Patch Tuesday — September 2024
2024-09-10 · 675 CVEs
CVEs published or modified the week of 2024-09-10, partitioned by vendor.
Microsoft (111 CVEs)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-43491 | Critical | 9.8 | — | 2024-09-10 | Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released July 2015). |
CVE-2024-38220 | Critical | 9.0 | — | 2024-09-10 | Azure Stack Hub Elevation of Privilege Vulnerability |
CVE-2024-43469 | High | 8.8 | — | 2024-09-10 | Azure CycleCloud Remote Code Execution Vulnerability |
CVE-2024-43461 | High | 8.8 | KEV | 2024-09-10 | Windows MSHTML Platform Spoofing Vulnerability |
CVE-2024-43455 | High | 8.8 | — | 2024-09-10 | Windows Remote Desktop Licensing Service Spoofing Vulnerability |
CVE-2024-38260 | High | 8.8 | — | 2024-09-10 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability |
CVE-2024-38259 | High | 8.8 | — | 2024-09-10 | Microsoft Management Console Remote Code Execution Vulnerability |
CVE-2024-38225 | High | 8.8 | — | 2024-09-10 | Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability |
CVE-2024-38018 | High | 8.8 | — | 2024-09-10 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2024-37980 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Elevation of Privilege Vulnerability |
CVE-2024-37965 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Elevation of Privilege Vulnerability |
CVE-2024-37341 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Elevation of Privilege Vulnerability |
CVE-2024-37340 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-37339 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-37338 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-37335 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-26191 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-26186 | High | 8.8 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-43479 | High | 8.5 | — | 2024-09-10 | Microsoft Power Automate Desktop Remote Code Execution Vulnerability |
CVE-2024-38194 | High | 8.4 | — | 2024-09-10 | An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network. |
CVE-2024-38216 | High | 8.2 | — | 2024-09-10 | Azure Stack Hub Elevation of Privilege Vulnerability |
CVE-2024-38240 | High | 8.1 | — | 2024-09-10 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability |
CVE-2024-38045 | High | 8.1 | — | 2024-09-10 | Windows TCP/IP Remote Code Execution Vulnerability |
CVE-2024-21416 | High | 8.1 | — | 2024-09-10 | Windows TCP/IP Remote Code Execution Vulnerability |
CVE-2024-45109 | High | 7.8 | — | 2024-09-13 | Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-45108 | High | 7.8 | — | 2024-09-13 | Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-43760 | High | 7.8 | — | 2024-09-13 | Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-43756 | High | 7.8 | — | 2024-09-13 | Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-45112 | High | 7.8 | — | 2024-09-13 | Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Type Confusion vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-43758 | High | 7.8 | — | 2024-09-13 | Illustrator versions 28.6, 27.9.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-41869 | High | 7.8 | — | 2024-09-13 | Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-41859 | High | 7.8 | — | 2024-09-13 | After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-41857 | High | 7.8 | — | 2024-09-13 | Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-39384 | High | 7.8 | — | 2024-09-13 | Premiere Pro versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-39381 | High | 7.8 | — | 2024-09-13 | After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-39380 | High | 7.8 | — | 2024-09-13 | After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-34121 | High | 7.8 | — | 2024-09-13 | Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-39377 | High | 7.8 | — | 2024-09-13 | Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-45181 | High | 7.8 | — | 2024-09-12 | An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70. |
CVE-2024-5760 | High | 7.8 | — | 2024-09-11 | The Samsung Universal Print Driver for Windows is potentially vulnerable to escalation of privilege allowing the creation of a reverse shell in the tool. |
CVE-2024-39378 | High | 7.8 | — | 2024-09-11 | Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-43492 | High | 7.8 | — | 2024-09-10 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability |
CVE-2024-43465 | High | 7.8 | — | 2024-09-10 | Microsoft Excel Elevation of Privilege Vulnerability |
CVE-2024-43463 | High | 7.8 | — | 2024-09-10 | Microsoft Office Visio Remote Code Execution Vulnerability |
CVE-2024-43457 | High | 7.8 | — | 2024-09-10 | Windows Setup and Deployment Elevation of Privilege Vulnerability |
CVE-2024-38253 | High | 7.8 | — | 2024-09-10 | Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability |
CVE-2024-38252 | High | 7.8 | — | 2024-09-10 | Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability |
CVE-2024-38250 | High | 7.8 | — | 2024-09-10 | Windows Graphics Component Elevation of Privilege Vulnerability |
CVE-2024-38249 | High | 7.8 | — | 2024-09-10 | Windows Graphics Component Elevation of Privilege Vulnerability |
CVE-2024-38247 | High | 7.8 | — | 2024-09-10 | Windows Graphics Component Elevation of Privilege Vulnerability |
CVE-2024-38245 | High | 7.8 | — | 2024-09-10 | Kernel Streaming Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38244 | High | 7.8 | — | 2024-09-10 | Kernel Streaming Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38243 | High | 7.8 | — | 2024-09-10 | Kernel Streaming Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38242 | High | 7.8 | — | 2024-09-10 | Kernel Streaming Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38241 | High | 7.8 | — | 2024-09-10 | Kernel Streaming Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38238 | High | 7.8 | — | 2024-09-10 | Kernel Streaming Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38237 | High | 7.8 | — | 2024-09-10 | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability |
CVE-2024-38046 | High | 7.8 | — | 2024-09-10 | PowerShell Elevation of Privilege Vulnerability |
CVE-2024-38014 | High | 7.8 | KEV | 2024-09-10 | Windows Installer Elevation of Privilege Vulnerability |
CVE-2024-30073 | High | 7.8 | — | 2024-09-10 | Windows Security Zone Mapping Security Feature Bypass Vulnerability |
CVE-2024-43458 | High | 7.7 | — | 2024-09-10 | Windows Networking Information Disclosure Vulnerability |
CVE-2024-43476 | High | 7.6 | — | 2024-09-10 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2024-43474 | High | 7.6 | — | 2024-09-10 | Microsoft SQL Server Information Disclosure Vulnerability |
CVE-2024-43467 | High | 7.5 | — | 2024-09-10 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability |
CVE-2024-38263 | High | 7.5 | — | 2024-09-10 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability |
CVE-2024-38257 | High | 7.5 | — | 2024-09-10 | Microsoft AllJoyn API Information Disclosure Vulnerability |
CVE-2024-38236 | High | 7.5 | — | 2024-09-10 | DHCP Server Service Denial of Service Vulnerability |
CVE-2024-38233 | High | 7.5 | — | 2024-09-10 | Windows Networking Denial of Service Vulnerability |
CVE-2024-38232 | High | 7.5 | — | 2024-09-10 | Windows Networking Denial of Service Vulnerability |
CVE-2024-38119 | High | 7.5 | — | 2024-09-10 | Windows Network Address Translation (NAT) Remote Code Execution Vulnerability |
CVE-2024-43495 | High | 7.3 | — | 2024-09-10 | Windows libarchive Remote Code Execution Vulnerability |
CVE-2024-43475 | High | 7.3 | — | 2024-09-10 | Microsoft Windows Admin Center Information Disclosure Vulnerability |
CVE-2024-43470 | High | 7.3 | — | 2024-09-10 | Azure Network Watcher VM Agent Elevation of Privilege Vulnerability |
CVE-2024-38226 | High | 7.3 | KEV | 2024-09-10 | Microsoft Publisher Security Feature Bypass Vulnerability |
CVE-2024-43464 | High | 7.2 | — | 2024-09-10 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2024-38239 | High | 7.2 | — | 2024-09-10 | Windows Kerberos Elevation of Privilege Vulnerability |
CVE-2024-38228 | High | 7.2 | — | 2024-09-10 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2024-38227 | High | 7.2 | — | 2024-09-10 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
CVE-2024-43454 | High | 7.1 | — | 2024-09-10 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability |
CVE-2024-38188 | High | 7.1 | — | 2024-09-10 | Azure Network Watcher VM Agent Elevation of Privilege Vulnerability |
CVE-2024-37966 | High | 7.1 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Information Disclosure Vulnerability |
CVE-2024-37342 | High | 7.1 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Information Disclosure Vulnerability |
CVE-2024-37337 | High | 7.1 | — | 2024-09-10 | Microsoft SQL Server Native Scoring Information Disclosure Vulnerability |
CVE-2024-38248 | High | 7.0 | — | 2024-09-10 | Windows Storage Elevation of Privilege Vulnerability |
CVE-2024-38246 | High | 7.0 | — | 2024-09-10 | Win32k Elevation of Privilege Vulnerability |
CVE-2024-38222 | Medium | 6.5 | — | 2024-09-12 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability |
CVE-2024-43487 | Medium | 6.5 | — | 2024-09-10 | Windows Mark of the Web Security Feature Bypass Vulnerability |
