…
CVE-2024-37982024-07-10Insecure handling of GET header parameter file included in requests being sent to an instance of the open-source project Phoniebox allows an attacker to create a website, which – when visited by a user – will send malicious requests to mul…

Renesas · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6563High7.52024-07-08Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Renesas arm-trusted-firmware allows Local Execution of Code.
CVE-2024-6564Medium6.72024-07-08Buffer overflow in "rcar_dev_init" due to using due to using untrusted data (rcar_image_number) as a loop counter before verifying it against RCAR_MAX_BL3X_IMAGE.

Sap_se · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39597High7.22024-07-09In SAP Commerce, a user can misuse the forgotten password functionality to gain access to a Composable Storefront B2B site for which early login and registration is activated, without requiring the merchant to approve the account beforehan…
CVE-2024-39596Medium4.32024-07-09Due to missing authorization checks, SAP Enable Now allows an author to escalate privileges to access information which should otherwise be restricted.

Tencent · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39684High7.82024-07-09Tencent RapidJSON is vulnerable to privilege escalation due to an integer overflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream.
CVE-2024-38517High7.82024-07-09Tencent RapidJSON is vulnerable to privilege escalation due to an integer underflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream.

Themeum · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37256High7.62024-07-09Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.1.
CVE-2024-37266Medium4.92024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Themeum Tutor LMS allows Path Traversal.This issue affects Tutor LMS: from n/a through 2.7.1.

Wpmudev · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6554Medium5.32024-07-11The Branda – White Label WordPress, Custom Login Page Customizer plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.18.
CVE-2024-6556Medium5.32024-07-10The SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.10.8.

Zealopensource · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6317High8.82024-07-09The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2.
CVE-2024-6316High8.82024-07-09The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2.

/N Software · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6580Medium6.52024-07-08The /n software IPWorks SSH library SFTPServer component can be induced to make unintended filesystem or network path requests when loading a SSH public key or certificate.

10web · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6026Medium5.42024-07-11The Slider by 10Web WordPress plugin before 1.2.56 does not sanitise and escape some of its Slide options, which could allow authenticated users with access to the Sliders (by default Administrator, however this can be changed via the Sli…

Admerc · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6652Medium6.32024-07-10A vulnerability was found in itsourcecode Gym Management System 1.0.

Airbytehq · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38363High8.52024-07-09Airbyte is a data integration platform for ELT pipelines.

Amttgroup · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39072Medium5.52024-07-09AMTT Hotel Broadband Operation System (HiBOS) v3.0.3.151204 is vulnerable to SQL injection via manager/conference/calendar_remind.php.

Andy_moyle · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37418Critical9.92024-07-09Unrestricted Upload of File with Dangerous Type vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a through <= 4.4.6.

Angeljudesuarez · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37872High8.12024-07-09SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.

Ashanjay · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6180High7.22024-07-09The EventON plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'eventon_import_settings' ajax action in all versions up to, and including, 2.2.15.

Aumkub · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5677Medium4.32024-07-10The Featured Image Generator plugin for WordPress is vulnerable to unauthorized image upload due to a missing capability check on the fig_save_after_generate_image function in all versions up to, and including, 1.3.1.

Auth0 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2023-6813Medium6.12024-07-10The Login by Auth0 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘wle’ parameter in all versions up to, and including, 4.6.0 due to insufficient input sanitization and output escaping.

Awsm · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37454Medium6.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in AWSM Innovations AWSM Team allows Path Traversal.This issue affects AWSM Team: from n/a through 1.3.1.

B1ackc4t · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37770Critical9.12024-07-1014Finger v1.1 was discovered to contain a remote command execution (RCE) vulnerability in the fingerprint function.

Bastho · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-1375Medium4.32024-07-12The Event post plugin for WordPress is vulnerable to unauthorized bulk metadata update due to a missing nonce check on the save_bulkdatas function in all versions up to, and including, 5.9.10.

