Patch Tuesday — September 2024

2024-09-10 · 675 CVEs

CVEs published or modified the week of 2024-09-10, partitioned by vendor.

Microsoft (111 CVEs)

CVESeverityCVSSKEVPublishedSummary
CVE-2024-43491Critical9.82024-09-10Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released July 2015).
CVE-2024-38220Critical9.02024-09-10Azure Stack Hub Elevation of Privilege Vulnerability
CVE-2024-43469High8.82024-09-10Azure CycleCloud Remote Code Execution Vulnerability
CVE-2024-43461High8.8KEV2024-09-10Windows MSHTML Platform Spoofing Vulnerability
CVE-2024-43455High8.82024-09-10Windows Remote Desktop Licensing Service Spoofing Vulnerability
CVE-2024-38260High8.82024-09-10Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-38259High8.82024-09-10Microsoft Management Console Remote Code Execution Vulnerability
CVE-2024-38225High8.82024-09-10Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
CVE-2024-38018High8.82024-09-10Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2024-37980High8.82024-09-10Microsoft SQL Server Elevation of Privilege Vulnerability
CVE-2024-37965High8.82024-09-10Microsoft SQL Server Elevation of Privilege Vulnerability
CVE-2024-37341High8.82024-09-10Microsoft SQL Server Elevation of Privilege Vulnerability
CVE-2024-37340High8.82024-09-10Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
CVE-2024-37339High8.82024-09-10Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
CVE-2024-37338High8.82024-09-10Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
CVE-2024-37335High8.82024-09-10Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
CVE-2024-26191High8.82024-09-10Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
CVE-2024-26186High8.82024-09-10Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability
CVE-2024-43479High8.52024-09-10Microsoft Power Automate Desktop Remote Code Execution Vulnerability
CVE-2024-38194High8.42024-09-10An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network.
CVE-2024-38216High8.22024-09-10Azure Stack Hub Elevation of Privilege Vulnerability
CVE-2024-38240High8.12024-09-10Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2024-38045High8.12024-09-10Windows TCP/IP Remote Code Execution Vulnerability
CVE-2024-21416High8.12024-09-10Windows TCP/IP Remote Code Execution Vulnerability
CVE-2024-45109High7.82024-09-13Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-45108High7.82024-09-13Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-43760High7.82024-09-13Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-43756High7.82024-09-13Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-45112High7.82024-09-13Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Type Confusion vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-43758High7.82024-09-13Illustrator versions 28.6, 27.9.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-41869High7.82024-09-13Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-41859High7.82024-09-13After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-41857High7.82024-09-13Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-39384High7.82024-09-13Premiere Pro versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-39381High7.82024-09-13After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-39380High7.82024-09-13After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-34121High7.82024-09-13Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-39377High7.82024-09-13Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-45181High7.82024-09-12An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70.
CVE-2024-5760High7.82024-09-11The Samsung Universal Print Driver for Windows is potentially vulnerable to escalation of privilege allowing the creation of a reverse shell in the tool.
CVE-2024-39378High7.82024-09-11Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-43492High7.82024-09-10Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
CVE-2024-43465High7.82024-09-10Microsoft Excel Elevation of Privilege Vulnerability
CVE-2024-43463High7.82024-09-10Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2024-43457High7.82024-09-10Windows Setup and Deployment Elevation of Privilege Vulnerability
CVE-2024-38253High7.82024-09-10Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
CVE-2024-38252High7.82024-09-10Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
CVE-2024-38250High7.82024-09-10Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-38249High7.82024-09-10Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-38247High7.82024-09-10Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-38245High7.82024-09-10Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-38244High7.82024-09-10Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-38243High7.82024-09-10Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-38242High7.82024-09-10Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-38241High7.82024-09-10Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-38238High7.82024-09-10Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-38237High7.82024-09-10Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38046High7.82024-09-10PowerShell Elevation of Privilege Vulnerability
CVE-2024-38014High7.8KEV2024-09-10Windows Installer Elevation of Privilege Vulnerability
CVE-2024-30073High7.82024-09-10Windows Security Zone Mapping Security Feature Bypass Vulnerability
CVE-2024-43458High7.72024-09-10Windows Networking Information Disclosure Vulnerability
CVE-2024-43476High7.62024-09-10Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2024-43474High7.62024-09-10Microsoft SQL Server Information Disclosure Vulnerability
CVE-2024-43467High7.52024-09-10Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-38263High7.52024-09-10Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-38257High7.52024-09-10Microsoft AllJoyn API Information Disclosure Vulnerability
CVE-2024-38236High7.52024-09-10DHCP Server Service Denial of Service Vulnerability
CVE-2024-38233High7.52024-09-10Windows Networking Denial of Service Vulnerability
CVE-2024-38232High7.52024-09-10Windows Networking Denial of Service Vulnerability
CVE-2024-38119High7.52024-09-10Windows Network Address Translation (NAT) Remote Code Execution Vulnerability
CVE-2024-43495High7.32024-09-10Windows libarchive Remote Code Execution Vulnerability
CVE-2024-43475High7.32024-09-10Microsoft Windows Admin Center Information Disclosure Vulnerability
CVE-2024-43470High7.32024-09-10Azure Network Watcher VM Agent Elevation of Privilege Vulnerability
CVE-2024-38226High7.3KEV2024-09-10Microsoft Publisher Security Feature Bypass Vulnerability
CVE-2024-43464High7.22024-09-10Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2024-38239High7.22024-09-10Windows Kerberos Elevation of Privilege Vulnerability
CVE-2024-38228High7.22024-09-10Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2024-38227High7.22024-09-10Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2024-43454High7.12024-09-10Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-38188High7.12024-09-10Azure Network Watcher VM Agent Elevation of Privilege Vulnerability
CVE-2024-37966High7.12024-09-10Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
CVE-2024-37342High7.12024-09-10Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
CVE-2024-37337High7.12024-09-10Microsoft SQL Server Native Scoring Information Disclosure Vulnerability
CVE-2024-38248High7.02024-09-10Windows Storage Elevation of Privilege Vulnerability
CVE-2024-38246High7.02024-09-10Win32k Elevation of Privilege Vulnerability
CVE-2024-38222Medium6.52024-09-12Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2024-43487Medium6.52024-09-10Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2024-43482Medium6.52024-09-10Microsoft Outlook for iOS Information Disclosure Vulnerability
CVE-2024-43466Medium6.52024-09-10Microsoft SharePoint Server Denial of Service Vulnerability
CVE-2024-38258Medium6.52024-09-10Windows Remote Desktop Licensing Service Information Disclosure Vulnerability
CVE-2024-38235Medium6.52024-09-10Windows Hyper-V Denial of Service Vulnerability
CVE-2024-38234Medium6.52024-09-10Windows Networking Denial of Service Vulnerability
CVE-2024-38231Medium6.52024-09-10Windows Remote Desktop Licensing Service Denial of Service Vulnerability
CVE-2024-38230Medium6.52024-09-10Windows Standards-Based Storage Management Service Denial of Service Vulnerability
CVE-2024-45111Medium5.52024-09-13Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-43759Medium5.52024-09-13Illustrator versions 28.6, 27.9.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS).
CVE-2024-41867Medium5.52024-09-13After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-39385Medium5.52024-09-13Premiere Pro versions 24.5, 23.6.8 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-39382Medium5.52024-09-13After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-41873Medium5.52024-09-13Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-41872Medium5.52024-09-13Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-41871Medium5.52024-09-13Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-41870Medium5.52024-09-13Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-45182Medium5.52024-09-12An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70 An improper bounds check allows specially crafted packets to cause an arbitrary address read, resulting in Denial of Service.
CVE-2024-41868Medium5.52024-09-11Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
CVE-2024-38256Medium5.52024-09-10Windows Kernel-Mode Driver Information Disclosure Vulnerability
CVE-2024-38254Medium5.52024-09-10Windows Authentication Information Disclosure Vulnerability
CVE-2024-38217Medium5.4KEV2024-09-10Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2024-45383Medium5.02024-09-12A mishandling of IRP requests vulnerability exists in the HDAudBus_DMA interface of Microsoft High Definition Audio Bus Driver 10.0.19041.3636 (WinBuild.160101.0800).
CVE-2024-8690Medium4.42024-09-11A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows administrator privileges to disable the agent.
CVE-2024-1656Low2.62024-09-11Affected versions of Octopus Server had a weak content security policy.

Other vendors (564 CVEs across 199 vendors)