CVE-2024-43482 | Medium | 6.5 | — | 2024-09-10 | Microsoft Outlook for iOS Information Disclosure Vulnerability |
CVE-2024-43466 | Medium | 6.5 | — | 2024-09-10 | Microsoft SharePoint Server Denial of Service Vulnerability |
CVE-2024-38258 | Medium | 6.5 | — | 2024-09-10 | Windows Remote Desktop Licensing Service Information Disclosure Vulnerability |
CVE-2024-38235 | Medium | 6.5 | — | 2024-09-10 | Windows Hyper-V Denial of Service Vulnerability |
CVE-2024-38234 | Medium | 6.5 | — | 2024-09-10 | Windows Networking Denial of Service Vulnerability |
CVE-2024-38231 | Medium | 6.5 | — | 2024-09-10 | Windows Remote Desktop Licensing Service Denial of Service Vulnerability |
CVE-2024-38230 | Medium | 6.5 | — | 2024-09-10 | Windows Standards-Based Storage Management Service Denial of Service Vulnerability |
CVE-2024-45111 | Medium | 5.5 | — | 2024-09-13 | Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-43759 | Medium | 5.5 | — | 2024-09-13 | Illustrator versions 28.6, 27.9.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). |
CVE-2024-41867 | Medium | 5.5 | — | 2024-09-13 | After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-39385 | Medium | 5.5 | — | 2024-09-13 | Premiere Pro versions 24.5, 23.6.8 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-39382 | Medium | 5.5 | — | 2024-09-13 | After Effects versions 23.6.6, 24.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-41873 | Medium | 5.5 | — | 2024-09-13 | Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-41872 | Medium | 5.5 | — | 2024-09-13 | Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-41871 | Medium | 5.5 | — | 2024-09-13 | Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-41870 | Medium | 5.5 | — | 2024-09-13 | Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-45182 | Medium | 5.5 | — | 2024-09-12 | An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70 An improper bounds check allows specially crafted packets to cause an arbitrary address read, resulting in Denial of Service. |
CVE-2024-41868 | Medium | 5.5 | — | 2024-09-11 | Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2024-38256 | Medium | 5.5 | — | 2024-09-10 | Windows Kernel-Mode Driver Information Disclosure Vulnerability |
CVE-2024-38254 | Medium | 5.5 | — | 2024-09-10 | Windows Authentication Information Disclosure Vulnerability |
CVE-2024-38217 | Medium | 5.4 | KEV | 2024-09-10 | Windows Mark of the Web Security Feature Bypass Vulnerability |
CVE-2024-45383 | Medium | 5.0 | — | 2024-09-12 | A mishandling of IRP requests vulnerability exists in the HDAudBus_DMA interface of Microsoft High Definition Audio Bus Driver 10.0.19041.3636 (WinBuild.160101.0800). |
CVE-2024-8690 | Medium | 4.4 | — | 2024-09-11 | A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows administrator privileges to disable the agent. |
CVE-2024-1656 | Low | 2.6 | — | 2024-09-11 | Affected versions of Octopus Server had a weak content security policy. |
Other vendors (564 CVEs across 199 vendors)
Linux · 63 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-46713 | High | 7.8 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization Ole reported that event->mmap_mutex is strictly insufficient to serialize the AUX buffer, add a per RB mutex to fully serialize it. |
CVE-2024-46699 | High | 7.8 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Disable preemption while updating GPU stats We forgot to disable preemption around the write_seqcount_begin/end() pair while updating GPU stats: [ ] WARNING… |
CVE-2024-46696 | High | 7.8 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: nfsd: fix potential UAF in nfsd4_cb_getattr_release Once we drop the delegation reference, the fields embedded in it are no longer safe to access. |
CVE-2024-46687 | High | 7.8 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() [BUG] There is an internal report that KASAN is reporting use-after-free, with the following… |
CVE-2024-46683 | High | 7.8 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: drm/xe: prevent UAF around preempt fence The fence lock is part of the queue, therefore in the current design anything locking the fence should then also hold a ref to t… |
CVE-2024-46674 | High | 7.8 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: st: fix probed platform device ref count on probe error path The probe function never performs any paltform device allocation, thus error path "undo_platform_… |
CVE-2024-46673 | High | 7.8 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: scsi: aacraid: Fix double-free on probe failure aac_probe_one() calls hardware-specific init functions through the aac_driver_ident::init pointer, all of which eventuall… |
CVE-2024-45026 | High | 7.8 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error recovery leading to data corruption on ESE devices Extent Space Efficient (ESE) or thin provisioned volumes need to be formatted on demand during us… |
CVE-2024-45023 | High | 7.1 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data corruption for degraded array with slow disk read_balance() will avoid reading from slow disks as much as possible, however, if valid data only lands… |
CVE-2024-46712 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Disable coherent dumb buffers without 3d Coherent surfaces make only sense if the host renders to them using accelerated apis. |
CVE-2024-46709 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes through the dma_buf interface instead of trying to access pages directly. |
CVE-2024-46708 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: pinctrl: qcom: x1e80100: Fix special pin offsets Remove the erroneus 0x100000 offset to prevent the boards from crashing on pin state setting, as well as for the intende… |
CVE-2024-46707 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 On a system with a GICv3, if a guest hasn't been configured with GICv3 and that the host is not capable o… |
CVE-2024-46706 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: tty: serial: fsl_lpuart: mark last busy before uart_add_one_port With "earlycon initcall_debug=1 loglevel=8" in bootargs, kernel sometimes boot hang. |
CVE-2024-46705 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: drm/xe: reset mmio mappings with devm Set our various mmio mappings to NULL. |
CVE-2024-46703 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: Revert "serial: 8250_omap: Set the console genpd always on if no console suspend" This reverts commit 68e6939ea9ec3d6579eadeab16060339cdeaf940. |
CVE-2024-46702 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed that when we do discrete host router NVM upgrade and it gets hot-removed from the PCIe side as a… |
CVE-2024-46701 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simple_dir_operations to simple_offset_dir_operations, every rename happened… |
CVE-2024-46698 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: video/aperture: optionally match the device in sysfb_disable() In aperture_remove_conflicting_pci_devices(), we currently only call sysfb_disable() on vga class devices. |
CVE-2024-46697 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: nfsd: ensure that nfsd4_fattr_args.context is zeroed out If nfsd4_encode_fattr4 ends up doing a "goto out" before we get to checking for the security label, then args.co… |
CVE-2024-46694 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid using null object of framebuffer Instead of using state->fb->obj[0] directly, get object from framebuffer by calling drm_gem_fb_get_obj() and retu… |
CVE-2024-46692 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Mark get_wq_ctx() as atomic call Currently get_wq_ctx() is wrongly configured as a standard call. |
CVE-2024-46691 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Move unregister out of atomic section Commit '9329933699b3 ("soc: qcom: pmic_glink: Make client-lock non-sleeping")' moved the pmic_glink client list u… |
CVE-2024-46690 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease It is not safe to dereference fl->c.flc_owner without first confirming fl->fl_lmops is the expect… |
CVE-2024-46689 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: cmd-db: Map shared memory as WC, not WB Linux does not write into cmd-db region. |
CVE-2024-46688 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails If z_erofs_gbuf_growsize() partially fails on a global buffer due to memory allocation failur… |
CVE-2024-46686 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() This happens when called from SMB2_read() while using rdma and reaching the rdma_readwrite_threshold. |
CVE-2024-46685 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix potential NULL dereference in pcs_get_function() pinmux_generic_get_function() can return NULL and the pointer 'function' was dereferenced without c… |
CVE-2024-46684 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: binfmt_elf_fdpic: fix AUXV size calculation when ELF_HWCAP2 is defined create_elf_fdpic_tables() does not correctly account the space for the AUX vector when an architec… |
CVE-2024-46682 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: nfsd: prevent panic for nfsv4.0 closed files in nfs4_show_open Prior to commit 3f29cc82a84c ("nfsd: split sc_status out of sc_type") states_show() relied on sc_type fiel… |