Bastien Ho · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38735High7.52024-07-12Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Bastien Ho Event post event-post.This issue affects Event post: from n/a through <= 5.9.5.

Bestwebsoft · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3112Medium4.82024-07-12The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (f…

Binarycarpenter · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37202Medium6.52024-07-12Missing Authorization vulnerability in BinaryCarpenter Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter custom-add-to-cart-button-for-woocommerce.This issue affects Ultimate Custom Add To Cart Button (Ajax) For…

Bitpressadmin · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6123High7.22024-07-09The Bit Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'iconUpload' function in all versions up to, and including, 2.13.3.

Blubrry · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6588Medium6.42024-07-12The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘media_url’ parameter in all versions up to, and including, 11.9.10 due to insufficient input sanitization and output…

Blue Plugins · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38716Medium6.52024-07-12Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Blue Plugins Events Calendar for Google allows PHP Local File Inclusion.This issue affects Events Calendar for Google: from n/a through 2.1.0.

Bmwebproperties · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-0974Medium4.82024-07-12The Social Media Widget WordPress plugin before 4.0.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capa…

Bobbingwide · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6391Medium6.42024-07-09The oik plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bw_button shortcode in all versions up to, and including, 4.10.3 due to insufficient input sanitization and output escaping on user supplied attribu…

Booking Ultra Pro · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38717High7.12024-07-12Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Booking Ultra Pro allows PHP Local File Inclusion.This issue affects Booking Ultra Pro: from n/a through 1.1.13.

Bootstrap · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6485Medium6.42024-07-11A security vulnerability has been discovered in bootstrap that could enable Cross-Site Scripting (XSS) attacks.

Botan_project · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39312Medium5.32024-07-08Botan is a C++ cryptography library.

Brainstorm Force · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37455High8.82024-07-09Improper Privilege Management vulnerability in Brainstorm Force Ultimate Addons for Elementor allows Privilege Escalation.This issue affects Ultimate Addons for Elementor: from n/a through 1.36.31.

Broadcom · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3596Critical9.02024-07-09RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against…

Cisco · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-20456Medium6.72024-07-10A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Cisco Secure Boot functionality and load unverified software on an affected device.

Cloud · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3325High7.22024-07-10Vulnerability in Jaspersoft JasperReport Servers.This issue affects JasperReport Servers: from 8.0.4 through 9.0.0.

Code-projects · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6653High7.32024-07-11A vulnerability was found in code-projects Simple Task List 1.0.

Codeastrology · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4866Medium6.42024-07-10The UltraAddons – Elementor Addons (Header Footer Builder, Custom Font, Custom CSS,Woo Widget, Menu Builder, Anywhere Elementor Shortcode) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versio…

Codeless · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37419High7.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Codeless Cowidgets – Elementor Addons allows Path Traversal.This issue affects Cowidgets – Elementor Addons: from n/a through 1.1.1.

Cog-creators · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39905Medium5.32024-07-11Red is a fully modular Discord bot.

Creativeitem · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38959Medium6.12024-07-09Cross Site Scripting vulnerability in Creativeitem Academy LMS Learning Management System v.6.8.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the string parameter.

Crocoblock · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37497High7.72024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Crocoblock JetThemeCore jet-theme-core.This issue affects JetThemeCore: from n/a through < 2.2.1.

Data443 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5626Medium6.12024-07-12The Inline Related Posts WordPress plugin before 3.7.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as adm…

Deano1987 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6310High8.82024-07-09The Advanced AJAX Page Loader plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 2.7.7.

Devitems · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38706Medium6.52024-07-12Path Traversal: '.../...//' vulnerability in DevItems HT Mega ht-mega-for-elementor.This issue affects HT Mega: from n/a through <= 2.5.7.

Digireturn · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3410Medium4.32024-07-09The DN Footer Contacts WordPress plugin before 1.6.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capab…

Dj-extensions · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-27183Medium6.12024-07-09XSS vulnerability in DJ-HelpfulArticles component for Joomla.
CVESeverityCVSSKEVPublishedSummary
CVE-2024-39202High8.82024-07-08D-Link DIR-823X firmware - 240126 was discovered to contain a remote command execution (RCE) vulnerability via the dhcpd_startip parameter at /goform/set_lan_settings.