Linux · 63 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-46713High7.82024-09-13In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization Ole reported that event->mmap_mutex is strictly insufficient to serialize the AUX buffer, add a per RB mutex to fully serialize it.
CVE-2024-46699High7.82024-09-13In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Disable preemption while updating GPU stats We forgot to disable preemption around the write_seqcount_begin/end() pair while updating GPU stats: [ ] WARNING…
CVE-2024-46696High7.82024-09-13In the Linux kernel, the following vulnerability has been resolved: nfsd: fix potential UAF in nfsd4_cb_getattr_release Once we drop the delegation reference, the fields embedded in it are no longer safe to access.
CVE-2024-46687High7.82024-09-13In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() [BUG] There is an internal report that KASAN is reporting use-after-free, with the following…
CVE-2024-46683High7.82024-09-13In the Linux kernel, the following vulnerability has been resolved: drm/xe: prevent UAF around preempt fence The fence lock is part of the queue, therefore in the current design anything locking the fence should then also hold a ref to t…
CVE-2024-46674High7.82024-09-13In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: st: fix probed platform device ref count on probe error path The probe function never performs any paltform device allocation, thus error path "undo_platform_…
CVE-2024-46673High7.82024-09-13In the Linux kernel, the following vulnerability has been resolved: scsi: aacraid: Fix double-free on probe failure aac_probe_one() calls hardware-specific init functions through the aac_driver_ident::init pointer, all of which eventuall…
CVE-2024-45026High7.82024-09-11In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error recovery leading to data corruption on ESE devices Extent Space Efficient (ESE) or thin provisioned volumes need to be formatted on demand during us…
CVE-2024-45023High7.12024-09-11In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data corruption for degraded array with slow disk read_balance() will avoid reading from slow disks as much as possible, however, if valid data only lands…
CVE-2024-46712Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Disable coherent dumb buffers without 3d Coherent surfaces make only sense if the host renders to them using accelerated apis.
CVE-2024-46709Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes through the dma_buf interface instead of trying to access pages directly.
CVE-2024-46708Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: pinctrl: qcom: x1e80100: Fix special pin offsets Remove the erroneus 0x100000 offset to prevent the boards from crashing on pin state setting, as well as for the intende…
CVE-2024-46707Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 On a system with a GICv3, if a guest hasn't been configured with GICv3 and that the host is not capable o…
CVE-2024-46706Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: tty: serial: fsl_lpuart: mark last busy before uart_add_one_port With "earlycon initcall_debug=1 loglevel=8" in bootargs, kernel sometimes boot hang.
CVE-2024-46705Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: drm/xe: reset mmio mappings with devm Set our various mmio mappings to NULL.
CVE-2024-46703Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: Revert "serial: 8250_omap: Set the console genpd always on if no console suspend" This reverts commit 68e6939ea9ec3d6579eadeab16060339cdeaf940.
CVE-2024-46702Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed that when we do discrete host router NVM upgrade and it gets hot-removed from the PCIe side as a…
CVE-2024-46701Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simple_dir_operations to simple_offset_dir_operations, every rename happened…
CVE-2024-46698Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: video/aperture: optionally match the device in sysfb_disable() In aperture_remove_conflicting_pci_devices(), we currently only call sysfb_disable() on vga class devices.
CVE-2024-46697Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: nfsd: ensure that nfsd4_fattr_args.context is zeroed out If nfsd4_encode_fattr4 ends up doing a "goto out" before we get to checking for the security label, then args.co…
CVE-2024-46694Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid using null object of framebuffer Instead of using state->fb->obj[0] directly, get object from framebuffer by calling drm_gem_fb_get_obj() and retu…
CVE-2024-46692Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Mark get_wq_ctx() as atomic call Currently get_wq_ctx() is wrongly configured as a standard call.
CVE-2024-46691Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Move unregister out of atomic section Commit '9329933699b3 ("soc: qcom: pmic_glink: Make client-lock non-sleeping")' moved the pmic_glink client list u…
CVE-2024-46690Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease It is not safe to dereference fl->c.flc_owner without first confirming fl->fl_lmops is the expect…
CVE-2024-46689Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: soc: qcom: cmd-db: Map shared memory as WC, not WB Linux does not write into cmd-db region.
CVE-2024-46688Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails If z_erofs_gbuf_growsize() partially fails on a global buffer due to memory allocation failur…
CVE-2024-46686Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() This happens when called from SMB2_read() while using rdma and reaching the rdma_readwrite_threshold.
CVE-2024-46685Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix potential NULL dereference in pcs_get_function() pinmux_generic_get_function() can return NULL and the pointer 'function' was dereferenced without c…
CVE-2024-46684Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: binfmt_elf_fdpic: fix AUXV size calculation when ELF_HWCAP2 is defined create_elf_fdpic_tables() does not correctly account the space for the AUX vector when an architec…
CVE-2024-46682Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: nfsd: prevent panic for nfsv4.0 closed files in nfs4_show_open Prior to commit 3f29cc82a84c ("nfsd: split sc_status out of sc_type") states_show() relied on sc_type fiel…
CVE-2024-46681Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: pktgen: use cpus_read_lock() in pg_net_init() I have seen the WARN_ON(smp_processor_id() != cpu) firing in pktgen_thread_worker() during tests.
CVE-2024-46680Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix random crash seen while removing driver This fixes the random kernel crash seen while removing the driver, when running the load/unload test ov…
CVE-2024-46678Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: bonding: change ipsec_lock from spin lock to mutex In the cited commit, bond->ipsec_lock is added to protect ipsec_list, hence xdo_dev_state_add and xdo_dev_state_delete…
CVE-2024-46677Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: gtp: fix a potential NULL pointer dereference When sockfd_lookup() fails, gtp_encap_enable_socket() returns a NULL pointer, but its callers only check for error pointers…
CVE-2024-46676Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Add poll mod list filling check In case of im_protocols value is 1 and tm_protocols value is 0 this combination successfully passes the check 'if (!im_protoc…
CVE-2024-46675Medium5.52024-09-13In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: Prevent USB core invalid event buffer address access This commit addresses an issue where the USB core could access an invalid event buffer address duri…
CVE-2024-46672Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion wpa_supplicant 2.11 sends since 1efdba5fdc2c ("Handle PMKSA flush in the driver for SAE/OWE offload cases") SS…
CVE-2024-45030Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: igb: cope with large MAX_SKB_FRAGS Sabrina reports that the igb driver does not cope well with large MAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload corru…
CVE-2024-45029Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: Do not mark ACPI devices as irq safe On ACPI machines, the tegra i2c module encounters an issue due to a mutex being called inside a spinlock.
CVE-2024-45028Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: mmc: mmc_test: Fix NULL dereference on allocation failure If the "test->highmem = alloc_pages()" allocation fails then calling __free_pages(test->highmem) will result in…
CVE-2024-45027Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check for xhci->interrupters being allocated in xhci_mem_clearup() If xhci_mem_init() fails, it calls into xhci_mem_cleanup() to mop up the damage.
CVE-2024-45025Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE copy_fd_bitmaps(new, old, count) is expected to copy the first count/BITS_PER_LONG bits from old->full_fd…
CVE-2024-45024Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb vs.
CVE-2024-45022Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 The __vmap_pages_range_noflush() assumes its argument pages** contains pages wi…
CVE-2024-45021Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: memcg_write_event_control(): fix a user-triggerable oops we are *not* guaranteed that anything past the terminating NUL is mapped (let alone initialized with anything sa…
CVE-2024-45020Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a kernel verifier crash in stacksafe() Daniel Hodges reported a kernel verifier crash when playing with sched-ext.
CVE-2024-45019Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Take state lock during tx timeout reporter mlx5e_safe_reopen_channels() requires the state lock taken.
CVE-2024-45018Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: initialise extack before use Fix missing initialisation of extack in flow offload.
CVE-2024-45017Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix IPsec RoCE MPV trace call Prevent the call trace below from happening, by not allowing IPsec creation over a slave, if master device doesn't support IPsec.
CVE-2024-45016Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: netem: fix return value if duplicate enqueue fails There is a bug in netem_enqueue() introduced by commit 5845f706388a ("net: netem: fix skb length BUG_ON in __skb_to_sg…
CVE-2024-45015Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable() For cases where the crtc's connectors_changed was set without enable/active getting toggled , the…
CVE-2024-45014Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: s390/boot: Avoid possible physmem_info segment corruption When physical memory for the kernel image is allocated it does not consider extra memory required for offsettin…
CVE-2024-45013Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit 4733b65d82bd ("nvme: start keep-alive after admin queue setup") moves starting keep-alive from nvme_start_c…
CVE-2024-45012Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: use dma non-coherent allocator Currently, enabling SG_DEBUG in the kernel will cause nouveau to hit a BUG() on startup, when the iommu is enabled: ker…
CVE-2024-45011Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when probing device Ensure, as the driver probes the device, that all endpoints that the driver may attempt to access exist and are o…
CVE-2024-45010Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only mark 'subflow' endp as available Adding the following warning ...
CVE-2024-45009Medium5.52024-09-11In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only decrement add_addr_accepted for MPJ req Adding the following warning ...
CVE-2024-46711Medium4.72024-09-13In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: fix ID 0 endp usage after multiple re-creations 'local_addr_used' and 'add_addr_accepted' are decremented for addresses not related to the initial subflow (ID…
CVE-2024-46710Medium4.72024-09-13In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Prevent unmapping active read buffers The kms paths keep a persistent map active to read and compare the cursor buffer.
CVE-2024-46704Medium4.72024-09-13In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix spruious data race in __flush_work() When flushing a work item for cancellation, __flush_work() knows that it exclusively owns the work item through its P…
CVE-2024-46693Medium4.72024-09-13In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pmic_glink: Fix race during initialization As pointed out by Stephen Boyd it is possible that during initialization of the pmic_glink child drivers, the prote…
CVE-2024-46679Medium4.72024-09-13In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when getting link settings A sysfs reader can race with a device reset or removal, attempting to read device state when the device is no…
CVE-2024-46695Medium4.42024-09-13In the Linux kernel, the following vulnerability has been resolved: selinux,smack: don't bypass permissions check in inode_setsecctx hook Marek Gresko reports that the root user on an NFS client is able to change the security labels on f…