CVE-2024-46681 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: pktgen: use cpus_read_lock() in pg_net_init() I have seen the WARN_ON(smp_processor_id() != cpu) firing in pktgen_thread_worker() during tests. |
CVE-2024-46680 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix random crash seen while removing driver This fixes the random kernel crash seen while removing the driver, when running the load/unload test ov… |
CVE-2024-46678 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: bonding: change ipsec_lock from spin lock to mutex In the cited commit, bond->ipsec_lock is added to protect ipsec_list, hence xdo_dev_state_add and xdo_dev_state_delete… |
CVE-2024-46677 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: gtp: fix a potential NULL pointer dereference When sockfd_lookup() fails, gtp_encap_enable_socket() returns a NULL pointer, but its callers only check for error pointers… |
CVE-2024-46676 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Add poll mod list filling check In case of im_protocols value is 1 and tm_protocols value is 0 this combination successfully passes the check 'if (!im_protoc… |
CVE-2024-46675 | Medium | 5.5 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: Prevent USB core invalid event buffer address access This commit addresses an issue where the USB core could access an invalid event buffer address duri… |
CVE-2024-46672 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion wpa_supplicant 2.11 sends since 1efdba5fdc2c ("Handle PMKSA flush in the driver for SAE/OWE offload cases") SS… |
CVE-2024-45030 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: igb: cope with large MAX_SKB_FRAGS Sabrina reports that the igb driver does not cope well with large MAX_SKB_FRAG values: setting MAX_SKB_FRAG to 45 causes payload corru… |
CVE-2024-45029 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: Do not mark ACPI devices as irq safe On ACPI machines, the tegra i2c module encounters an issue due to a mutex being called inside a spinlock. |
CVE-2024-45028 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: mmc: mmc_test: Fix NULL dereference on allocation failure If the "test->highmem = alloc_pages()" allocation fails then calling __free_pages(test->highmem) will result in… |
CVE-2024-45027 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check for xhci->interrupters being allocated in xhci_mem_clearup() If xhci_mem_init() fails, it calls into xhci_mem_cleanup() to mop up the damage. |
CVE-2024-45025 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE copy_fd_bitmaps(new, old, count) is expected to copy the first count/BITS_PER_LONG bits from old->full_fd… |
CVE-2024-45024 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb vs. |
CVE-2024-45022 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 The __vmap_pages_range_noflush() assumes its argument pages** contains pages wi… |
CVE-2024-45021 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: memcg_write_event_control(): fix a user-triggerable oops we are *not* guaranteed that anything past the terminating NUL is mapped (let alone initialized with anything sa… |
CVE-2024-45020 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a kernel verifier crash in stacksafe() Daniel Hodges reported a kernel verifier crash when playing with sched-ext. |
CVE-2024-45019 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Take state lock during tx timeout reporter mlx5e_safe_reopen_channels() requires the state lock taken. |
CVE-2024-45018 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: initialise extack before use Fix missing initialisation of extack in flow offload. |
CVE-2024-45017 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix IPsec RoCE MPV trace call Prevent the call trace below from happening, by not allowing IPsec creation over a slave, if master device doesn't support IPsec. |
CVE-2024-45016 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: netem: fix return value if duplicate enqueue fails There is a bug in netem_enqueue() introduced by commit 5845f706388a ("net: netem: fix skb length BUG_ON in __skb_to_sg… |
CVE-2024-45015 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable() For cases where the crtc's connectors_changed was set without enable/active getting toggled , the… |
CVE-2024-45014 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: s390/boot: Avoid possible physmem_info segment corruption When physical memory for the kernel image is allocated it does not consider extra memory required for offsettin… |
CVE-2024-45013 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit 4733b65d82bd ("nvme: start keep-alive after admin queue setup") moves starting keep-alive from nvme_start_c… |
CVE-2024-45012 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: use dma non-coherent allocator Currently, enabling SG_DEBUG in the kernel will cause nouveau to hit a BUG() on startup, when the iommu is enabled: ker… |
CVE-2024-45011 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when probing device Ensure, as the driver probes the device, that all endpoints that the driver may attempt to access exist and are o… |
CVE-2024-45010 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only mark 'subflow' endp as available Adding the following warning ... |
CVE-2024-45009 | Medium | 5.5 | — | 2024-09-11 | In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only decrement add_addr_accepted for MPJ req Adding the following warning ... |
CVE-2024-46711 | Medium | 4.7 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: fix ID 0 endp usage after multiple re-creations 'local_addr_used' and 'add_addr_accepted' are decremented for addresses not related to the initial subflow (ID… |
CVE-2024-46710 | Medium | 4.7 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Prevent unmapping active read buffers The kms paths keep a persistent map active to read and compare the cursor buffer. |
CVE-2024-46704 | Medium | 4.7 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix spruious data race in __flush_work() When flushing a work item for cancellation, __flush_work() knows that it exclusively owns the work item through its P… |
CVE-2024-46693 | Medium | 4.7 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pmic_glink: Fix race during initialization As pointed out by Stephen Boyd it is possible that during initialization of the pmic_glink child drivers, the prote… |
CVE-2024-46679 | Medium | 4.7 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when getting link settings A sysfs reader can race with a device reset or removal, attempting to read device state when the device is no… |
CVE-2024-46695 | Medium | 4.4 | — | 2024-09-13 | In the Linux kernel, the following vulnerability has been resolved: selinux,smack: don't bypass permissions check in inode_setsecctx hook Marek Gresko reports that the root user on an NFS client is able to change the security labels on f… |
N/a · 48 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-46049 | Critical | 9.8 | — | 2024-09-13 | Tenda O6 V3.0 firmware V1.0.0.7(2054) contains a stack overflow vulnerability in the formexeCommand function. |
CVE-2024-46048 | Critical | 9.8 | — | 2024-09-13 | Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i |
CVE-2024-46046 | Critical | 9.8 | — | 2024-09-13 | Tenda FH451 v1.0.0.9 has a stack overflow vulnerability located in the RouteStatic function. |
CVE-2024-46045 | Critical | 9.8 | — | 2024-09-13 | Tenda CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the frmL7PlotForm function. |
CVE-2024-46044 | Critical | 9.8 | — | 2024-09-13 | CH22 V1.0.0.6(468) has a stack overflow vulnerability located in the fromqossetting function. |
CVE-2024-44541 | Critical | 9.8 | — | 2024-09-11 | evilnapsis Inventio Lite Versions v4 and before is vulnerable to SQL Injection via the "username" parameter in "/?action=processlogin." |
CVE-2023-36103 | Critical | 9.8 | — | 2024-09-10 | Command Injection vulnerability in goform/SetIPTVCfg interface of Tenda AC15 V15.03.05.20 allows remote attackers to run arbitrary commands via crafted POST request. |
CVE-2024-44902 | Critical | 9.8 | — | 2024-09-09 | A deserialization vulnerability in Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code. |
CVE-2024-44849 | Critical | 9.8 | — | 2024-09-09 | Qualitor up to 8.24 is vulnerable to Remote Code Execution (RCE) via Arbitrary File Upload in checkAcesso.php. |
CVE-2024-44721 | Critical | 9.8 | — | 2024-09-09 | SeaCMS v13.1 was discovered to a Server-Side Request Forgery (SSRF) via the url parameter at /admin_reslib.php. |
CVE-2024-40457 | Critical | 9.1 | — | 2024-09-12 | No-IP Dynamic Update Client (DUC) v3.x uses cleartext credentials that may occur on a command line or in a file. |
CVE-2024-43040 | Critical | 9.1 | — | 2024-09-10 | Renwoxing Enterprise Intelligent Management System before v3.0 was discovered to contain a SQL injection vulnerability via the parid parameter at /fx/baseinfo/SearchInfo. |
CVE-2024-44577 | High | 8.8 | — | 2024-09-11 | RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the time_date function. |
CVE-2024-44574 | High | 8.8 | — | 2024-09-11 | RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the sys_conf function. |
CVE-2024-44572 | High | 8.8 | — | 2024-09-11 | RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the sys_mgmt function. |