Docker · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5652Medium6.12024-07-09In Docker Desktop on Windows before v4.31.0 allows a user in the docker-users group to cause a Windows Denial-of-Service through the exec-path Docker daemon config option in Windows containers mode.

Dotcamp · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4655Medium5.42024-07-11The Ultimate Blocks WordPress plugin before 3.1.9 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to p…

Dream Train Internet Inc. · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39886Low3.72024-07-10TONE store App version 3.4.2 and earlier contains an issue with unprotected primary channel.

Dylan James · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37484High8.82024-07-09Improper Privilege Management vulnerability in Dylan James Zephyr Project Manager allows Privilege Escalation.This issue affects Zephyr Project Manager: from n/a through 3.3.97.

Dynamicweblab · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38704Medium6.52024-07-12Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DynamicWebLab WordPress Team Manager allows PHP Local File Inclusion.This issue affects WordPress Team Manager: from n/a through 2.1.12.

E4jconnect · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-1845High8.82024-07-11The VikRentCar Car Rental Management System WordPress plugin before 1.3.2 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

Electron · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39698High7.52024-07-09electron-updater allows for automatic updates for Electron apps.

Elementor · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37437Medium5.52024-07-09Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elementor Elementor Website Builder elementor.This issue affects Elementor Website Builder: from n/a through <= 3.22.1.

Embedded-solutions · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-31504High7.52024-07-08Buffer Overflow vulnerability in SILA Embedded Solutions GmbH freemodbus v.2018-09-12 allows a remtoe attacker to cause a denial of service via the LINUXTCP server component.

Emiloi · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37871High8.22024-07-09SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP with Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the email parameter.

Everest · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37310Critical9.02024-07-10EVerest is an EV charging software stack.

Exiv2 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39695Medium5.32024-07-08Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files.

Expresstech · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6025Medium5.42024-07-11The Quiz and Survey Master (QSM) WordPress plugin before 9.0.5 does not sanitise and escape some of its Quiz settings, which could allow contributors and higher to perform Stored Cross-Site Scripting attacks

Exs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38715Medium6.52024-07-12Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ExS ExS Widgets allows PHP Local File Inclusion.This issue affects ExS Widgets: from n/a through 0.3.1.

Extremepacs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4341Medium6.52024-07-08Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users.

Favethemes · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5793High8.82024-07-09The Houzez Theme - Functionality plugin for WordPress is vulnerable to SQL Injection via the ‘currency_code’ parameter in all versions up to, and including, 3.2.2 due to insufficient escaping on the user supplied parameter and lack of suff…

Fullservices · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6447High7.22024-07-11The FULL – Cliente plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the license plan parameter in all versions up to, and including, 3.1.12 due to insufficient input sanitization and output escaping as well as missing…

G5plus · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37462High8.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in G5Theme Ultimate Bootstrap Elements for Elementor allows Path Traversal.This issue affects Ultimate Bootstrap Elements for Elementor: from n/a…

Genetechproducts · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6069High8.82024-07-09The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing ca…

Guru-aliexpress · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37213High7.12024-07-12Cross-Site Request Forgery (CSRF) vulnerability in guru-aliexpress AliNext ali2woo-lite allows Cross Site Request Forgery.This issue affects AliNext: from n/a through <= 3.4.6.

Happymonkeyagency · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5600Medium5.42024-07-09The SCSS Happy Compiler – Compile SCSS to CSS & Automatic Enqueue plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to a missing capability check and insufficient sanitization on the import_settings() function in all ve…

Hashicorp · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6468High7.52024-07-11Vault and Vault Enterprise did not properly handle requests originating from unauthorized IP addresses when the TCP listener option, proxy_protocol_behavior, was set to deny_unauthorized.

Hcl Software · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-23562Medium5.32024-07-08A security vulnerability in HCL Domino could allow disclosure of sensitive configuration information.