N/a · 48 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-46049Critical9.82024-09-13Tenda O6 V3.0 firmware V1.0.0.7(2054) contains a stack overflow vulnerability in the formexeCommand function.
CVE-2024-46048Critical9.82024-09-13Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i
CVE-2024-46046Critical9.82024-09-13Tenda FH451 v1.0.0.9 has a stack overflow vulnerability located in the RouteStatic function.
CVE-2024-46045Critical9.82024-09-13Tenda CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the frmL7PlotForm function.
CVE-2024-46044Critical9.82024-09-13CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the fromqossetting function.
CVE-2024-44541Critical9.82024-09-11evilnapsis Inventio Lite Versions v4 and before is vulnerable to SQL Injection via the "username" parameter in "/?action=processlogin."
CVE-2023-36103Critical9.82024-09-10Command Injection vulnerability in goform/SetIPTVCfg interface of Tenda AC15 V15.03.05.20 allows remote attackers to run arbitrary commands via crafted POST request.
CVE-2024-44902Critical9.82024-09-09A deserialization vulnerability in Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.
CVE-2024-44849Critical9.82024-09-09Qualitor up to 8.24 is vulnerable to Remote Code Execution (RCE) via Arbitrary File Upload in checkAcesso.php.
CVE-2024-44721Critical9.82024-09-09SeaCMS v13.1 was discovered to a Server-Side Request Forgery (SSRF) via the url parameter at /admin_reslib.php.
CVE-2024-40457Critical9.12024-09-12No-IP Dynamic Update Client (DUC) v3.x uses cleartext credentials that may occur on a command line or in a file.
CVE-2024-43040Critical9.12024-09-10Renwoxing Enterprise Intelligent Management System before v3.0 was discovered to contain a SQL injection vulnerability via the parid parameter at /fx/baseinfo/SearchInfo.
CVE-2024-44577High8.82024-09-11RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the time_date function.
CVE-2024-44574High8.82024-09-11RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the sys_conf function.
CVE-2024-44572High8.82024-09-11RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the sys_mgmt function.
CVE-2024-44571High8.82024-09-11RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain incorrect access control in the mService function at phpinf.php.
CVE-2024-44570High8.82024-09-11RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a code injection vulnerability via the getParams function in phpinf.php.
CVE-2024-44335High8.82024-09-09D-Link DI-7003G v19.12.24A1, DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution (RCE) via version…
CVE-2024-44334High8.82024-09-09D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution due to insufficient parameter filtering…
CVE-2024-44333High8.82024-09-09D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution.
CVE-2024-21529High8.22024-09-11Versions of the package dset before 3.1.4 are vulnerable to Prototype Pollution via the dset function due improper user input sanitization.
CVE-2024-44667High8.02024-09-10Shenzhen Haichangxing Technology Co., Ltd HCX H822 4G LTE Router M7628NNxISPxUIv2_v1.0.1557.15.35_P0 is vulnerable to Incorrect Access Control.
CVE-2024-31960High7.82024-09-10An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400.
CVE-2024-46047High7.52024-09-13Tenda FH451 v1.0.0.9 has a stack overflow vulnerability in the fromDhcpListClient function.
CVE-2024-44459High7.52024-09-12A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS) via excessive memory consumption.
CVE-2024-34334High7.52024-09-12ORDAT FOSS-Online before v2.24.01 was discovered to contain a SQL injection vulnerability via the forgot password function.
CVE-2024-44867High7.52024-09-10phpok v3.0 was discovered to contain an arbitrary file read vulnerability via the component /autoload/file.php.
CVE-2024-37728High7.52024-09-10Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface
CVE-2024-44720High7.52024-09-09SeaCMS v13.1 was discovered to an arbitrary file read vulnerability via the component admin_safe.php.
CVE-2024-27387Medium6.72024-09-09An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330.
CVE-2024-27383Medium6.72024-09-09An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330.
CVE-2024-34335Medium6.12024-09-12ORDAT FOSS-Online before version 2.24.01 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the login page.
CVE-2024-44085Medium6.12024-09-09ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro.
CVE-2023-50883Medium6.12024-09-09ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sandbox escape is possible by directly calling the constructor of the Function object.
CVE-2024-25074Medium5.92024-09-10An issue was discovered in Samsung Semiconductor Mobile Processor and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W92…
CVE-2024-25073Medium5.92024-09-10An issue was discovered in Samsung Semiconductor Mobile Processor and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W92…
CVE-2024-21528Medium5.92024-09-10All versions of the package node-gettext are vulnerable to Prototype Pollution via the addTranslations() function in gettext.js due to improper user input sanitization.
CVE-2024-41629Medium5.52024-09-12An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to obtain sensitive information via the plaintext storage of credentials
CVE-2024-44851Medium5.42024-09-11A stored cross-site scripting (XSS) vulnerability in the Discussion section of Perfex CRM v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Content parameter.
CVE-2024-34336Medium5.32024-09-12User enumeration vulnerability in ORDAT FOSS-Online before v2.24.01 allows attackers to determine if an account exists in the application by comparing the server responses of the forgot password functionality.
CVE-2024-44685Medium5.02024-09-13Titan SFTP and Titan MFT Server 2.0.25.2426 and earlier have a vulnerability a vulnerability where sensitive information, including passwords, is exposed in clear text within the JSON response when configuring SMTP settings via the Web UI.
CVE-2024-44573Medium4.72024-09-11A stored cross-site scripting (XSS) vulnerability in the VLAN configuration of RELY-PCIe v22.2.1 to v23.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVE-2024-27365Medium4.42024-09-09An issue was discovered in Samsung Mobile Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930.
CVE-2024-27368Medium4.42024-09-09An issue was discovered in Samsung Mobile Processor Exynos Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930.
CVE-2024-27367Medium4.42024-09-09An issue was discovered in Samsung Mobile Processor Exynos Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930.
CVE-2024-27366Medium4.42024-09-09An issue was discovered in Samsung Mobile Processor, Wearable Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930.
CVE-2024-27364Medium4.42024-09-09An issue was discovered in Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930.
CVE-2024-44575Low3.72024-09-11RELY-PCIe v22.2.1 to v23.1.0 does not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session.

Ivanti · 23 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-29847Critical9.82024-09-12Deserialization of untrusted data in the agent portal of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution.
CVE-2024-44107High8.82024-09-10DLL hijacking in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges and achieve arbitrary code execution.
CVE-2024-44106High8.82024-09-10Insufficient server-side controls in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges.
CVE-2024-44104High8.82024-09-10An incorrectly implemented authentication scheme that is subjected to a spoofing attack in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privil…
CVE-2024-44103High8.82024-09-10DLL hijacking in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges.
CVE-2024-37397High8.22024-09-12An External XML Entity (XXE) vulnerability in the provisioning web service of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to leak API secrets.
CVE-2024-44105High8.22024-09-10Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to obtain OS credentials.
CVE-2024-8191High7.82024-09-10SQL injection in the management console of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution.
CVE-2024-8012High7.82024-09-10An authentication bypass weakness in the message broker service of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges.
CVE-2024-34785High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-34783High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-34779High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-32848High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-32846High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-32845High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-32843High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-32842High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-32840High7.22024-09-12An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-8190High7.2KEV2024-09-10An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows a remote authenticated attacker to obtain remote code execution.
CVE-2024-8441Medium6.72024-09-10An uncontrolled search path in the agent of Ivanti EPM before 2022 SU6, or the 2024 September update allows a local authenticated attacker with admin privileges to escalate their privileges to SYSTEM.
CVE-2024-8321Medium5.82024-09-10Missing authentication in Network Isolation of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to isolate managed devices from the network.
CVE-2024-8320Medium5.32024-09-10Missing authentication in Network Isolation of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to spoof Network Isolation status of managed devices.
CVE-2024-8322Medium4.32024-09-10Weak authentication in Patch Management of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker to access restricted functionality.

Google · 21 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8639High8.82024-09-11Use after free in Autofill in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2024-8638High8.82024-09-11Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.
CVE-2024-8637High8.82024-09-11Use after free in Media Router in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2024-8636High8.82024-09-11Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2024-44095High7.82024-09-13In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible corrupt memory due to a logic error in the code.
CVE-2024-44094High7.82024-09-13In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible memory corruption due to improper input validation.
CVE-2024-44093High7.82024-09-13In ppmp_unprotect_buf of drm/code/drm_fw.c, there is a possible memory corruption due to a logic error in the code.
CVE-2024-44092High7.82024-09-13There is a possible LCS signing enforcement missing due to test/debugging code left in a production build.
CVE-2024-29779High7.82024-09-13there is a possible escalation of privilege due to an unusual root cause.
CVE-2024-40662High7.82024-09-11In scheme of Uri.java, there is a possible way to craft a malformed Uri object due to improper input validation.
CVE-2024-40658High7.82024-09-11In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to a heap buffer overflow.
CVE-2024-40657High7.82024-09-11In addPreferencesForType of AccountTypePreferenceLoader.java, there is a possible way to disable apps for other users due to a confused deputy.
CVE-2024-40655High7.82024-09-11In bindAndGetCallIdentification of CallScreeningServiceHelper.java, there is a possible way to maintain a while-in-use permission in the background due to a permissions bypass.
CVE-2024-40654High7.82024-09-11In multiple locations, there is a possible permission bypass due to a confused deputy.
CVE-2024-40652High7.82024-09-11In onCreate of SettingsHomepageActivity.java, there is a possible way to access the Settings app while the device is provisioning due to a missing permission check.
CVE-2024-40650High7.82024-09-11In wifi_item_edit_content of styles.xml , there is a possible FRP bypass due to Missing check for FRP state.
CVE-2024-31336High7.82024-09-11In PVRSRVBridgeRGXKickTA3D2 of server_rgxta3d_bridge.c, there is a possible arbitrary code execution due to improper input validation.
CVE-2024-23716High7.02024-09-11In DevmemIntPFNotify of devicemem_server.c, there is a possible use-after-free due to a race condition.
CVE-2024-40659Medium5.52024-09-11In getRegistration of RemoteProvisioningService.java, there is a possible way to permanently disable the AndroidKeyStore key generation feature by updating the attestation keys of all installed apps due to improper input validation.
CVE-2024-40656Medium5.52024-09-11In handleCreateConferenceComplete of ConnectionServiceWrapper.java, there is a possible way to reveal images across users due to a confused deputy.
CVE-2024-44096Medium4.42024-09-13there is a possible arbitrary read due to an insecure default value.

Siemens · 21 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45032Critical10.02024-09-10A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1).
CVE-2024-33698Critical9.82024-09-10A vulnerability has been identified in Opcenter Quality (All versions < V2406), Opcenter RDnL (All versions < V2410), SIMATIC PCS neo V4.0 (All versions), SIMATIC PCS neo V4.1 (All versions < V4.1 Update 2), SIMATIC PCS neo V5.0 (All versi…
CVE-2024-35783Critical9.12024-09-10A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information Server 2020 (All versions < V2020 SP2 Update 5), SIMATIC Information Server 2022 (All versions < V2022 SP1 Update 2), SIMATIC PCS 7 V9.1 (All ver…
CVE-2024-41171High8.82024-09-10A vulnerability has been identified in SINUMERIK 828D V4 (All versions), SINUMERIK 828D V5 (All versions < V5.24), SINUMERIK 840D sl V4 (All versions), SINUMERIK ONE (All versions < V6.24).
CVE-2024-44087High8.62024-09-10A vulnerability has been identified in Automation License Manager V5 (All versions), Automation License Manager V6.0 (All versions < V6.0 SP12 Upd3), Automation License Manager V6.2 (All versions < V6.2 Upd3).
CVE-2024-41170High7.82024-09-10A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302.0015), Tecnomatix Plant Simulation V2404 (All versions < V2404.0004).
CVE-2024-43647High7.52024-09-10A vulnerability has been identified in SIMATIC S7-200 SMART CPU CR40 (6ES7288-1CR40-0AA0) (All versions), SIMATIC S7-200 SMART CPU CR60 (6ES7288-1CR60-0AA0) (All versions), SIMATIC S7-200 SMART CPU SR20 (6ES7288-1SR20-0AA0) (All versions)…
CVE-2024-37990Medium6.52024-09-10A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi…
CVE-2023-30756Medium5.92024-09-10A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl.
CVE-2023-28827Medium5.92024-09-10A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl.
CVE-2024-43781Medium5.52024-09-10A vulnerability has been identified in SINUMERIK 828D V4 (All versions < V4.95 SP3), SINUMERIK 840D sl V4 (All versions < V4.95 SP3 in connection with using Create MyConfig (CMC) <= V4.8 SP1 HF6), SINUMERIK ONE (All versions < V6.23 in con…
CVE-2024-37993Medium5.32024-09-10A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi…
CVE-2024-37991Medium5.32024-09-10A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi…
CVE-2023-49069Medium5.32024-09-10A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.17.0 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions < V10.12.11 only if the basic authentication mec…
CVE-2024-37992Medium4.92024-09-10A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi…
CVE-2024-42344Medium4.42024-09-10A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2).
CVE-2023-30755Medium4.42024-09-10A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl.
CVE-2024-42345Medium4.32024-09-10A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP2).
CVE-2024-37994Medium4.32024-09-10A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi…
CVE-2024-32006Medium4.32024-09-10A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2).
CVE-2024-37995Low2.72024-09-10A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi…