CVE-2024-44571 | High | 8.8 | — | 2024-09-11 | RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain incorrect access control in the mService function at phpinf.php. |
CVE-2024-44570 | High | 8.8 | — | 2024-09-11 | RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a code injection vulnerability via the getParams function in phpinf.php. |
CVE-2024-44335 | High | 8.8 | — | 2024-09-09 | D-Link DI-7003G v19.12.24A1, DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution (RCE) via version… |
CVE-2024-44334 | High | 8.8 | — | 2024-09-09 | D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution due to insufficient parameter filtering… |
CVE-2024-44333 | High | 8.8 | — | 2024-09-09 | D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1, DI-7300G+V2 v24.04.18D1, and DI-7400G+V2 v24.04.18D1 are vulnerable to Remote Command Execution. |
CVE-2024-21529 | High | 8.2 | — | 2024-09-11 | Versions of the package dset before 3.1.4 are vulnerable to Prototype Pollution via the dset function due improper user input sanitization. |
CVE-2024-44667 | High | 8.0 | — | 2024-09-10 | Shenzhen Haichangxing Technology Co., Ltd HCX H822 4G LTE Router M7628NNxISPxUIv2_v1.0.1557.15.35_P0 is vulnerable to Incorrect Access Control. |
CVE-2024-31960 | High | 7.8 | — | 2024-09-10 | An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400. |
CVE-2024-46047 | High | 7.5 | — | 2024-09-13 | Tenda FH451 v1.0.0.9 has a stack overflow vulnerability in the fromDhcpListClient function. |
CVE-2024-44459 | High | 7.5 | — | 2024-09-12 | A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS) via excessive memory consumption. |
CVE-2024-34334 | High | 7.5 | — | 2024-09-12 | ORDAT FOSS-Online before v2.24.01 was discovered to contain a SQL injection vulnerability via the forgot password function. |
CVE-2024-44867 | High | 7.5 | — | 2024-09-10 | phpok v3.0 was discovered to contain an arbitrary file read vulnerability via the component /autoload/file.php. |
CVE-2024-37728 | High | 7.5 | — | 2024-09-10 | Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface |
CVE-2024-44720 | High | 7.5 | — | 2024-09-09 | SeaCMS v13.1 was discovered to an arbitrary file read vulnerability via the component admin_safe.php. |
CVE-2024-27387 | Medium | 6.7 | — | 2024-09-09 | An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. |
CVE-2024-27383 | Medium | 6.7 | — | 2024-09-09 | An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. |
CVE-2024-34335 | Medium | 6.1 | — | 2024-09-12 | ORDAT FOSS-Online before version 2.24.01 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the login page. |
CVE-2024-44085 | Medium | 6.1 | — | 2024-09-09 | ONLYOFFICE Docs before 8.1.0 allows XSS via a GeneratorFunction Object attack against a macro. |
CVE-2023-50883 | Medium | 6.1 | — | 2024-09-09 | ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sandbox escape is possible by directly calling the constructor of the Function object. |
CVE-2024-25074 | Medium | 5.9 | — | 2024-09-10 | An issue was discovered in Samsung Semiconductor Mobile Processor and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W92… |
CVE-2024-25073 | Medium | 5.9 | — | 2024-09-10 | An issue was discovered in Samsung Semiconductor Mobile Processor and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W92… |
CVE-2024-21528 | Medium | 5.9 | — | 2024-09-10 | All versions of the package node-gettext are vulnerable to Prototype Pollution via the addTranslations() function in gettext.js due to improper user input sanitization. |
CVE-2024-41629 | Medium | 5.5 | — | 2024-09-12 | An issue in Texas Instruments Fusion Digital Power Designer v.7.10.1 allows a local attacker to obtain sensitive information via the plaintext storage of credentials |
CVE-2024-44851 | Medium | 5.4 | — | 2024-09-11 | A stored cross-site scripting (XSS) vulnerability in the Discussion section of Perfex CRM v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Content parameter. |
CVE-2024-34336 | Medium | 5.3 | — | 2024-09-12 | User enumeration vulnerability in ORDAT FOSS-Online before v2.24.01 allows attackers to determine if an account exists in the application by comparing the server responses of the forgot password functionality. |
CVE-2024-44685 | Medium | 5.0 | — | 2024-09-13 | Titan SFTP and Titan MFT Server 2.0.25.2426 and earlier have a vulnerability a vulnerability where sensitive information, including passwords, is exposed in clear text within the JSON response when configuring SMTP settings via the Web UI. |
CVE-2024-44573 | Medium | 4.7 | — | 2024-09-11 | A stored cross-site scripting (XSS) vulnerability in the VLAN configuration of RELY-PCIe v22.2.1 to v23.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. |
CVE-2024-27365 | Medium | 4.4 | — | 2024-09-09 | An issue was discovered in Samsung Mobile Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. |
CVE-2024-27368 | Medium | 4.4 | — | 2024-09-09 | An issue was discovered in Samsung Mobile Processor Exynos Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. |
CVE-2024-27367 | Medium | 4.4 | — | 2024-09-09 | An issue was discovered in Samsung Mobile Processor Exynos Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. |
CVE-2024-27366 | Medium | 4.4 | — | 2024-09-09 | An issue was discovered in Samsung Mobile Processor, Wearable Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. |
CVE-2024-27364 | Medium | 4.4 | — | 2024-09-09 | An issue was discovered in Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. |
CVE-2024-44575 | Low | 3.7 | — | 2024-09-11 | RELY-PCIe v22.2.1 to v23.1.0 does not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session. |
Ivanti · 23 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-29847 | Critical | 9.8 | — | 2024-09-12 | Deserialization of untrusted data in the agent portal of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution. |
CVE-2024-44107 | High | 8.8 | — | 2024-09-10 | DLL hijacking in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges and achieve arbitrary code execution. |
CVE-2024-44106 | High | 8.8 | — | 2024-09-10 | Insufficient server-side controls in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges. |
CVE-2024-44104 | High | 8.8 | — | 2024-09-10 | An incorrectly implemented authentication scheme that is subjected to a spoofing attack in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privil… |
CVE-2024-44103 | High | 8.8 | — | 2024-09-10 | DLL hijacking in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges. |
CVE-2024-37397 | High | 8.2 | — | 2024-09-12 | An External XML Entity (XXE) vulnerability in the provisioning web service of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to leak API secrets. |
CVE-2024-44105 | High | 8.2 | — | 2024-09-10 | Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to obtain OS credentials. |
CVE-2024-8191 | High | 7.8 | — | 2024-09-10 | SQL injection in the management console of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution. |
CVE-2024-8012 | High | 7.8 | — | 2024-09-10 | An authentication bypass weakness in the message broker service of Ivanti Workspace Control before version 2025.2 (10.19.0.0) allows a local authenticated attacker to escalate their privileges. |
CVE-2024-34785 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-34783 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-34779 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-32848 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-32846 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-32845 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-32843 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-32842 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-32840 | High | 7.2 | — | 2024-09-12 | An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2024-8190 | High | 7.2 | KEV | 2024-09-10 | An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows a remote authenticated attacker to obtain remote code execution. |
CVE-2024-8441 | Medium | 6.7 | — | 2024-09-10 | An uncontrolled search path in the agent of Ivanti EPM before 2022 SU6, or the 2024 September update allows a local authenticated attacker with admin privileges to escalate their privileges to SYSTEM. |
CVE-2024-8321 | Medium | 5.8 | — | 2024-09-10 | Missing authentication in Network Isolation of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to isolate managed devices from the network. |
CVE-2024-8320 | Medium | 5.3 | — | 2024-09-10 | Missing authentication in Network Isolation of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to spoof Network Isolation status of managed devices. |
CVE-2024-8322 | Medium | 4.3 | — | 2024-09-10 | Weak authentication in Patch Management of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker to access restricted functionality. |
Google · 21 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8639 | High | 8.8 | — | 2024-09-11 | Use after free in Autofill in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2024-8638 | High | 8.8 | — | 2024-09-11 | Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. |
CVE-2024-8637 | High | 8.8 | — | 2024-09-11 | Use after free in Media Router in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2024-8636 | High | 8.8 | — | 2024-09-11 | Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2024-44095 | High | 7.8 | — | 2024-09-13 | In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible corrupt memory due to a logic error in the code. |