Houzez · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5792High8.82024-07-10The Houzez CRM plugin for WordPress is vulnerable to time-based SQL Injection via the notes ‘belong_to’ parameter in all versions up to, and including, 1.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficien…

Ideabox · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37410Medium4.92024-07-09Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in IdeaBox Creations PowerPack Lite for Beaver Builder powerpack-addon-for-beaver-builder.This issue affects PowerPack Li…

Idioweb · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4868Medium6.42024-07-09The Extensions for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's EE Events and EE Flipbox widgets in all versions up to, and including, 2.0.32 due to insufficient input sanitization and output…

Inspireui · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6328Critical9.82024-07-12The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.14.7.

Instawp · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6397Critical9.82024-07-11The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 0.1.0.44.
CVESeverityCVSSKEVPublishedSummary
CVE-2024-37941Medium4.32024-07-12Cross-Site Request Forgery (CSRF) vulnerability in Internal Link Juicer Internal Link Juicer: SEO Auto Linker for WordPress.This issue affects Internal Link Juicer: SEO Auto Linker for WordPress: from n/a through 2.24.3.

Iqbalrony · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37560High8.02024-07-12Improper Privilege Management vulnerability in IqbalRony WP User Switch allows Privilege Escalation.This issue affects WP User Switch: from n/a through 1.1.0.

Isc · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-28872High8.92024-07-11The TLS certificate validation code is flawed.

Jan Syski · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-65272024-07-09SQL Injection vulnerability in parameter "w" in file "druk.php" in MegaBIP software allows unauthorized attacker to disclose the contents of the database and obtain administrator's token to modify the content of pages.  This issue affects…

Jaraco · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5569Medium6.22024-07-09A Denial of Service (DoS) vulnerability exists in the jaraco/zipp library, affecting all versions prior to 3.19.1.

Jevnet · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5479High7.22024-07-09The Easy Pixels plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin settings in all versions up to, and including, 2.13 due to insufficient input sanitization and output escaping.

Kainelabs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37494High8.52024-07-09Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in KaineLabs Youzify.This issue affects Youzify: from n/a through 1.2.5.

Kaptinlin · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37268High8.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in kaptinlin Striking allows Path Traversal.This issue affects Striking: from n/a through 2.3.4.

Khoj · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-25639Medium5.92024-07-08Khoj is an application that creates personal AI agents.

Kibokolabs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-2640Medium5.42024-07-12The Watu Quiz WordPress plugin before 3.4.1.2 does not sanitise and escape some of its settings, which could allow users such as authors (if they've been authorized by admins) to perform Stored Cross-Site Scripting attacks even when the un…

Knime · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6598Medium6.52024-07-09A denial-of-service attack is possible through the execution functionality of KNIME Business Hub 1.10.0 and 1.10.1.

Leap13 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6495Medium6.42024-07-12The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Animated Text widget in all versions up to, and including, 4.10.36 due to insufficient input sanitization and output escapi…

Limesurvey · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39063High8.82024-07-09Lime Survey <= 6.5.12 is vulnerable to Cross Site Request Forgery (CSRF).

Linksys · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40750Medium5.32024-07-09Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices send cleartext Wi-Fi passwords over the public Internet during app-based installation.

M_uysl · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6625Medium5.52024-07-12The WP Total Branding – Complete branding solution for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2 due to insufficient input sanitization and outp…

Magazine3 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6334Medium6.12024-07-09The Easy Table of Contents WordPress plugin before 2.0.67.1 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disa…

Magiclen · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-21524High8.22024-07-10All versions of the package node-stringbuilder are vulnerable to Out-of-bounds Read due to incorrect memory length calculation, by calling ToBuffer, ToString, or CharAt on a StringBuilder object with a non-empty string value input.