Gitlab · 16 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45409Critical10.02024-09-10The Ruby SAML library is for implementing the client side of a SAML authorization.
CVE-2024-6678Critical9.92024-09-12An issue was discovered in GitLab CE/EE affecting all versions starting from 8.14 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, which allows an attacker to trigger a pipeline as an arbitrary u…
CVE-2024-8640High8.52024-09-12An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2.
CVE-2024-8635High7.72024-09-12A server-side request forgery issue has been discovered in GitLab EE affecting all versions starting from 16.8 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2.
CVE-2024-8124High7.52024-09-12An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7, starting from 17.2 prior to 17.2.5, starting from 17.3 prior to 17.3.2 which could cause Denial of Service via sending a specific POST requ…
CVE-2024-8641Medium6.72024-09-12An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2.
CVE-2024-8311Medium6.52024-09-12An issue was discovered with pipeline execution policies in GitLab EE affecting all versions from 17.2 prior to 17.2.5, 17.3 prior to 17.3.2 which allows authenticated users to bypass variable overwrite protection via inclusion of a CI/CD…
CVE-2024-4660Medium6.52024-09-12An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2.
CVE-2024-8754Medium6.42024-09-12An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2.
CVE-2024-4612Medium6.42024-09-12An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2.
CVE-2024-8631Medium5.52024-09-12A privilege escalation issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2.
CVE-2024-2743Medium5.32024-09-12An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permissions and leak variables.
CVE-2024-5435Medium4.52024-09-12An issue has been discovered discovered in GitLab EE/CE affecting all versions starting from 15.10 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2 will disclose user password from…
CVE-2024-6389Medium4.32024-09-12An issue was discovered in GitLab-CE/EE affecting all versions starting with 17.0 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2.
CVE-2024-4472Medium4.02024-09-12An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs.
CVE-2024-6446Low3.52024-09-12An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2 prior to 17.2.5 and 17.3 prior to 17.3.2.

Sap_se · 16 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45286Medium6.52024-09-10Due to lack of proper authorization checks when calling user, a function module in obsolete Tobin interface in SAP Production and Revenue Accounting allows unauthorized access that could lead to disclosure of highly sensitive data.
CVE-2024-45279Medium6.12024-09-10Due to insufficient input validation, CRM Blueprint Application Builder Panel of SAP NetWeaver Application Server for ABAP allows an unauthenticated attacker to craft a URL link which could embed a malicious JavaScript.
CVE-2024-42378Medium6.12024-09-10Due to weak encoding of user-controlled inputs, eProcurement on SAP S/4HANA allows malicious scripts to be executed in the application, potentially leading to a Reflected Cross-Site Scripting (XSS) vulnerability.
CVE-2024-45283Medium6.02024-09-10SAP NetWeaver AS for Java allows an authorized attacker to obtain sensitive information.
CVE-2024-45285Medium5.42024-09-10The RFC enabled function module allows a low privileged user to perform denial of service on any user and also change or delete favourite nodes.
CVE-2024-44117Medium5.42024-09-10The RFC enabled function module allows a low privileged user to perform various actions, such as modifying the URLs of any user's favourite nodes and workbook ID.
CVE-2024-42371Medium5.42024-09-10The RFC enabled function module allows a low privileged user to delete the workplace favourites of any user.
CVE-2024-45280Medium4.82024-09-10Due to insufficient encoding of user-controlled inputs, SAP NetWeaver AS Java allows malicious scripts to be executed in the login application.
CVE-2024-44120Medium4.72024-09-10SAP NetWeaver Enterprise Portal is vulnerable to reflected cross site scripting due to insufficient encoding of user-controlled input.
CVE-2024-44121Medium4.32024-09-10Under certain conditions Statutory Reports in SAP S/4 HANA allows an attacker with basic privileges to access information which would otherwise be restricted.
CVE-2024-44116Medium4.32024-09-10The RFC enabled function module allows a low privileged user to add any workbook to any user's workplace favourites.
CVE-2024-44115Medium4.32024-09-10The RFC enabled function module allows a low privileged user to add URLs to any user's workplace favourites.
CVE-2024-44113Medium4.32024-09-10Due to missing authorization checks, SAP Business Warehouse (BEx Analyzer) allows an authenticated attacker to access information over the network which is otherwise restricted.
CVE-2024-42380Medium4.32024-09-10The RFC enabled function module allows a low privileged user to read any user's workplace favourites and user menu along with all the specific data of each node.
CVE-2024-41729Medium4.32024-09-10Due to missing authorization checks, SAP BEx Analyzer allows an authenticated attacker to access information over the network which is otherwise restricted.
CVE-2024-45284Low2.42024-09-10An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted.

Lenovo · 12 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8281High7.22024-09-13An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection through specially crafted command line input in the XCC SSH captive shell.
CVE-2024-8280High7.22024-09-13An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection or cause a recoverable denial of service using a specially crafted file.
CVE-2024-8279High7.22024-09-13A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.
CVE-2024-8278High7.22024-09-13A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands.
CVE-2024-7756Medium6.82024-09-13A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could allow a local attacker to escalate privileges by accessing an embedded UEFI shell.
CVE-2024-45101Medium6.82024-09-13A privilege escalation vulnerability was discovered when Single Sign On (SSO) is enabled that could allow an attacker to intercept a valid, authenticated LXCA user’s XCC session if they can convince the user to click on a specially crafted…
CVE-2024-4550Medium6.72024-09-13A potential buffer overflow vulnerability was reported in some Lenovo ThinkSystem and ThinkStation products that could allow a local attacker with elevated privileges to execute arbitrary code.
CVE-2024-45105Medium6.72024-09-13An internal product security audit discovered a UEFI SMM (System Management Mode) callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execute arbitrary code.
CVE-2024-3100Medium6.72024-09-13A potential buffer overflow vulnerability was reported in some Lenovo Notebook products that could allow a local attacker with elevated privileges to execute arbitrary code.
CVE-2024-45104Medium6.32024-09-13A valid, authenticated LXCA user without sufficient privileges may be able to use the device identifier to modify an LXCA managed device through a specially crafted web API call.
CVE-2024-8059Medium4.32024-09-13IPMI credentials may be captured in XCC audit log entries when the account username length is 16 characters.
CVE-2024-45103Medium4.32024-09-13A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges.

Phoenix Contact · 12 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7699High8.82024-09-10An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data.
CVE-2024-43388High8.82024-09-10A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.
CVE-2024-43387High8.82024-09-10A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.
CVE-2024-43386High8.82024-09-10A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.
CVE-2024-43385High8.82024-09-10A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.
CVE-2024-43393High8.12024-09-10A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW…
CVE-2024-43392High8.12024-09-10A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW…
CVE-2024-43391High8.12024-09-10A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead…
CVE-2024-43390High8.12024-09-10A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
CVE-2024-43389High8.12024-09-10A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
CVE-2024-7698Medium5.72024-09-10A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.
CVE-2024-7734Medium5.32024-09-10An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service.

Mindsdb · 11 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45856Critical9.02024-09-12A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, or dataset containing arbitrary JavaScrip…
CVE-2024-45852High8.82024-09-12Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded model to run arbitrary code on the server when interacted with.
CVE-2024-45851High8.82024-09-12An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server.
CVE-2024-45850High8.82024-09-12An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server.
CVE-2024-45849High8.82024-09-12An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server.
CVE-2024-45848High8.82024-09-12An arbitrary code execution vulnerability exists in versions 23.12.4.0 up to 24.7.4.1 of the MindsDB platform, when the ChromaDB integration is installed on the server.
CVE-2024-45847High8.82024-09-12An arbitrary code execution vulnerability exists in versions 23.11.4.2 up to 24.7.4.1 of the MindsDB platform, when one of several integrations is installed on the server.
CVE-2024-45846High8.82024-09-12An arbitrary code execution vulnerability exists in versions 23.10.3.0 up to 24.7.4.1 of the MindsDB platform, when the Weaviate integration is installed on the server.
CVE-2024-45855High7.12024-09-12Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when using ‘finetune’ on it.
CVE-2024-45854High7.12024-09-12Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when a ‘describe’ query is run on it.
CVE-2024-45853High7.12024-09-12Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when used for a prediction.

Cisco · 10 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-20398High8.82024-09-11A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device. This vulnerability is due to insufficient…
CVE-2024-20381High8.82024-09-11A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is used by the web-based management interfaces of Cisco Optical Site Manager and Cisco RV340 Dual WAN Gigabit VPN Routers cou…
CVE-2024-20304High8.62024-09-11A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because t…
CVE-2024-20489High8.42024-09-11A vulnerability in the storage method of the PON Controller configuration file could allow an authenticated, local attacker with low privileges to obtain the MongoDB credentials. This vulnerability is due to improper storage of the unen…
CVE-2024-20406High7.42024-09-11A vulnerability in the segment routing feature for the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on a…
CVE-2024-20317High7.42024-09-11A vulnerability in the handling of specific Ethernet frames by Cisco IOS XR Software for various Cisco Network Convergence System (NCS) platforms could allow an unauthenticated, adjacent attacker to cause critical priority packets to be dr…
CVE-2024-20430High7.32024-09-12A vulnerability in Cisco Meraki Systems Manager (SM) Agent for Windows could allow an authenticated, local attacker to execute arbitrary code with elevated privileges.&nbsp; This vulnerability is due to incorrect handling of directory s…
CVE-2024-20483High7.22024-09-11Multiple vulnerabilities in Cisco Routed PON Controller Software, which runs as a docker container on hardware that is supported by Cisco IOS XR Software, could allow an authenticated, remote attacker with Administrator-level privileges on…
CVE-2024-20343Medium5.52024-09-11A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system.
CVE-2024-20390Medium5.32024-09-11A vulnerability in the Dedicated XML Agent feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on XML TCP listen port 38751. This vulnerability is due to a lack of proper e…