CVE-2024-44094 | High | 7.8 | — | 2024-09-13 | In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible memory corruption due to improper input validation. |
CVE-2024-44093 | High | 7.8 | — | 2024-09-13 | In ppmp_unprotect_buf of drm/code/drm_fw.c, there is a possible memory corruption due to a logic error in the code. |
CVE-2024-44092 | High | 7.8 | — | 2024-09-13 | There is a possible LCS signing enforcement missing due to test/debugging code left in a production build. |
CVE-2024-29779 | High | 7.8 | — | 2024-09-13 | there is a possible escalation of privilege due to an unusual root cause. |
CVE-2024-40662 | High | 7.8 | — | 2024-09-11 | In scheme of Uri.java, there is a possible way to craft a malformed Uri object due to improper input validation. |
CVE-2024-40658 | High | 7.8 | — | 2024-09-11 | In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to a heap buffer overflow. |
CVE-2024-40657 | High | 7.8 | — | 2024-09-11 | In addPreferencesForType of AccountTypePreferenceLoader.java, there is a possible way to disable apps for other users due to a confused deputy. |
CVE-2024-40655 | High | 7.8 | — | 2024-09-11 | In bindAndGetCallIdentification of CallScreeningServiceHelper.java, there is a possible way to maintain a while-in-use permission in the background due to a permissions bypass. |
CVE-2024-40654 | High | 7.8 | — | 2024-09-11 | In multiple locations, there is a possible permission bypass due to a confused deputy. |
CVE-2024-40652 | High | 7.8 | — | 2024-09-11 | In onCreate of SettingsHomepageActivity.java, there is a possible way to access the Settings app while the device is provisioning due to a missing permission check. |
CVE-2024-40650 | High | 7.8 | — | 2024-09-11 | In wifi_item_edit_content of styles.xml , there is a possible FRP bypass due to Missing check for FRP state. |
CVE-2024-31336 | High | 7.8 | — | 2024-09-11 | In PVRSRVBridgeRGXKickTA3D2 of server_rgxta3d_bridge.c, there is a possible arbitrary code execution due to improper input validation. |
CVE-2024-23716 | High | 7.0 | — | 2024-09-11 | In DevmemIntPFNotify of devicemem_server.c, there is a possible use-after-free due to a race condition. |
CVE-2024-40659 | Medium | 5.5 | — | 2024-09-11 | In getRegistration of RemoteProvisioningService.java, there is a possible way to permanently disable the AndroidKeyStore key generation feature by updating the attestation keys of all installed apps due to improper input validation. |
CVE-2024-40656 | Medium | 5.5 | — | 2024-09-11 | In handleCreateConferenceComplete of ConnectionServiceWrapper.java, there is a possible way to reveal images across users due to a confused deputy. |
CVE-2024-44096 | Medium | 4.4 | — | 2024-09-13 | there is a possible arbitrary read due to an insecure default value. |
Siemens · 21 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45032 | Critical | 10.0 | — | 2024-09-10 | A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1). |
CVE-2024-33698 | Critical | 9.8 | — | 2024-09-10 | A vulnerability has been identified in Opcenter Quality (All versions < V2406), Opcenter RDnL (All versions < V2410), SIMATIC PCS neo V4.0 (All versions), SIMATIC PCS neo V4.1 (All versions < V4.1 Update 2), SIMATIC PCS neo V5.0 (All versi… |
CVE-2024-35783 | Critical | 9.1 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information Server 2020 (All versions < V2020 SP2 Update 5), SIMATIC Information Server 2022 (All versions < V2022 SP1 Update 2), SIMATIC PCS 7 V9.1 (All ver… |
CVE-2024-41171 | High | 8.8 | — | 2024-09-10 | A vulnerability has been identified in SINUMERIK 828D V4 (All versions), SINUMERIK 828D V5 (All versions < V5.24), SINUMERIK 840D sl V4 (All versions), SINUMERIK ONE (All versions < V6.24). |
CVE-2024-44087 | High | 8.6 | — | 2024-09-10 | A vulnerability has been identified in Automation License Manager V5 (All versions), Automation License Manager V6.0 (All versions < V6.0 SP12 Upd3), Automation License Manager V6.2 (All versions < V6.2 Upd3). |
CVE-2024-41170 | High | 7.8 | — | 2024-09-10 | A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302.0015), Tecnomatix Plant Simulation V2404 (All versions < V2404.0004). |
CVE-2024-43647 | High | 7.5 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC S7-200 SMART CPU CR40 (6ES7288-1CR40-0AA0) (All versions), SIMATIC S7-200 SMART CPU CR60 (6ES7288-1CR60-0AA0) (All versions), SIMATIC S7-200 SMART CPU SR20 (6ES7288-1SR20-0AA0) (All versions)… |
CVE-2024-37990 | Medium | 6.5 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi… |
CVE-2023-30756 | Medium | 5.9 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. |
CVE-2023-28827 | Medium | 5.9 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. |
CVE-2024-43781 | Medium | 5.5 | — | 2024-09-10 | A vulnerability has been identified in SINUMERIK 828D V4 (All versions < V4.95 SP3), SINUMERIK 840D sl V4 (All versions < V4.95 SP3 in connection with using Create MyConfig (CMC) <= V4.8 SP1 HF6), SINUMERIK ONE (All versions < V6.23 in con… |
CVE-2024-37993 | Medium | 5.3 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi… |
CVE-2024-37991 | Medium | 5.3 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi… |
CVE-2023-49069 | Medium | 5.3 | — | 2024-09-10 | A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.17.0 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions < V10.12.11 only if the basic authentication mec… |
CVE-2024-37992 | Medium | 4.9 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi… |
CVE-2024-42344 | Medium | 4.4 | — | 2024-09-10 | A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2). |
CVE-2023-30755 | Medium | 4.4 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. |
CVE-2024-42345 | Medium | 4.3 | — | 2024-09-10 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP2). |
CVE-2024-37994 | Medium | 4.3 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi… |
CVE-2024-32006 | Medium | 4.3 | — | 2024-09-10 | A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 SP2). |
CVE-2024-37995 | Low | 2.7 | — | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versi… |
Gitlab · 16 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45409 | Critical | 10.0 | — | 2024-09-10 | The Ruby SAML library is for implementing the client side of a SAML authorization. |
CVE-2024-6678 | Critical | 9.9 | — | 2024-09-12 | An issue was discovered in GitLab CE/EE affecting all versions starting from 8.14 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, which allows an attacker to trigger a pipeline as an arbitrary u… |
CVE-2024-8640 | High | 8.5 | — | 2024-09-12 | An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. |
CVE-2024-8635 | High | 7.7 | — | 2024-09-12 | A server-side request forgery issue has been discovered in GitLab EE affecting all versions starting from 16.8 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. |
CVE-2024-8124 | High | 7.5 | — | 2024-09-12 | An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7, starting from 17.2 prior to 17.2.5, starting from 17.3 prior to 17.3.2 which could cause Denial of Service via sending a specific POST requ… |
CVE-2024-8641 | Medium | 6.7 | — | 2024-09-12 | An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. |
CVE-2024-8311 | Medium | 6.5 | — | 2024-09-12 | An issue was discovered with pipeline execution policies in GitLab EE affecting all versions from 17.2 prior to 17.2.5, 17.3 prior to 17.3.2 which allows authenticated users to bypass variable overwrite protection via inclusion of a CI/CD… |
CVE-2024-4660 | Medium | 6.5 | — | 2024-09-12 | An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2. |
CVE-2024-8754 | Medium | 6.4 | — | 2024-09-12 | An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. |
CVE-2024-4612 | Medium | 6.4 | — | 2024-09-12 | An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. |
CVE-2024-8631 | Medium | 5.5 | — | 2024-09-12 | A privilege escalation issue has been discovered in GitLab EE affecting all versions starting from 16.6 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. |
CVE-2024-2743 | Medium | 5.3 | — | 2024-09-12 | An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permissions and leak variables. |
CVE-2024-5435 | Medium | 4.5 | — | 2024-09-12 | An issue has been discovered discovered in GitLab EE/CE affecting all versions starting from 15.10 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2 will disclose user password from… |
CVE-2024-6389 | Medium | 4.3 | — | 2024-09-12 | An issue was discovered in GitLab-CE/EE affecting all versions starting with 17.0 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. |
CVE-2024-4472 | Medium | 4.0 | — | 2024-09-12 | An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs. |
CVE-2024-6446 | Low | 3.5 | — | 2024-09-12 | An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2 prior to 17.2.5 and 17.3 prior to 17.3.2. |
Sap_se · 16 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45286 | Medium | 6.5 | — | 2024-09-10 | Due to lack of proper authorization checks when calling user, a function module in obsolete Tobin interface in SAP Production and Revenue Accounting allows unauthorized access that could lead to disclosure of highly sensitive data. |