Mardojai · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5937Medium6.42024-07-09The Simple Alert Boxes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Alert shortcode in all versions up to, and including, 1.4.0 due to insufficient input sanitization and output escaping on user suppli…

Mark8barnes · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5444Medium5.42024-07-11The Bible Text WordPress plugin through 0.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above…

Matteoenna · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-2430Medium5.42024-07-12The Website Content in Page or Post WordPress plugin before 2024.04.09 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the…

Mhuertos · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2016-15039Medium6.32024-07-11A vulnerability classified as critical was found in mhuertos phpLDAPadmin up to 665dbc2690ebeb5392d38f1fece0a654225a0b38.

Milan Petrovic · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38709Medium5.32024-07-12Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Milan Petrovic GD Rating System allows PHP Local File Inclusion.This issue affects GD Rating System: from n/a through 3.6.

Mommyheather · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39118Medium5.52024-07-09Mommy Heather Advanced Backups up to v3.5.3 allows attackers to write arbitrary files via restoring a crafted back up.

Monsterinsights · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5902High7.22024-07-12The User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the name parameter in all versions up to, and including, 1.0.15 due to insuffici…

Naver · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40618Critical9.62024-07-11Whale browser before 3.26.244.21 allows an attacker to execute malicious JavaScript due to improper sanitization when processing a built-in extension.

Netapp · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-21993Medium5.72024-07-09SnapCenter versions prior to 5.0p1 are susceptible to a vulnerability which could allow an authenticated attacker to discover plaintext credentials.

Netgear · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6646Medium5.32024-07-10A vulnerability was found in Netgear WN604 up to 20240710.

Neutrinolabs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39917High7.22024-07-12xrdp is an open source RDP server.

Nhibernate · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39677Medium5.92024-07-08NHibernate is an object-relational mapper for the .NET framework.

Nikolaystrikhar · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6313Critical9.82024-07-09The Gutenberg Forms plugin for WordPress is vulnerable to arbitrary file uploads due to the users can specify the allowed file types in the 'upload' function in versions up to, and including, 2.2.9.

Ninja Team · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37504Medium5.32024-07-10Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ninja Team FileBird Document Library.This issue affects FileBird Document Library: from n/a through 2.0.6.

Ninjaforms · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37934Medium5.42024-07-09Improper Control of Generation of Code ('Code Injection') vulnerability in Saturday Drive Ninja Forms allows Code Injection.This issue affects Ninja Forms: from n/a through 3.8.4.

Nuvoton · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38433Medium6.72024-07-11Nuvoton - CWE-305: Authentication Bypass by Primary Weakness An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock reference code can modify the u-boot image header on flash parsed by…

Openclarity · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39909Medium6.52024-07-12KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems.

Paid Memberships Pro · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37486High7.62024-07-09Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Paid Memberships Pro.This issue affects Paid Memberships Pro: from n/a through 3.0.5.

Parorrey · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6624Critical9.82024-07-11The JSON API User plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.9.3.

Patreon · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37430Medium5.32024-07-09Authentication Bypass by Spoofing vulnerability in patreon Patreon WordPress patreon-connect.This issue affects Patreon WordPress: from n/a through <= 1.9.0.

Pauple · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37498Medium5.32024-07-10Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pauple Table & Contact Form 7 Database – Tablesome.This issue affects Table & Contact Form 7 Database – Tablesome: from n/a through 1.0.33.

Payflex · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-0619Medium5.32024-07-11The Payflex Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the payment_callback() function in all versions up to, and including, 2.5.0.

Payplus Ltd · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37564High8.52024-07-12Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PayPlus LTD PayPlus Payment Gateway.This issue affects PayPlus Payment Gateway: from n/a through 7.0.7.

Pickplugins · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3608Medium5.32024-07-09The Product Designer plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the product_designer_ajax_delete_attach_id() function in all versions up to, and including, 1.0.33.

Pjgalbraith · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6161High8.82024-07-09The Default Thumbnail Plus plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'get_cache_image' function in all versions up to, and including, 1.0.2.3.