Fortinet · 10 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45327High7.52024-09-11An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0 through 7.3.2, 7.2.0 through 7.2.2, 7.0.0 through 7.0.3 change password endpoint may allow an authenticated attacker to perform a brute force…
CVE-2024-33508High7.32024-09-10An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in Fortinet FortiClientEMS 7.2.0 through 7.2.4, 7.0.0 through 7.0.12 may allow an unauthenticated attacker to execute limited and…
CVE-2024-31489Medium6.82024-09-10AAn improper certificate validation vulnerability [CWE-295] in FortiClientWindows 7.2.0 through 7.2.2, 7.0.0 through 7.0.11, FortiClientLinux 7.2.0, 7.0.0 through 7.0.11 and FortiClientMac 7.0.0 through 7.0.11, 7.2.0 through 7.2.4 may all…
CVE-2024-21753Medium5.52024-09-10A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.13, 6.4.0 through 6.4.9, 6.2.0 through 6.2.9, 6.0.0 through 6.0.8, 1.2.1 through 1…
CVE-2023-44254Medium5.02024-09-10An authorization bypass through user-controlled key [CWE-639] vulnerability in FortiAnalyzer version 7.4.1 and before 7.2.5 and FortiManager version 7.4.1 and before 7.2.5 may allow a remote attacker with low privileges to read sensitive d…
CVE-2022-45856Medium4.82024-09-10An improper certificate validation vulnerability [CWE-295] in FortiClientWindows 6.4 all versions, 7.0.0 through 7.0.7, FortiClientMac 6.4 all versions, 7.0 all versions, 7.2.0 through 7.2.4, FortiClientLinux 6.4 all versions, 7.0 all vers…
CVE-2024-45323Medium4.32024-09-10An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6.0 all versions may allow in a shared environment context an authenticated admin with REST API permissions in his profile and restricted to a…
CVE-2024-31490Medium4.32024-09-10An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6, FortiSandbox 4.0 all versions, FortiSandbox 3.2.2 through 3.2.4, FortiSandbox 3.1.5…
CVE-2024-35282Medium4.22024-09-10A cleartext storage of sensitive information in memory vulnerability [CWE-316] affecting FortiClient VPN iOS 7.2 all versions, 7.0 all versions, 6.4 all versions, 6.2 all versions, 6.0 all versions may allow an unauthenticated attacker tha…
CVE-2024-36511Low3.72024-09-10An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web Application Firewall (WAF) 7.4.0 through 7.4.4, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions, 6.0 all…

Dell · 8 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39583High8.12024-09-10Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability.
CVE-2024-42427High7.62024-09-10Dell ThinOS versions 2402 and 2405, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability.
CVE-2024-39581High7.32024-09-10Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a File or Directories Accessible to External Parties vulnerability.
CVE-2024-39580Medium6.72024-09-10Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control vulnerability.
CVE-2024-39574Medium6.72024-09-10Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability.
CVE-2024-42424Medium5.32024-09-10Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input Validation vulnerability.
CVE-2024-42425Low3.82024-09-10Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory Location After End of Buffer vulnerability.
CVE-2024-39582Low2.32024-09-10Dell PowerScale InsightIQ, version 5.0, contain a Use of hard coded Credentials vulnerability.

Loftware · 8 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2023-37234Critical9.82024-09-10Loftware Spectrum through 4.6 has unprotected JMX Registry.
CVE-2023-37231Critical9.82024-09-10Loftware Spectrum before 4.6 HF14 uses a Hard-coded Password.
CVE-2023-37227Critical9.82024-09-10Loftware Spectrum before 4.6 HF13 Deserializes Untrusted Data.
CVE-2023-37226Critical9.82024-09-10Loftware Spectrum before 4.6 HF14 has Missing Authentication for a Critical Function.
CVE-2023-37233High8.82024-09-10Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks.
CVE-2023-37230High8.82024-09-10Loftware Spectrum (testDeviceConnection) before 5.1 allows SSRF.
CVE-2023-37229High8.82024-09-10Loftware Spectrum before 5.1 allows SSRF.
CVE-2023-37232High7.52024-09-10Loftware Spectrum through 4.6 exposes Sensitive Information (Logs) to an Unauthorized Actor.

Rockwell Automation · 8 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7961Critical9.82024-09-12A path traversal vulnerability exists in the Rockwell Automation affected product.
CVE-2024-45824Critical9.82024-09-12CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products.
CVE-2024-7960Critical9.12024-09-12The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings.
CVE-2024-8533High8.82024-09-12A privilege escalation vulnerability exists in the Rockwell Automation affected products.
CVE-2024-45823High8.12024-09-12CVE-2024-45823 IMPACT An authentication bypass vulnerability exists in the affected product.
CVE-2024-6077High7.52024-09-12A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object.
CVE-2024-45825High7.52024-09-12CVE-2024-45825 IMPACT A denial-of-service vulnerability exists in the affected products.
CVE-2024-45826Medium6.82024-09-12CVE-2024-45826 IMPACT Due to improper input validation, a path traversal and remote code execution vulnerability exists when the ThinManager® processes a crafted POST request.

Microfocus · 6 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2021-22532High7.62024-09-12Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in OpenText™ eDirectory before 9.2.4.0000.
CVE-2021-38133High7.42024-09-12Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory.
CVE-2021-22533Medium6.52024-09-12Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.4.0000.
CVE-2021-38131Medium5.42024-09-12Possible Cross-Site Scripting (XSS) Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.5.0000.
CVE-2021-22503Medium5.42024-09-12Possible Improper Neutralization of Input During Web Page Generation Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.3.0000.
CVE-2021-38132Medium5.32024-09-12Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory.

Zephyrproject · 6 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5754High8.22024-09-13BT: Encryption procedure host vulnerability
CVE-2024-6259High7.62024-09-13BT: HCI: adv_ext_report Improper discarding in adv_ext_report
CVE-2024-6137High7.62024-09-13BT: Classic: SDP OOB access in get_att_search_list
CVE-2024-6135High7.62024-09-13BT:Classic: Multiple missing buf length checks
CVE-2024-6258Medium6.82024-09-13BT: Missing length checks of net_buf in rfcomm_handle_data
CVE-2024-5931Medium6.32024-09-13BT: Unchecked user input in bap_broadcast_assistant

Palo Alto Networks · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8686High7.22024-09-11A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as root on the firewall.
CVE-2024-8691High7.12024-09-11A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user.
CVE-2024-8687High7.12024-09-11An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode.
CVE-2024-8688Medium4.42024-09-11An improper neutralization of matching symbols vulnerability in the Palo Alto Networks PAN-OS command line interface (CLI) enables authenticated administrators (including read-only administrators) with access to the CLI to to read arbitrar…
CVE-2024-86892024-09-11A problem with the ActiveMQ integration for both Cortex XSOAR and Cortex XSIAM can result in the cleartext exposure of the configured ActiveMQ credentials in log bundles.

Red Hat · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2023-6841High7.52024-09-10A denial of service vulnerability was found in keycloak where the amount of attributes per object is not limited,an attacker by sending repeated HTTP requests could cause a resource exhaustion when the application send back rows with long…
CVE-2024-7341High7.12024-09-09A session fixation issue was discovered in the SAML adapters provided by Keycloak.
CVE-2024-6840Medium6.62024-09-12An improper authorization flaw exists in the Ansible Automation Controller.
CVE-2024-7260Medium6.12024-09-09An open redirect vulnerability was found in Keycloak.
CVE-2024-7318Medium4.82024-09-09A vulnerability was found in Keycloak.

Reedos · 5 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45790Critical9.82024-09-11This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for excessive failed authentication attempts on its API based login.
CVE-2024-45788High7.52024-09-11This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing rate limiting on OTP requests in certain API endpoints.
CVE-2024-45787Medium6.52024-09-11This vulnerability exists in Reedos aiM-Star version 2.0.1 due to transmission of sensitive information in plain text in certain API endpoints.
CVE-2024-45786Medium6.52024-09-11This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper access controls on its certain API endpoints.
CVE-2024-45789Medium4.32024-09-11This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper validation of the ‘mode’ parameter in the API endpoint used during the registration process.

Axis Communications Ab · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6509Medium6.52024-09-10Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi was vulnerable for file globbing which could lead to resource exhaustion of the Axis device.
CVE-2024-6173Medium6.52024-09-1051l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API parameter allowed the use of arbitrary values allowing for an attacker to block access to the guard tour configuration page in the web interface of th…
CVE-2024-7784Medium6.12024-09-10During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the protection for device tampering (commonly known as Secure Boot) in AXIS OS making it vulnerable to a sophisticated attack to bypass this prote…
CVE-2024-0067Medium4.32024-09-10Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API ledlimit.cgi was vulnerable for path traversal attacks allowing to list folder/file names on the local file system of the Axis device.

Gallagher · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-43690High8.02024-09-11Inclusion of Functionality from Untrusted Control Sphere(CWE-829) in the Command Centre Server and Workstations may allow an attacker to perform Remote Code Execution (RCE).
CVE-2024-24972Medium6.52024-09-11Buffer Copy without Checking Size of Input (CWE-120) in the Controller 6000 and Controller 7000 diagnostic web interface allows an authorised and authenticated operator to reboot the Controller, causing a Denial of Service.
CVE-2024-23906Medium6.12024-09-11Improper Neutralization of Input During Web Page Generation (CWE-79) in the Controller 6000 and Controller 7000 diagnostic webpage allows an attacker to modify Controller configuration during an authenticated Operator's session.
CVE-2024-39808Medium4.62024-09-11Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP message handling, allows an attacker with physical access to Controller wiring to instigate a reboot leading to a denial of service.

Lunary · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6862High8.12024-09-13A Cross-Site Request Forgery (CSRF) vulnerability exists in lunary-ai/lunary version 1.2.34 due to overly permissive CORS settings.
CVE-2024-6867Medium6.52024-09-13An information disclosure vulnerability exists in the lunary-ai/lunary, specifically in the `runs/{run_id}/related` endpoint.
CVE-2024-6087Medium6.52024-09-13An improper access control vulnerability exists in lunary-ai/lunary at the latest commit (a761d83) on the main branch.
CVE-2024-6582Medium4.32024-09-13A broken access control vulnerability exists in the latest version of lunary-ai/lunary.

Mayurik · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44430Critical9.82024-09-13SQL Injection vulnerability in Best Free Law Office Management Software-v1.0 allows an attacker to execute arbitrary code and obtain sensitive information via a crafted payload to the kortex_lite/control/register_case.php interface
CVE-2024-8709Medium6.32024-09-12A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0.
CVE-2024-8708Low3.52024-09-12A vulnerability was found in SourceCodester Best House Rental Management System 1.0.
CVE-2024-8610Low3.52024-09-09A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0.

Sap · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45281Medium5.82024-09-10SAP BusinessObjects Business Intelligence Platform allows a high privilege user to run client desktop applications even if some of the DLLs are not digitally signed or if the signature is broken.
CVE-2024-44112Medium4.32024-09-10Due to missing authorization check in SAP for Oil & Gas (Transportation and Distribution), an attacker authenticated as a non-administrative user could call a remote-enabled function which will allow them to delete non-sensitive entries in…
CVE-2024-41728Low2.72024-09-10Due to missing authorization check, SAP NetWeaver Application Server for ABAP and ABAP Platform allows an attacker logged in as a developer to read objects contained in a package.
CVE-2024-44114Low2.02024-09-10SAP NetWeaver Application Server for ABAP and ABAP Platform allow users with high privileges to execute a program that reveals data over the network.