CVE-2024-45279 | Medium | 6.1 | — | 2024-09-10 | Due to insufficient input validation, CRM Blueprint Application Builder Panel of SAP NetWeaver Application Server for ABAP allows an unauthenticated attacker to craft a URL link which could embed a malicious JavaScript. |
CVE-2024-42378 | Medium | 6.1 | — | 2024-09-10 | Due to weak encoding of user-controlled inputs, eProcurement on SAP S/4HANA allows malicious scripts to be executed in the application, potentially leading to a Reflected Cross-Site Scripting (XSS) vulnerability. |
CVE-2024-45283 | Medium | 6.0 | — | 2024-09-10 | SAP NetWeaver AS for Java allows an authorized attacker to obtain sensitive information. |
CVE-2024-45285 | Medium | 5.4 | — | 2024-09-10 | The RFC enabled function module allows a low privileged user to perform denial of service on any user and also change or delete favourite nodes. |
CVE-2024-44117 | Medium | 5.4 | — | 2024-09-10 | The RFC enabled function module allows a low privileged user to perform various actions, such as modifying the URLs of any user's favourite nodes and workbook ID. |
CVE-2024-42371 | Medium | 5.4 | — | 2024-09-10 | The RFC enabled function module allows a low privileged user to delete the workplace favourites of any user. |
CVE-2024-45280 | Medium | 4.8 | — | 2024-09-10 | Due to insufficient encoding of user-controlled inputs, SAP NetWeaver AS Java allows malicious scripts to be executed in the login application. |
CVE-2024-44120 | Medium | 4.7 | — | 2024-09-10 | SAP NetWeaver Enterprise Portal is vulnerable to reflected cross site scripting due to insufficient encoding of user-controlled input. |
CVE-2024-44121 | Medium | 4.3 | — | 2024-09-10 | Under certain conditions Statutory Reports in SAP S/4 HANA allows an attacker with basic privileges to access information which would otherwise be restricted. |
CVE-2024-44116 | Medium | 4.3 | — | 2024-09-10 | The RFC enabled function module allows a low privileged user to add any workbook to any user's workplace favourites. |
CVE-2024-44115 | Medium | 4.3 | — | 2024-09-10 | The RFC enabled function module allows a low privileged user to add URLs to any user's workplace favourites. |
CVE-2024-44113 | Medium | 4.3 | — | 2024-09-10 | Due to missing authorization checks, SAP Business Warehouse (BEx Analyzer) allows an authenticated attacker to access information over the network which is otherwise restricted. |
CVE-2024-42380 | Medium | 4.3 | — | 2024-09-10 | The RFC enabled function module allows a low privileged user to read any user's workplace favourites and user menu along with all the specific data of each node. |
CVE-2024-41729 | Medium | 4.3 | — | 2024-09-10 | Due to missing authorization checks, SAP BEx Analyzer allows an authenticated attacker to access information over the network which is otherwise restricted. |
CVE-2024-45284 | Low | 2.4 | — | 2024-09-10 | An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted. |
Lenovo · 12 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8281 | High | 7.2 | — | 2024-09-13 | An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection through specially crafted command line input in the XCC SSH captive shell. |
CVE-2024-8280 | High | 7.2 | — | 2024-09-13 | An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection or cause a recoverable denial of service using a specially crafted file. |
CVE-2024-8279 | High | 7.2 | — | 2024-09-13 | A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads. |
CVE-2024-8278 | High | 7.2 | — | 2024-09-13 | A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands. |
CVE-2024-7756 | Medium | 6.8 | — | 2024-09-13 | A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could allow a local attacker to escalate privileges by accessing an embedded UEFI shell. |
CVE-2024-45101 | Medium | 6.8 | — | 2024-09-13 | A privilege escalation vulnerability was discovered when Single Sign On (SSO) is enabled that could allow an attacker to intercept a valid, authenticated LXCA user’s XCC session if they can convince the user to click on a specially crafted… |
CVE-2024-4550 | Medium | 6.7 | — | 2024-09-13 | A potential buffer overflow vulnerability was reported in some Lenovo ThinkSystem and ThinkStation products that could allow a local attacker with elevated privileges to execute arbitrary code. |
CVE-2024-45105 | Medium | 6.7 | — | 2024-09-13 | An internal product security audit discovered a UEFI SMM (System Management Mode) callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execute arbitrary code. |
CVE-2024-3100 | Medium | 6.7 | — | 2024-09-13 | A potential buffer overflow vulnerability was reported in some Lenovo Notebook products that could allow a local attacker with elevated privileges to execute arbitrary code. |
CVE-2024-45104 | Medium | 6.3 | — | 2024-09-13 | A valid, authenticated LXCA user without sufficient privileges may be able to use the device identifier to modify an LXCA managed device through a specially crafted web API call. |
CVE-2024-8059 | Medium | 4.3 | — | 2024-09-13 | IPMI credentials may be captured in XCC audit log entries when the account username length is 16 characters. |
CVE-2024-45103 | Medium | 4.3 | — | 2024-09-13 | A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges. |
Phoenix Contact · 12 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7699 | High | 8.8 | — | 2024-09-10 | An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data. |
CVE-2024-43388 | High | 8.8 | — | 2024-09-10 | A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation. |
CVE-2024-43387 | High | 8.8 | — | 2024-09-10 | A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices. |
CVE-2024-43386 | High | 8.8 | — | 2024-09-10 | A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices. |
CVE-2024-43385 | High | 8.8 | — | 2024-09-10 | A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices. |
CVE-2024-43393 | High | 8.1 | — | 2024-09-10 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW… |
CVE-2024-43392 | High | 8.1 | — | 2024-09-10 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP FW_INCOMING.IN_IP FW_OUTGOING.FROM_IP FW… |
CVE-2024-43391 | High | 8.1 | — | 2024-09-10 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SRC_IP environment variable which can lead… |
CVE-2024-43390 | High | 8.1 | — | 2024-09-10 | A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS. |
CVE-2024-43389 | High | 8.1 | — | 2024-09-10 | A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS. |
CVE-2024-7698 | Medium | 5.7 | — | 2024-09-10 | A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks. |
CVE-2024-7734 | Medium | 5.3 | — | 2024-09-10 | An unauthenticated remote attacker can exploit the behavior of the pathfinder TCP encapsulation service by establishing a high number of TCP connections to the pathfinder TCP encapsulation service. |
Mindsdb · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45856 | Critical | 9.0 | — | 2024-09-12 | A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, or dataset containing arbitrary JavaScrip… |
CVE-2024-45852 | High | 8.8 | — | 2024-09-12 | Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded model to run arbitrary code on the server when interacted with. |
CVE-2024-45851 | High | 8.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server. |
CVE-2024-45850 | High | 8.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server. |
CVE-2024-45849 | High | 8.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server. |
CVE-2024-45848 | High | 8.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 23.12.4.0 up to 24.7.4.1 of the MindsDB platform, when the ChromaDB integration is installed on the server. |
CVE-2024-45847 | High | 8.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 23.11.4.2 up to 24.7.4.1 of the MindsDB platform, when one of several integrations is installed on the server. |
CVE-2024-45846 | High | 8.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 23.10.3.0 up to 24.7.4.1 of the MindsDB platform, when the Weaviate integration is installed on the server. |
CVE-2024-45855 | High | 7.1 | — | 2024-09-12 | Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when using ‘finetune’ on it. |
CVE-2024-45854 | High | 7.1 | — | 2024-09-12 | Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when a ‘describe’ query is run on it. |
CVE-2024-45853 | High | 7.1 | — | 2024-09-12 | Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when used for a prediction. |
Cisco · 10 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-20398 | High | 8.8 | — | 2024-09-11 | A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device. This vulnerability is due to insufficient… |
CVE-2024-20381 | High | 8.8 | — | 2024-09-11 | A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is used by the web-based management interfaces of Cisco Optical Site Manager and Cisco RV340 Dual WAN Gigabit VPN Routers cou… |
CVE-2024-20304 | High | 8.6 | — | 2024-09-11 | A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because t… |
CVE-2024-20489 | High | 8.4 | — | 2024-09-11 | A vulnerability in the storage method of the PON Controller configuration file could allow an authenticated, local attacker with low privileges to obtain the MongoDB credentials. This vulnerability is due to improper storage of the unen… |