Plugin-devs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4667Medium6.42024-07-09The Blog, Posts and Category Filter for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Post and Category Filter widget in all versions up to, and including, 1.0.3 due to insufficient input sanitization…

Pluginsware · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37501High8.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in PluginsWare Advanced Classifieds & Directory Pro allows Path Traversal.This issue affects Advanced Classifieds & Directory Pro: from n/a throug…

Praveen-rajan · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6309High8.82024-07-09The Attachment File Icons (AF Icons) plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.3.

Privatebin · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39899Medium5.32024-07-09PrivateBin is an online pastebin where the server has zero knowledge of pasted data.

Progress Software Corporation · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-48822024-07-08The user may be redirected to an arbitrary site in Sitefinity 15.1.8321.0 and previous versions.

Project-zot · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39897Medium4.32024-07-09zot is an OCI image registry.

Quantumcloud · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5811Medium5.42024-07-12The Simple Video Directory WordPress plugin before 1.4.4 does not sanitise and escape some of its settings, which could allow contributors and higher to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability i…

Radiustheme · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37520Medium6.52024-07-09Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor…

Rails_admin_project · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39308Medium5.42024-07-08RailsAdmin is a Rails engine that provides an interface for managing data.

Randombit · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-34702Medium5.32024-07-08Botan is a C++ cryptography library.

Realmag777 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38700Medium6.52024-07-12Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in realmag777 WPCS allows Code Injection.This issue affects WPCS: from n/a through 1.2.0.3.

Realtyna · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38736Critical9.12024-07-12Unrestricted Upload of File with Dangerous Type vulnerability in Realtyna Realtyna Organic IDX plugin allows Code Injection.This issue affects Realtyna Organic IDX plugin: from n/a through 4.14.13.

Ricoh Company, Ltd. · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39927High8.22024-07-10Out-of-bounds write vulnerability exists in Ricoh MFPs and printers.

Rmac0001 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6314Critical9.82024-07-09The IQ Testimonials plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'process_image_upload' function in versions up to, and including, 2.2.7.

Rocket.chat · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37405Medium6.52024-07-12Livechat messages can be leaked by combining two NoSQL injections affecting livechat:loginByToken (pre-authentication) and livechat:loadHistory.

Saleswonder Team: Tobias · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37544Medium4.32024-07-12Missing Authorization vulnerability in Saleswonder Team: Tobias Get Better Reviews for WooCommerce more-better-reviews-for-woocommerce.This issue affects Get Better Reviews for WooCommerce: from n/a through <= 4.0.6.

Seopress · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5488Critical9.82024-07-09The SEOPress WordPress plugin before 7.9 does not properly protect some of its REST API routes, which combined with another Object Injection vulnerability can allow unauthenticated attackers to unserialize malicious gadget chains, comprom…

Seraphinite Solutions · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37940High7.42024-07-12Cross-Site Request Forgery (CSRF) vulnerability in Seraphinite Solutions Seraphinite Accelerator (Full, premium).This issue affects Seraphinite Accelerator (Full, premium): from n/a through 2.21.13.

Servit Software Solutions · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37205Medium5.32024-07-10Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This issue affects affiliate-toolkit: from n/a through 3.4.4.

Silabs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2023-41093Low3.12024-07-12Use After Free vulnerability in Silicon Labs Bluetooth SDK on 32 bit, ARM may allow an attacker with precise timing capabilities to intercept a small number of packets intended for a recipient that has left the network.This issue affects S…

Sirv · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6392Medium5.42024-07-11The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to unauthorized plugin settings modification due to missing capability checks on the plugin functions in all versions up to, and including, 7.2.7.

Slui · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5855Medium4.32024-07-09The Media Hygiene: Remove or Delete Unused Images and More!

Smartypants · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37224High7.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in smartypants SP Project & Document Manager.This issue affects SP Project & Document Manager: from n/a through 4.71.

Smashballoon · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6256Medium6.42024-07-11The Feeds for YouTube (YouTube video, channel, and gallery plugin) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'youtube-feed' shortcode in all versions up to, and including, 2.2.1 due to insufficient…

Smub · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6210Medium5.32024-07-11The Duplicator plugin for WordPress is vulnerable to information exposure in all versions up to, and including, 1.5.9.