Simple Online Planning · 4 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-27115Critical9.82024-09-11A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online planning tool.
CVE-2024-27114Critical9.82024-09-11A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online planning tool.
CVE-2024-27113Critical9.82024-09-11An unauthenticated Insecure Direct Object Reference (IDOR) to the database has been found in the SO Planning tool that occurs when the public view setting is enabled.
CVE-2024-27112Critical9.82024-09-11A unauthenticated SQL Injection has been found in the SO Planning tool that occurs when the public view setting is enabled.

Citrix · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7890High7.32024-09-11Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
CVE-2024-7889High7.32024-09-11Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
CVE-2024-42423Medium6.12024-09-10Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization vulnerability when Citrix CEB is enabled for WebLogin.

Code-projects · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8762Medium6.32024-09-13A vulnerability was found in code-projects Crud Operation System 1.0.
CVE-2024-8710Medium6.32024-09-12A vulnerability classified as critical was found in code-projects Inventory Management 1.0.
CVE-2024-8605Medium4.32024-09-09A vulnerability classified as problematic was found in code-projects Inventory Management 1.0.

Dani-garcia · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-39924High8.82024-09-13An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3.
CVE-2024-39925Medium6.52024-09-13An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3.
CVE-2024-39926Medium5.42024-09-13An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3.
CVESeverityCVSSKEVPublishedSummary
CVE-2024-44411Critical9.82024-09-09D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the msp_info_htm function.
CVE-2024-44410Critical9.82024-09-09D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the upgrade_filter_asp function.
CVE-2024-44375High7.52024-09-09D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function.

Eaton · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-31414Medium6.72024-09-13The Eaton Foreseer software provides users the capability to customize the dashboard in WebView pages.
CVE-2024-31415Medium6.32024-09-13The Eaton Foreseer software provides the feasibility for the user to configure external servers for multiple purposes such as network management, user management, etc.
CVE-2024-31416Medium5.62024-09-13The Eaton Foreseer software provides multiple customizable input fields for the users to configure parameters in the tool like alarms, reports, etc.

Expressjs · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45590High7.52024-09-10body-parser is Node.js body parsing middleware.
CVE-2024-43800Medium5.02024-09-10serve-static serves static files.
CVE-2024-43796Medium5.02024-09-10Express.js minimalist web framework for node.

Heyewei · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8782Medium6.32024-09-13A vulnerability was found in JFinalCMS up to 1.0.
CVE-2024-8706Medium4.32024-09-12A vulnerability was found in JFinalCMS up to 20240903.
CVE-2024-8694Low3.82024-09-11A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903.

Michalaugustyniak · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7817Medium6.52024-09-12The Misiek Photo Album WordPress plugin through 1.4.3 does not have CSRF checks in some places, which could allow attackers to make logged in users delete arbitrary albums via a CSRF attack
CVE-2024-7861Medium6.12024-09-12The Misiek Paypal WordPress plugin through 1.1.20090324 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.
CVE-2024-7818Medium6.12024-09-12The Misiek Photo Album WordPress plugin through 1.4.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.

Pega · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6701Medium5.52024-09-12Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type.
CVE-2024-6700Medium5.52024-09-12Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name.
CVE-2024-6702Medium5.22024-09-12Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage.

Scriptonite · 3 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6019Medium6.12024-09-12The Music Request Manager WordPress plugin through 1.3 does not sanitise and escape incoming music requests, which could allow unauthenticated users to perform Cross-Site Scripting attacks against administrators
CVE-2024-6018Medium6.12024-09-12The Music Request Manager WordPress plugin through 1.3 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
CVE-2024-6017Medium6.12024-09-12The Music Request Manager WordPress plugin through 1.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack

Adobe · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-41874Critical9.82024-09-13ColdFusion versions 2023.9, 2021.15 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2024-45113High7.52024-09-13ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation.

Angularjs · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8373Medium4.82024-09-09Improper sanitization of the value of the [srcset] attribute in <source> HTML elements in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-commu…
CVE-2024-8372Medium4.82024-09-09Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/Content_Spoof…

Arielhr1987 · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8732Medium6.12024-09-13The Roles & Capabilities plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.1.9.
CVE-2024-8731Medium6.12024-09-13The Cron Jobs plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.2.9.

Arnoldgoodway · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5870Medium6.42024-09-13The Tweaker5 theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter within the theme's Button shortcode in all versions up to, and including, 1.2 due to insufficient input sanitization and output escaping.
CVE-2024-5869Medium6.42024-09-13The Neighborly theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter within the theme's Button shortcode in all versions up to, and including, 1.4 due to insufficient input sanitization and output escapin…

Autocms_project · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44725High7.22024-09-09AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php.
CVE-2024-44724High7.22024-09-09AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php.

Automationdirect · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45368High8.82024-09-13The H2-DM1E PLC's authentication protocol appears to utilize either a custom encoding scheme or a challenge-response protocol.
CVE-2024-43099High8.82024-09-13The session hijacking attack targets the application layer's control mechanism, which manages authenticated sessions between a host PC and a PLC.

Azindex_project · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7688Medium6.52024-09-09The AZIndex WordPress plugin through 0.8.1 does not have CSRF checks in some places, which could allow attackers to make logged in admin delete arbitrary indexes via a CSRF attack
CVE-2024-7687Medium4.32024-09-09The AZIndex WordPress plugin through 0.8.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.

Baxter · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6795Critical10.02024-09-09In Connex health portal released before8/30/2024, SQL injection vulnerabilities were found that could have allowed an unauthenticated attacker to gain unauthorized access to Connex portal's database.  An attacker could have submitted a cr…
CVE-2024-6796High8.22024-09-09In Baxter Connex health portal released before 8/30/2024, an improper access control vulnerability has been found that could allow an unauthenticated attacker to gain unauthorized access to Connex portal's database and/or modify content.

Bplugins · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7727Medium5.32024-09-11The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on multiple functions called via the 'h5vp_ajax_handler' ajax action in all vers…
CVE-2024-7721Medium4.32024-09-11The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_password' function in all versions up to, and including, 2.5…

Docker · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8696Critical9.82024-09-12A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2.
CVE-2024-8695Critical9.82024-09-12A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2.

Eclipse · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8642High8.12024-09-11In Eclipse Dataspace Components, from version 0.5.0 and before version 0.9.0, the ConsumerPullTransferTokenValidationApiController does not check for token validity (expiry, not-before, issuance date), which can allow an attacker to bypass…
CVE-2024-8646Medium6.12024-09-11In Eclipse Glassfish versions prior to 7.0.10, a URL redirection vulnerability to untrusted sites existed.

Eladmin · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44677Critical9.82024-09-10eladmin v2.7 and before is vulnerable to Server-Side Request Forgery (SSRF) which allows an attacker to execute arbitrary code via the DatabaseController.java component.
CVE-2024-44676Medium4.82024-09-10eladmin v2.7 and before is vulnerable to Cross Site Scripting (XSS) which allows an attacker to execute arbitrary code via LocalStoreController.

Ellevo · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-42760High7.52024-09-11SQL Injection vulnerability in Ellevo v.6.2.0.38160 allows a remote attacker to obtain sensitive information via the /api/mob/instrucao/conta/destinatarios component.
CVE-2024-42759Medium6.32024-09-09An issue in Ellevo v.6.2.0.38160 allows a remote attacker to escalate privileges via the /api/usuario/cadastrodesuplente endpoint.

Espressif · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-42484Medium6.52024-09-12ESP-NOW Component provides a connectionless Wi-Fi communication protocol.
CVE-2024-42483Medium6.52024-09-12ESP-NOW Component provides a connectionless Wi-Fi communication protocol.

I-doit · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8749High8.82024-09-12SQL injection vulnerability in idoit pro version 28.
CVE-2024-8750Medium5.42024-09-12Cross-site Scripting (XSS) vulnerability in idoit pro version 28.

Ibm · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-43180Medium4.32024-09-13IBM Concert 1.0 does not set the secure attribute on authorization tokens or session cookies.
CVE-2024-27257Medium4.32024-09-10IBM OpenPages 8.3 and 9.0 potentially exposes information about client-side source code through use of JavaScript source maps to unauthorized users.

Inspireui · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8269High7.32024-09-13The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to unauthorized user registration in all versions up to, and including, 4.15.3.
CVE-2024-8242Medium4.32024-09-13The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_user_profile() function in all versions up to, and including, 4.1…

Learning Digital · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8584Critical9.82024-09-09Orca HCM from LEARNING DIGITAL has an Missing Authentication vulnerability, allowing unauthenticated remote attacker to exploit this functionality to create an account with administrator privilege and subsequently use it to log in.
CVE-2024-8585Medium6.52024-09-09Orca HCM from LEARNING DIGITA does not properly restrict a specific parameter of the file download functionality, allowing a remote attacker with regular privileges to download arbitrary system files.

Mm-breaking_news_project · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8056Medium6.12024-09-12The MM-Breaking News WordPress plugin through 0.7.9 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
CVE-2024-8054Medium6.12024-09-12The MM-Breaking News WordPress plugin through 0.7.9 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.

Mozilo · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44871High7.22024-09-10An arbitrary file upload vulnerability in the component /admin/index.php of moziloCMS v3.0 allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-44872Medium6.12024-09-10A reflected cross-site scripting (XSS) vulnerability in moziloCMS v3.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload.

Ninjateam · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6617Medium4.82024-09-13The NinjaTeam Header Footer Custom Code WordPress plugin before 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilt…
CVE-2024-6493Medium4.82024-09-13The NinjaTeam Header Footer Custom Code WordPress plugin before 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilt…

Open-xchange Gmbh · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-23185High7.52024-09-10Very large headers can cause resource exhaustion when parsing message.
CVE-2024-23184Medium5.02024-09-10Having a large number of address headers (From, To, Cc, Bcc, etc.) becomes excessively CPU intensive.

Oretnom23 · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8711Medium5.32024-09-12A vulnerability, which was classified as problematic, has been found in SourceCodester Food Ordering Management System 1.0.
CVE-2024-8604Medium4.32024-09-09A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0.

Peepso · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7655Medium4.42024-09-10The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 6.4.5.0 due to insufficient input sanitization and ou…
CVE-2024-7618Medium4.42024-09-10The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 6.4.5.0 due to insufficie…

Pillarjs · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45296High7.52024-09-09path-to-regexp turns path strings into a regular expressions.
CVE-2024-43799Medium5.02024-09-10Send is a library for streaming files from the file system as a http response.