CVE-2024-20406 | High | 7.4 | — | 2024-09-11 | A vulnerability in the segment routing feature for the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on a… |
CVE-2024-20317 | High | 7.4 | — | 2024-09-11 | A vulnerability in the handling of specific Ethernet frames by Cisco IOS XR Software for various Cisco Network Convergence System (NCS) platforms could allow an unauthenticated, adjacent attacker to cause critical priority packets to be dr… |
CVE-2024-20430 | High | 7.3 | — | 2024-09-12 | A vulnerability in Cisco Meraki Systems Manager (SM) Agent for Windows could allow an authenticated, local attacker to execute arbitrary code with elevated privileges. This vulnerability is due to incorrect handling of directory s… |
CVE-2024-20483 | High | 7.2 | — | 2024-09-11 | Multiple vulnerabilities in Cisco Routed PON Controller Software, which runs as a docker container on hardware that is supported by Cisco IOS XR Software, could allow an authenticated, remote attacker with Administrator-level privileges on… |
CVE-2024-20343 | Medium | 5.5 | — | 2024-09-11 | A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system. |
CVE-2024-20390 | Medium | 5.3 | — | 2024-09-11 | A vulnerability in the Dedicated XML Agent feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on XML TCP listen port 38751. This vulnerability is due to a lack of proper e… |
Fortinet · 10 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45327 | High | 7.5 | — | 2024-09-11 | An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0 through 7.3.2, 7.2.0 through 7.2.2, 7.0.0 through 7.0.3 change password endpoint may allow an authenticated attacker to perform a brute force… |
CVE-2024-33508 | High | 7.3 | — | 2024-09-10 | An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in Fortinet FortiClientEMS 7.2.0 through 7.2.4, 7.0.0 through 7.0.12 may allow an unauthenticated attacker to execute limited and… |
CVE-2024-31489 | Medium | 6.8 | — | 2024-09-10 | AAn improper certificate validation vulnerability [CWE-295] in FortiClientWindows 7.2.0 through 7.2.2, 7.0.0 through 7.0.11, FortiClientLinux 7.2.0, 7.0.0 through 7.0.11 and FortiClientMac 7.0.0 through 7.0.11, 7.2.0 through 7.2.4 may all… |
CVE-2024-21753 | Medium | 5.5 | — | 2024-09-10 | A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.13, 6.4.0 through 6.4.9, 6.2.0 through 6.2.9, 6.0.0 through 6.0.8, 1.2.1 through 1… |
CVE-2023-44254 | Medium | 5.0 | — | 2024-09-10 | An authorization bypass through user-controlled key [CWE-639] vulnerability in FortiAnalyzer version 7.4.1 and before 7.2.5 and FortiManager version 7.4.1 and before 7.2.5 may allow a remote attacker with low privileges to read sensitive d… |
CVE-2022-45856 | Medium | 4.8 | — | 2024-09-10 | An improper certificate validation vulnerability [CWE-295] in FortiClientWindows 6.4 all versions, 7.0.0 through 7.0.7, FortiClientMac 6.4 all versions, 7.0 all versions, 7.2.0 through 7.2.4, FortiClientLinux 6.4 all versions, 7.0 all vers… |
CVE-2024-45323 | Medium | 4.3 | — | 2024-09-10 | An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6.0 all versions may allow in a shared environment context an authenticated admin with REST API permissions in his profile and restricted to a… |
CVE-2024-31490 | Medium | 4.3 | — | 2024-09-10 | An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6, FortiSandbox 4.0 all versions, FortiSandbox 3.2.2 through 3.2.4, FortiSandbox 3.1.5… |
CVE-2024-35282 | Medium | 4.2 | — | 2024-09-10 | A cleartext storage of sensitive information in memory vulnerability [CWE-316] affecting FortiClient VPN iOS 7.2 all versions, 7.0 all versions, 6.4 all versions, 6.2 all versions, 6.0 all versions may allow an unauthenticated attacker tha… |
CVE-2024-36511 | Low | 3.7 | — | 2024-09-10 | An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web Application Firewall (WAF) 7.4.0 through 7.4.4, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions, 6.0 all… |
Dell · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39583 | High | 8.1 | — | 2024-09-10 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. |
CVE-2024-42427 | High | 7.6 | — | 2024-09-10 | Dell ThinOS versions 2402 and 2405, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. |
CVE-2024-39581 | High | 7.3 | — | 2024-09-10 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a File or Directories Accessible to External Parties vulnerability. |
CVE-2024-39580 | Medium | 6.7 | — | 2024-09-10 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control vulnerability. |
CVE-2024-39574 | Medium | 6.7 | — | 2024-09-10 | Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. |
CVE-2024-42424 | Medium | 5.3 | — | 2024-09-10 | Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input Validation vulnerability. |
CVE-2024-42425 | Low | 3.8 | — | 2024-09-10 | Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory Location After End of Buffer vulnerability. |
CVE-2024-39582 | Low | 2.3 | — | 2024-09-10 | Dell PowerScale InsightIQ, version 5.0, contain a Use of hard coded Credentials vulnerability. |
Loftware · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-37234 | Critical | 9.8 | — | 2024-09-10 | Loftware Spectrum through 4.6 has unprotected JMX Registry. |
CVE-2023-37231 | Critical | 9.8 | — | 2024-09-10 | Loftware Spectrum before 4.6 HF14 uses a Hard-coded Password. |
CVE-2023-37227 | Critical | 9.8 | — | 2024-09-10 | Loftware Spectrum before 4.6 HF13 Deserializes Untrusted Data. |
CVE-2023-37226 | Critical | 9.8 | — | 2024-09-10 | Loftware Spectrum before 4.6 HF14 has Missing Authentication for a Critical Function. |
CVE-2023-37233 | High | 8.8 | — | 2024-09-10 | Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks. |
CVE-2023-37230 | High | 8.8 | — | 2024-09-10 | Loftware Spectrum (testDeviceConnection) before 5.1 allows SSRF. |
CVE-2023-37229 | High | 8.8 | — | 2024-09-10 | Loftware Spectrum before 5.1 allows SSRF. |
CVE-2023-37232 | High | 7.5 | — | 2024-09-10 | Loftware Spectrum through 4.6 exposes Sensitive Information (Logs) to an Unauthorized Actor. |
Rockwell Automation · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7961 | Critical | 9.8 | — | 2024-09-12 | A path traversal vulnerability exists in the Rockwell Automation affected product. |
CVE-2024-45824 | Critical | 9.8 | — | 2024-09-12 | CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. |
CVE-2024-7960 | Critical | 9.1 | — | 2024-09-12 | The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. |
CVE-2024-8533 | High | 8.8 | — | 2024-09-12 | A privilege escalation vulnerability exists in the Rockwell Automation affected products. |
CVE-2024-45823 | High | 8.1 | — | 2024-09-12 | CVE-2024-45823 IMPACT An authentication bypass vulnerability exists in the affected product. |
CVE-2024-6077 | High | 7.5 | — | 2024-09-12 | A denial-of-service vulnerability exists in the Rockwell Automation affected products when specially crafted packets are sent to the CIP Security Object. |
CVE-2024-45825 | High | 7.5 | — | 2024-09-12 | CVE-2024-45825 IMPACT A denial-of-service vulnerability exists in the affected products. |
CVE-2024-45826 | Medium | 6.8 | — | 2024-09-12 | CVE-2024-45826 IMPACT Due to improper input validation, a path traversal and remote code execution vulnerability exists when the ThinManager® processes a crafted POST request. |
Microfocus · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-22532 | High | 7.6 | — | 2024-09-12 | Possible NLDAP Denial of Service attack Vulnerability in eDirectory has been discovered in OpenText™ eDirectory before 9.2.4.0000. |
CVE-2021-38133 | High | 7.4 | — | 2024-09-12 | Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. |
CVE-2021-22533 | Medium | 6.5 | — | 2024-09-12 | Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.4.0000. |
CVE-2021-38131 | Medium | 5.4 | — | 2024-09-12 | Possible Cross-Site Scripting (XSS) Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.5.0000. |
CVE-2021-22503 | Medium | 5.4 | — | 2024-09-12 | Possible Improper Neutralization of Input During Web Page Generation Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.3.0000. |
CVE-2021-38132 | Medium | 5.3 | — | 2024-09-12 | Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. |
Zephyrproject · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5754 | High | 8.2 | — | 2024-09-13 | BT: Encryption procedure host vulnerability |
CVE-2024-6259 | High | 7.6 | — | 2024-09-13 | BT: HCI: adv_ext_report Improper discarding in adv_ext_report |
CVE-2024-6137 | High | 7.6 | — | 2024-09-13 | BT: Classic: SDP OOB access in get_att_search_list |
CVE-2024-6135 | High | 7.6 | — | 2024-09-13 | BT:Classic: Multiple missing buf length checks |
CVE-2024-6258 | Medium | 6.8 | — | 2024-09-13 | BT: Missing length checks of net_buf in rfcomm_handle_data |
CVE-2024-5931 | Medium | 6.3 | — | 2024-09-13 | BT: Unchecked user input in bap_broadcast_assistant |
Palo Alto Networks · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8686 | High | 7.2 | — | 2024-09-11 | A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as root on the firewall. |
CVE-2024-8691 | High | 7.1 | — | 2024-09-11 | A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user. |
CVE-2024-8687 | High | 7.1 | — | 2024-09-11 | An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. |