Sonaar · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5664Medium6.42024-07-10The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute within the plugin's sonaar_audioplayer shortcode in all versions up to, and incl…

Spreadsheetconverter · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38734Critical9.12024-07-12Unrestricted Upload of File with Dangerous Type vulnerability in SpreadsheetConverter Import Spreadsheets from Microsoft Excel allows Code Injection.This issue affects Import Spreadsheets from Microsoft Excel: from n/a through 10.1.4.

Spring By Vmware Tanzu · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-22271High8.22024-07-09In Spring Cloud Function framework, versions 4.1.x prior to 4.1.2, 4.0.x prior to 4.0.8 an application is vulnerable to a DOS attack when attempting to compose functions with non-existing functions.

Squelch · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5946Medium6.42024-07-09The Squelch Tabs and Accordions Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tab’ shortcode in all versions up to, and including, 0.4.8 due to insufficient input sanitization and output escaping.

Standalonetech · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6353High8.82024-07-12The Wallet for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'search[value]' parameter in all versions up to, and including, 1.5.4 due to insufficient escaping on the user supplied parameter and lack of sufficient…

Stellarwp · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5648Medium5.42024-07-09The LearnDash LMS – Reports plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions (i.e.

Studiopress · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3563Medium6.42024-07-09The Genesis Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Sharing block in all versions up to, and including, 3.1.3 due to insufficient input sanitization and output escaping on user supplied att…

Stylemixthemes · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37090High8.52024-07-09Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes Masterstudy Elementor Widgets, StylemixThemes Consulting Elementor Widgets.This issue affects Masterstudy Elementor Widget…

Swiftideas · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-2696Medium4.82024-07-12The socialdriver-framework WordPress plugin before 2024.04.30 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_h…

Themeenergy · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37952High8.82024-07-09Improper Privilege Management vulnerability in themeenergy BookYourTravel allows Privilege Escalation.This issue affects BookYourTravel: from n/a through 8.18.17.

Themewinter · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37513High8.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Themewinter WPCafe allows Path Traversal.This issue affects WPCafe: from n/a through 2.2.27.

Timersys · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6555Medium5.32024-07-12The WP Popups – WordPress Popup builder plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.2.0.1.

Torchbox · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39317Medium6.52024-07-11Wagtail is an open source content management system built on Django.

Tranbinhcse · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5881Medium6.42024-07-09The Webico Slider Flatsome Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wbc_image shortcode in all versions up to, and including, 2.0.1 due to insufficient input sanitization and output escaping…

Trustedlogin · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37270Medium5.32024-07-10Insertion of Sensitive Information into Log File vulnerability in TrustedLogin TrustedLogin Vendor.This issue affects TrustedLogin Vendor: from n/a before 1.1.1.

Tyxla · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6550Medium5.32024-07-10The Gravity Forms: Multiple Form Instances plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.1.1.

Ubiquiti · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-34786Medium4.82024-07-09UniFi iOS app 10.15.0 introduces a misconfiguration on 2nd Generation UniFi Access Points configured as standalone (not using UniFi Network Application) that could cause the SSID name to change and/or the WiFi Password to be removed on the…

Unattributed · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2023-3285High7.72024-07-09A BOLA vulnerability in POST /appointments allows a low privileged user to create an appointment for any user in the system (including admin).

Unknown · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4753Medium4.82024-07-12The WP Secure Maintenance WordPress plugin before 1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capa…

Vcita · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37499Medium6.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in vCita Online Booking & Scheduling Calendar for WordPress by vcita allows Path Traversal.This issue affects Online Booking & Scheduling Calendar…

Vercel · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39693High7.52024-07-10Next.js is a React framework.

Vmware · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-22280High8.52024-07-11VMware Aria Automation does not apply correct input validation which allows for SQL-injection in the product. An authenticated malicious user could enter specially crafted SQL queries and perform unauthorised read/write operations in the d…

Vnotex · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39904High8.82024-07-11VNote is a note-taking platform.