Pixeljar · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7863Medium6.82024-09-13The Favicon Generator (CLOSED) WordPress plugin before 2.1 does not validate files to be uploaded and does not have CSRF checks, which could allow attackers to make logged in admin upload arbitrary files such as PHP on the server
CVE-2024-7864Medium6.52024-09-13The Favicon Generator (CLOSED) WordPress plugin before 2.1 does not have CSRF and path validation in the output_sub_admin_page_0() function, allowing attackers to make logged in admins delete arbitrary files on the server

Refuel · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-27321High7.82024-09-12An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its multilabel classification tasks handle provided CSV files.
CVE-2024-27320High7.82024-09-12An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its classification tasks handle provided CSV files.

Solarwinds · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-28991Critical9.02024-09-12SolarWinds Access Rights Manager (ARM) was found to be susceptible to a remote code execution vulnerability.
CVE-2024-28990Medium6.32024-09-12SolarWinds Access Rights Manager (ARM) was found to contain a hard-coded credential authentication bypass vulnerability.

Thimpress · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8529Critical10.02024-09-12The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to SQL Injection via the 'c_fields' parameter of the /wp-json/lp/v1/courses/archive-course REST API endpoint in all versions up to, and including, 4.2.7 due to insuff…
CVE-2024-8522Critical10.02024-09-12The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to SQL Injection via the 'c_only_fields' parameter of the /wp-json/learnpress/v1/courses REST API endpoint in all versions up to, and including, 4.2.7 due to insuffic…

Utarit · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3306High7.52024-09-12Authorization Bypass Through User-Controlled Key vulnerability in Utarit Information SoliClub allows Exploiting Incorrectly Configured Access Control Security Levels.
CVE-2024-3305High7.52024-09-12Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in Utarit Information SoliClub allows Retrieve Embedded Sensitive Data.

Vicidial · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8503Critical9.82024-09-10An unauthenticated attacker can leverage a time-based SQL injection vulnerability in VICIdial to enumerate database records.
CVE-2024-8504High8.82024-09-10An attacker with authenticated access to VICIdial as an "agent" can execute arbitrary shell commands as the "root" user.

Wpdeveloper · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8742Medium6.42024-09-13The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Filterable Gallery widget in all versions up to…
CVE-2024-8440Medium6.42024-09-11The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Fancy Text widget in all versions up to, and including…

Zyxel · 2 CVEs

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6342Critical9.82024-09-10**UNSUPPORTED WHEN ASSIGNED** A command injection vulnerability in the export-cgi program of Zyxel NAS326 firmware versions through V5.21(AAZF.18)C0 and NAS542 firmware versions through V5.21(ABAG.15)C0 could allow an unauthenticated attac…
CVE-2024-38270Medium5.32024-09-10An insufficient entropy vulnerability caused by the improper use of a randomness function with low entropy for web authentication tokens generation exists in the Zyxel GS1900-10HP firmware version V2.80(AAZI.0)C0.

Adeelraza · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7816Medium6.12024-09-12The Gixaw Chat WordPress plugin through 1.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.

Agpt · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6091Critical9.82024-09-11A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings.

Algoritmika · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8656Medium6.12024-09-13The WPFactory Helper plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.7.0.

Alinto · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-24510Medium6.12024-09-09Cross Site Scripting vulnerability in Alinto SOGo before 5.10.0 allows a remote attacker to execute arbitrary code via the import function to the mail component.

Allprices · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5884Medium6.42024-09-13The Beauty theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tpl_featured_cat_id’ parameter in all versions up to, and including, 1.1.4 due to insufficient input sanitization and output escaping.

Alps System Integration Co., Ltd. · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45504Medium6.52024-09-10Cross-site request forgery (CSRF) vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the…

Amcharts · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8622Medium6.12024-09-12The amCharts: Charts and Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'amcharts_javascript' parameter in all versions up to, and including, 1.4.4 due to the ability to supply arbitrary JavaScript a lack…

Angeljudesuarez · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8611Medium6.32024-09-09A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0.

Anujk305 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44798Medium4.82024-09-13phpgurukul Bus Pass Management System 1.0 is vulnerable to Cross-site scripting (XSS) in /admin/pass-bwdates-reports-details.php via fromdate and todate parameters.

Apple · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8258High7.82024-09-10Improper Control of Generation of Code ('Code Injection') in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration.

Artembovkun · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8543Medium6.42024-09-10The Slider comparison image before and after plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's [sciba] shortcode in all versions up to, and including, 0.8.3 due to insufficient input sanitization and output…

Avg · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6510High7.82024-09-12Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking.

Axis · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6979Medium6.82024-09-10Amin Aliakbari, member of the AXIS OS Bug Bounty Program, has found a broken access control which would lead to less-privileged operator- and/or viewer accounts having more privileges than designed.

Bareos · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45044High8.82024-09-10Bareos is open source software for backup, archiving, and recovery of data for operating systems.

Benjaminprojas · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2022-2446High7.22024-09-13The WP Editor plugin for WordPress is vulnerable to deserialization of untrusted input via the 'current_theme_root' parameter in versions up to, and including 1.2.9.

Berriai · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6587High7.52024-09-13A Server-Side Request Forgery (SSRF) vulnerability exists in berriai/litellm version 1.38.10.

Bitapps · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7770High8.82024-09-10The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'upload' function in all versions up to, and…

Boopathi0001 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8664Medium6.12024-09-13The WP Test Email plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.1.7.

Buffalo Inc. · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44072Medium5.72024-09-10OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters.

Buffercode · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8268High8.82024-09-10The Frontend Dashboard plugin for WordPress is vulnerable to unauthorized code execution due to insufficient filtering on callable methods/functions via the ajax_request() function in all versions up to, and including, 2.2.4.

Checkmk · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6572High7.42024-09-09Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem' in Checkmk before Checkmk 2.3.0p15, 2.2.0p33, 2.1.0p48 and 2.0.0 (EOL) allows man-in-the-middle attackers to intercept traffic

Cleanlab · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45857High7.82024-09-12Deserialization of untrusted data can occur in versions 2.4.0 or newer of the Cleanlab project, enabling a maliciously crafted datalab.pkl file to run arbitrary code on an end user’s system when the data directory is loaded.

Cminds · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5799Medium4.82024-09-12The CM Pop-Up Banners for WordPress plugin before 1.7.3 does not sanitise and escape some of its popup fields, which could allow high privilege users such as Contributors to perform Cross-Site Scripting attacks.

Code-atlantic · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5561Medium4.82024-09-09The Popup Maker WordPress plugin before 1.19.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability…

Codesys · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6876Medium4.42024-09-10Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service.

Coffee2code · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6544Medium5.32024-09-13The Custom Post Limits plugin for WordPress is vulnerable to full path disclosure in all versions up to, and including, 4.4.1.

Comfast · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44466Critical9.82024-09-11COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4.

Craftcms · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45406Medium5.52024-09-09Craft is a content management system (CMS).

Curl · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8096Medium6.52024-09-11When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the server certificate is valid, it might fail to detect some OCSP problems and instead wrongly consider the response…

Cvat · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45393Medium6.42024-09-10Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision.

Cvscvstechcom · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8730Medium6.12024-09-13The Exit Notifier plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.10.4.

Damienharper · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45592High8.22024-09-10auditor-bundle, formerly known as DoctrineAuditBundle, integrates auditor library into any Symfony 3.4+ application.

Directus · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45596High7.42024-09-10Directus is a real-time API and App dashboard for managing SQL database content.

Discourse · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45303Medium6.12024-09-12Discourse Calendar plugin adds the ability to create a dynamic calendar in the first post of a topic to Discourse.

Elastic · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-37288Critical9.92024-09-09A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML document containing a crafted payload.

Elementor · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5416Medium5.42024-09-11The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the url parameter of multiple widgets in all versions up to, and including, 3.23.4 due to insufficient inpu…

Elliot · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7820Medium6.52024-09-12The ILC Thickbox WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Emqx · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44460High7.52024-09-12An invalid read size in Nanomq v0.21.9 allows attackers to cause a Denial of Service (DoS).

Endress · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6596Critical9.82024-09-10An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context.

Enviragallery · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3899Medium4.82024-09-11The Gallery Plugin for WordPress WordPress plugin before 1.8.15 does not sanitise and escape some of its image settings, which could allow users with post-writing privilege such as Author to perform Cross-Site Scripting attacks.

Erichamby · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7766High7.22024-09-12The Adicon Server WordPress plugin through 1.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks

External-secrets · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45041High8.32024-09-09External Secrets Operator is a Kubernetes operator that integrates external secret management systems.

Freakingwildchild · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7859Medium6.52024-09-12The Visual Sound WordPress plugin through 1.03 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Gibbonedu · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-34831Medium6.12024-09-10cross-site scripting (XSS) vulnerability in Gibbon Core v26.0.00 allows an attacker to execute arbitrary code via the imageLink parameter in the library_manage_catalog_editProcess.php component.

Gsplugins · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7716Medium4.82024-09-11The Logo Slider WordPress plugin before 3.6.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability…

Gwycon · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7822Medium6.12024-09-12The Quick Code WordPress plugin through 1.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.

Halo · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-43793Medium6.32024-09-11Halo is an open source website building tool.

Hathway · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44815Medium4.62024-09-10Vulnerability in Hathway Skyworth Router CM5100 v.4.1.1.24 allows a physically proximate attacker to obtain user credentials via SPI flash Firmware W25Q64JV.

Hewlett Packard Enterprise (Hpe) · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-42500Critical9.32024-09-09HPE has identified a denial of service vulnerability in HPE HP-UX System's Network File System (NFSv4) services.

Hitachi Vantara · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-28981High8.52024-09-12Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.1.0.0 and 9.3.0.8, including 8.3.x, discloses database passwords when searching metadata injectable fields.

I13websolution · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2019-25212Medium4.92024-09-11The video carousel slider with lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficie…

Ifeelweb · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8478High7.32024-09-10The The Affiliate Super Assistent plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.5.3.

Incsub · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45625Medium6.12024-09-09Cross-site scripting vulnerability exists in Forminator versions prior to 1.34.1.

Ininet Solutions Gmbh · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8232High7.52024-09-10SpiderControl SCADA Web Server has a vulnerability that could allow an attacker to upload specially crafted malicious files without authentication.

Iovamihai · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8714Medium6.12024-09-13The WordPress Affiliates Plugin — SliceWP Affiliates plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.1…

Istyle · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45203Medium4.32024-09-09Improper authorization in handler for custom URL scheme issue in "@cosme" App for Android versions prior 5.69.0 and "@cosme" App for iOS versions prior to 6.74.0 allows an attacker to lead a user to access an arbitrary website via the vuln…

Jeecg · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-44893Critical9.82024-09-10An issue in the component /jeecg-boot/jmreport/dict/list of JimuReport v1.7.8 allows attacker to escalate privileges via a crafted GET request.