Volthemes · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37939Medium4.32024-07-12Cross-Site Request Forgery (CSRF) vulnerability in VolThemes Patricia Lite.This issue affects Patricia Lite: from n/a through 1.2.3.

Watchguard · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5974High7.22024-07-09A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall.

Webnus · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5441High8.82024-07-09The Modern Events Calendar plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_featured_image function in all versions up to, and including, 7.11.0.

Wedevs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6666High8.82024-07-11The WP ERP plugin for WordPress is vulnerable to SQL Injection via the ‘vendor_id’ and 'status' parameter in all versions up to, and including, 1.13.0 due to insufficient escaping on the user supplied parameter and lack of sufficient prepa…

Whisperfish · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39697High8.62024-07-09phonenumber is a library for parsing, formatting and validating international phone numbers.

Widgetti · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39903High8.62024-07-12Solara is a pure Python, React-style framework for scaling Jupyter and web apps.

Woobewoo · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6365Critical9.82024-07-09The Product Table by WBW plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.0.1 via the 'saveCustomTitle' function.

Wp2speed · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5810Medium5.32024-07-09The WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0.1.

Wpbits · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4862Medium6.42024-07-09The WPBITS Addons For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 1.5 due to insufficient input sanitization and output escaping on user…

Wpdirectorykit · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37253Low2.72024-07-09Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in WpDirectoryKit WP Directory Kit allows Code Injection.This issue affects WP Directory Kit: from n/a through 1.3.6.

Wpjohnny, Zeroneit · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-35773High7.12024-07-12Cross-Site Request Forgery (CSRF) vulnerability in WPJohnny, zerOneIT Comment Reply Email allows Cross-Site Scripting (XSS).This issue affects Comment Reply Email: from n/a through 1.3.

Wpkube · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3228Medium5.32024-07-09The Social Sharing Plugin – Kiwi plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.1.7 via the 'kiwi-nw-pinterest' class.

Wppuzzle · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5856Medium4.32024-07-09The Comment Images Reloaded plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the cir_delete_image AJAX action in all versions up to, and including, 2.2.1.

Wpvibes · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5325High8.82024-07-12The Form Vibes plugin for WordPress is vulnerable to SQL Injection via the ‘fv_export_data’ parameter in all versions up to, and including, 1.4.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparati…

Wpweb · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37502Medium5.42024-07-09Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login woo-social-login.This issue affects WooCommerce Social Login: from n/a through <= 2.6.3.

Wpzita · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37420Critical9.92024-07-09Unrestricted Upload of File with Dangerous Type vulnerability in WPZita Zita Elementor Site Library allows Upload a Web Shell to a Web Server.This issue affects Zita Elementor Site Library: from n/a through 1.6.1.

Wpzoom · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37464Medium4.92024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WPZOOM Beaver Builder Addons by WPZOOM allows Path Traversal.This issue affects Beaver Builder Addons by WPZOOM: from n/a through 1.3.5.

Wukongopensource · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6645Medium6.32024-07-10A vulnerability was found in WuKongOpenSource Wukong_nocode up to 20230807.

Zealousweb · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37555Critical9.12024-07-09Unrestricted Upload of File with Dangerous Type vulnerability in ZealousWeb Generate PDF using Contact Form 7 generate-pdf-using-contact-form-7.This issue affects Generate PDF using Contact Form 7: from n/a through <= 4.1.2.

Zmops · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6644Medium6.32024-07-10A vulnerability was found in zmops ArgusDBM up to 0.1.0.

Zoho · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37225High8.52024-07-09Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Zoho Marketing Automation.This issue affects Zoho Marketing Automation: from n/a through 1.2.7.

Zte · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-22062Medium6.32024-07-09There is a permissions and access control vulnerability in ZXCLOUD IRAI.An attacker can elevate non-administrator permissions to administrator permissions by modifying the configuration.