Joplin_project · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40643Critical9.62024-09-09Joplin is a free, open source note taking and to-do application.

Just-a-web-developer · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7891Medium4.82024-09-10The Floating Contact Button WordPress plugin before 2.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

Kaon · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8693Low2.42024-09-11A vulnerability, which was classified as problematic, has been found in Kaon CG3000 1.01.43.

Kasdanet · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2020-24061Medium4.32024-09-12Cross Site Scripting (XSS) Vulnerability in Firewall menu in Control Panel in KASDA KW5515 version 4.3.1.0, allows attackers to execute arbitrary code and steal cookies via a crafted script

Keyfactor · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-36066Low3.12024-09-12The CMP CLI client in KeyFactor EJBCA before 8.3.1 has only 6 octets of salt, and is thus not compliant with the security requirements of RFC 4211, and might make man-in-the-middle attacks easier.

Khromov · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8747Medium6.42024-09-13The Email Obfuscate Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'email-obfuscate' shortcode in all versions up to, and including, 2.0 due to insufficient input sanitization and output escapi…

Kimhuebel · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7862Medium6.52024-09-12The blogintroduction-wordpress-plugin WordPress plugin through 0.3.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Kubiq · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8737Medium6.12024-09-13The PDF Thumbnail Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.3.

Litonice13 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6282Medium5.42024-09-10The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the data-jltma-wrapper-link element in all versions up to, and including 2…

Lizardbyte · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45407Medium6.52024-09-10Sunshine is a self-hosted game stream host for Moonlight.

Lucasstad · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8734Medium6.12024-09-13The Lucas String Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.5.

Majeedraza · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6850Medium4.82024-09-13The Carousel Slider WordPress plugin before 2.2.4 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

Man · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45595Medium6.12024-09-10D-Tale is a visualizer for Pandas data structures.

Meowapps · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6723Medium4.72024-09-13The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by admin users when viewing chatbot discussions.

Mercury · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8655Medium5.32024-09-10A vulnerability was found in Mercury MNVR816 up to 2.0.1.0.5.

Metagauss · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8369Medium5.32024-09-10The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access to Private or Password-protected events due to missing authorization checks in all versions up to, and including, 4.0.4.3.

Mirapolis · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-25270Medium4.32024-09-12An issue in Mirapolis LMS 4.6.XX allows authenticated users to exploit an Insecure Direct Object Reference (IDOR) vulnerability by manipulating the ID parameter and increment STEP parameter, leading to the exposure of sensitive user data.

Mongodb · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8654Medium5.02024-09-10MongoDB Server may access non-initialized region of memory leading to unexpected behaviour when zero arguments are called in internal aggregation stage.

Muffingroup · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5567Medium6.42024-09-13The Betheme theme for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 27.5.5 due to insufficient input sanitization and output escaping.

Murgroland · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8663Medium6.12024-09-13The WP Simple Booking Calendar plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.10.

Myeventon · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6910Medium4.82024-09-09The EventON WordPress plugin before 2.2.17 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed.

Nattywp · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5867Medium6.42024-09-13The Delicate theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link' parameter within the theme's Button shortcode in all versions up to, and including, 3.5.5 due to insufficient input sanitization and output escapi…

Netiq · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2022-26322Medium4.92024-09-12Possible Insertion of Sensitive Information into Log File Vulnerability in Identity Manager has been discovered in OpenText™ Identity Manager REST Driver.

Nixos · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45593Critical9.02024-09-10Nix is a package manager for Linux and other Unix systems.

Nko · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8045Medium6.42024-09-11The Advanced WordPress Backgrounds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘imageTag’ parameter in all versions up to, and including, 1.12.3 due to insufficient input sanitization and output escaping.

Nozomi Networks · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-4465Medium6.02024-09-11An access control vulnerability was discovered in the Reports section due to a specific access restriction not being properly enforced for users with limited privileges.

Nsqua · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7129High7.22024-09-13The Appointment Booking Calendar WordPress plugin before 1.6.7.43 does not escape template syntax provided via user input, leading to Twig Template Injection which further exploited can result to remote code Execution by high privilege suc…

Opensc_project · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8443Low2.92024-09-10A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver.

Opentext · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2021-22518Medium5.82024-09-12A vulnerability identified in OpenText™ Identity Manager AzureAD Driver that allows logging of sensitive information into log file.

Opentibiabr · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8783Low3.52024-09-13A vulnerability classified as problematic has been found in OpenTibiaBR MyAAC up to 0.8.16.

Outtolunchproductions · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7860Medium6.12024-09-12The Simple Headline Rotator WordPress plugin through 1.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attac…

Payara · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7312Medium6.12024-09-11URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 befor…

Payara Platform · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-80972024-09-11Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Payara Platform Payara Server (Logging modules) allows Sensitive credentials posted in plain-text on the server log.This issue affects Payara Server: from 6.0.0 be…

Pgpool Global Development Group · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45624High7.52024-09-12Exposure of sensitive information due to incompatible policies issue exists in Pgpool-II.

Pickplugins · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8253High8.82024-09-11The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in all versions 2.2.87 to 2.2.90.

Pixelgrade · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8241Medium6.42024-09-10The Nova Blocks by Pixelgrade plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' attribute of the 'wp:separator' Gutenberg block in all versions up to, and including, 2.1.7 due to insufficient input sanitizat…

Pluto-lang · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45597Medium5.32024-09-10Pluto is a superset of Lua 5.4 with a focus on general-purpose programming.

Premio · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7133Medium4.82024-09-13The Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any WordPress plugin before 2.7.3 does not validate and escape some of its settings before outputting them back in the page, which could all…

Profelis · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7015Critical9.82024-09-09Missing Authentication for Critical Function vulnerability in Profelis Informatics and Consulting PassBox allows Authentication Abuse.

Progress · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6658High8.42024-09-12Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects:  Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.0 (inclusive)    …

Qdocs · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8784Medium6.32024-09-13A vulnerability classified as critical was found in QDocs Smart School Management System 7.0.0.

Radiustheme · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7888Medium6.32024-09-13The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions like export_forms(), import_forms(), update_fb_options()…

Rapid7 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8042Low2.42024-09-09Rapid7 Insight Platform versions between November 2019 and August 14, 2024 suffer from missing authorization issues whereby an attacker can intercept local requests to set the name and description of a new user group.

Realestateconnected · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-3163Medium4.32024-09-12The Easy Property Listings WordPress plugin before 3.5.4 does not have CSRF check when deleting contacts in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack

Ronvalstar · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7918Medium4.82024-09-09The Pocket Widget WordPress plugin through 0.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capabilit…

Samsung Open Source · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-40754Critical9.82024-09-10Heap-based Buffer Overflow vulnerability in Samsung Open Source Escargot JavaScript engine allows Overflow Buffers.This issue affects Escargot: 4.0.0.

Schneider Electric · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8306High7.82024-09-11CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access, loss of confidentiality, integrity and availability of the workstation when non-admin authenticated user tries to perform privilege escalatio…

Secreto31126 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45607Medium5.82024-09-12whatsapp-api-js is a TypeScript server agnostic Whatsapp's Official API framework.

Seedprod · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6887Medium4.82024-09-12The Giveaways and Contests by RafflePress WordPress plugin before 1.12.16 does not sanitise and escape some of its Giveaways settings, which could allow high privilege users such as editor and above to perform Stored Cross-Site Scripting…

Shandong Star Measurement And Control Equipment · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8705Medium6.32024-09-11A vulnerability was found in Shandong Star Measurement and Control Equipment Heating Network Wireless Monitoring System 5.6.2 and classified as critical.

Sick Ag · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8751High7.52024-09-12A vulnerability in the MSC800 allows an unauthenticated attacker to modify the product’s IP address over Sopas ET.

Snapshot_backup_project · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7689Medium4.32024-09-09The Snapshot Backup WordPress plugin through 2.1.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.

Spring · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-38816High7.52024-09-13Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks.

Squirrly · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7955Medium4.82024-09-10The Starbox WordPress plugin before 3.5.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is d…

Symfony · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45411High8.52024-09-09Twig is a template language for PHP.

Tduckcloud · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8692Medium5.32024-09-11A vulnerability classified as critical was found in TDuckCloud TDuckPro up to 6.3.

Tebilisim · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-2010Medium6.12024-09-12Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in TE Informatics V5 allows Reflected XSS.

Techexcel · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8601Medium6.52024-09-09This vulnerability exists in TechExcel Back Office Software versions prior to 1.0.0 due to improper access controls on certain API endpoints.

Theme-fusion · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5628Medium6.42024-09-13The Avada | Website Builder For WordPress & eCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's fusion_button shortcode in all versions up to, and including, 3.11.9 due to insufficient input sanitiz…

Themeum · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2023-2919Medium4.32024-09-10The Tutor LMS plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.7.4.

Tnbmobil · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-6656Critical9.82024-09-13Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable.

Towfiq I. · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-5789Medium6.42024-09-13The Triton Lite theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'url' attribute within the theme's Button shortcode in all versions up to, and including, 1.3 due to insufficient input sanitization and output escapi…

Ubiquiti Inc · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-42025High7.82024-09-13A Command Injection vulnerability found in a Self-Hosted UniFi Network Servers (Linux) with UniFi Network Application (Version 8.3.32 and earlier) allows a malicious actor with unifi user shell access to escalate privileges to root on the…

Uniong · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8586Medium6.12024-09-09WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers to exploit this vulnerability to forge URLs.

Vidco · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7609High7.52024-09-11Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Vidco Software VOC TESTER allows Path Traversal.

Villatheme · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8277Critical9.82024-09-11The WooCommerce Photo Reviews Premium plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.3.13.2.

Wireshark · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8645Medium5.52024-09-10SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file

Wpdelicious · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7626High8.12024-09-11The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for WordPress is vulnerable to arbitrary file movement and reading due to insufficient file path validation in the save_edit_profile_details() function…

Xwiki · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45591Medium5.32024-09-10XWiki Platform is a generic wiki platform.

Xwp · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-7423High8.82024-09-13The Stream plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.0.1.

Yeti-platform · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-45412Medium5.32024-09-10Yeti bridges the gap between CTI and DFIR practitioners by providing a Forensics Intelligence platform and pipeline.

Yithemes · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8665Medium6.12024-09-13The YITH Custom Login plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.7.3.

云课网络科技有限公司 · 1 CVE

CVESeverityCVSSKEVPublishedSummary
CVE-2024-8707Medium4.32024-09-12A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 3.0.6.