CVE-2024-8688 | Medium | 4.4 | — | 2024-09-11 | An improper neutralization of matching symbols vulnerability in the Palo Alto Networks PAN-OS command line interface (CLI) enables authenticated administrators (including read-only administrators) with access to the CLI to to read arbitrar… |
CVE-2024-8689 | — | — | — | 2024-09-11 | A problem with the ActiveMQ integration for both Cortex XSOAR and Cortex XSIAM can result in the cleartext exposure of the configured ActiveMQ credentials in log bundles. |
Red Hat · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-6841 | High | 7.5 | — | 2024-09-10 | A denial of service vulnerability was found in keycloak where the amount of attributes per object is not limited,an attacker by sending repeated HTTP requests could cause a resource exhaustion when the application send back rows with long… |
CVE-2024-7341 | High | 7.1 | — | 2024-09-09 | A session fixation issue was discovered in the SAML adapters provided by Keycloak. |
CVE-2024-6840 | Medium | 6.6 | — | 2024-09-12 | An improper authorization flaw exists in the Ansible Automation Controller. |
CVE-2024-7260 | Medium | 6.1 | — | 2024-09-09 | An open redirect vulnerability was found in Keycloak. |
CVE-2024-7318 | Medium | 4.8 | — | 2024-09-09 | A vulnerability was found in Keycloak. |
Reedos · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45790 | Critical | 9.8 | — | 2024-09-11 | This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for excessive failed authentication attempts on its API based login. |
CVE-2024-45788 | High | 7.5 | — | 2024-09-11 | This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing rate limiting on OTP requests in certain API endpoints. |
CVE-2024-45787 | Medium | 6.5 | — | 2024-09-11 | This vulnerability exists in Reedos aiM-Star version 2.0.1 due to transmission of sensitive information in plain text in certain API endpoints. |
CVE-2024-45786 | Medium | 6.5 | — | 2024-09-11 | This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper access controls on its certain API endpoints. |
CVE-2024-45789 | Medium | 4.3 | — | 2024-09-11 | This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper validation of the ‘mode’ parameter in the API endpoint used during the registration process. |
Axis Communications Ab · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6509 | Medium | 6.5 | — | 2024-09-10 | Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi was vulnerable for file globbing which could lead to resource exhaustion of the Axis device. |
CVE-2024-6173 | Medium | 6.5 | — | 2024-09-10 | 51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API parameter allowed the use of arbitrary values allowing for an attacker to block access to the guard tour configuration page in the web interface of th… |
CVE-2024-7784 | Medium | 6.1 | — | 2024-09-10 | During internal Axis Security Development Model (ASDM) threat-modelling, a flaw was found in the protection for device tampering (commonly known as Secure Boot) in AXIS OS making it vulnerable to a sophisticated attack to bypass this prote… |
CVE-2024-0067 | Medium | 4.3 | — | 2024-09-10 | Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API ledlimit.cgi was vulnerable for path traversal attacks allowing to list folder/file names on the local file system of the Axis device. |
Gallagher · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-43690 | High | 8.0 | — | 2024-09-11 | Inclusion of Functionality from Untrusted Control Sphere(CWE-829) in the Command Centre Server and Workstations may allow an attacker to perform Remote Code Execution (RCE). |
CVE-2024-24972 | Medium | 6.5 | — | 2024-09-11 | Buffer Copy without Checking Size of Input (CWE-120) in the Controller 6000 and Controller 7000 diagnostic web interface allows an authorised and authenticated operator to reboot the Controller, causing a Denial of Service. |
CVE-2024-23906 | Medium | 6.1 | — | 2024-09-11 | Improper Neutralization of Input During Web Page Generation (CWE-79) in the Controller 6000 and Controller 7000 diagnostic webpage allows an attacker to modify Controller configuration during an authenticated Operator's session. |
CVE-2024-39808 | Medium | 4.6 | — | 2024-09-11 | Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP message handling, allows an attacker with physical access to Controller wiring to instigate a reboot leading to a denial of service. |
Lunary · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6862 | High | 8.1 | — | 2024-09-13 | A Cross-Site Request Forgery (CSRF) vulnerability exists in lunary-ai/lunary version 1.2.34 due to overly permissive CORS settings. |
CVE-2024-6867 | Medium | 6.5 | — | 2024-09-13 | An information disclosure vulnerability exists in the lunary-ai/lunary, specifically in the `runs/{run_id}/related` endpoint. |
CVE-2024-6087 | Medium | 6.5 | — | 2024-09-13 | An improper access control vulnerability exists in lunary-ai/lunary at the latest commit (a761d83) on the main branch. |
CVE-2024-6582 | Medium | 4.3 | — | 2024-09-13 | A broken access control vulnerability exists in the latest version of lunary-ai/lunary. |
Mayurik · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44430 | Critical | 9.8 | — | 2024-09-13 | SQL Injection vulnerability in Best Free Law Office Management Software-v1.0 allows an attacker to execute arbitrary code and obtain sensitive information via a crafted payload to the kortex_lite/control/register_case.php interface |
CVE-2024-8709 | Medium | 6.3 | — | 2024-09-12 | A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. |
CVE-2024-8708 | Low | 3.5 | — | 2024-09-12 | A vulnerability was found in SourceCodester Best House Rental Management System 1.0. |
CVE-2024-8610 | Low | 3.5 | — | 2024-09-09 | A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. |
Sap · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45281 | Medium | 5.8 | — | 2024-09-10 | SAP BusinessObjects Business Intelligence Platform allows a high privilege user to run client desktop applications even if some of the DLLs are not digitally signed or if the signature is broken. |
CVE-2024-44112 | Medium | 4.3 | — | 2024-09-10 | Due to missing authorization check in SAP for Oil & Gas (Transportation and Distribution), an attacker authenticated as a non-administrative user could call a remote-enabled function which will allow them to delete non-sensitive entries in… |
CVE-2024-41728 | Low | 2.7 | — | 2024-09-10 | Due to missing authorization check, SAP NetWeaver Application Server for ABAP and ABAP Platform allows an attacker logged in as a developer to read objects contained in a package. |
CVE-2024-44114 | Low | 2.0 | — | 2024-09-10 | SAP NetWeaver Application Server for ABAP and ABAP Platform allow users with high privileges to execute a program that reveals data over the network. |
Simple Online Planning · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-27115 | Critical | 9.8 | — | 2024-09-11 | A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online planning tool. |
CVE-2024-27114 | Critical | 9.8 | — | 2024-09-11 | A unauthenticated Remote Code Execution (RCE) vulnerability is found in the SO Planning online planning tool. |
CVE-2024-27113 | Critical | 9.8 | — | 2024-09-11 | An unauthenticated Insecure Direct Object Reference (IDOR) to the database has been found in the SO Planning tool that occurs when the public view setting is enabled. |
CVE-2024-27112 | Critical | 9.8 | — | 2024-09-11 | A unauthenticated SQL Injection has been found in the SO Planning tool that occurs when the public view setting is enabled. |
Citrix · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7890 | High | 7.3 | — | 2024-09-11 | Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows |
CVE-2024-7889 | High | 7.3 | — | 2024-09-11 | Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows |
CVE-2024-42423 | Medium | 6.1 | — | 2024-09-10 | Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization vulnerability when Citrix CEB is enabled for WebLogin. |
Code-projects · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8762 | Medium | 6.3 | — | 2024-09-13 | A vulnerability was found in code-projects Crud Operation System 1.0. |
CVE-2024-8710 | Medium | 6.3 | — | 2024-09-12 | A vulnerability classified as critical was found in code-projects Inventory Management 1.0. |
CVE-2024-8605 | Medium | 4.3 | — | 2024-09-09 | A vulnerability classified as problematic was found in code-projects Inventory Management 1.0. |
Dani-garcia · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-39924 | High | 8.8 | — | 2024-09-13 | An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. |
CVE-2024-39925 | Medium | 6.5 | — | 2024-09-13 | An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. |
CVE-2024-39926 | Medium | 5.4 | — | 2024-09-13 | An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. |
Dlink · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44411 | Critical | 9.8 | — | 2024-09-09 | D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the msp_info_htm function. |
CVE-2024-44410 | Critical | 9.8 | — | 2024-09-09 | D-Link DI-8300 v16.07.26A1 is vulnerable to command injection via the upgrade_filter_asp function. |
CVE-2024-44375 | High | 7.5 | — | 2024-09-09 | D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function. |
Eaton · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-31414 | Medium | 6.7 | — | 2024-09-13 | The Eaton Foreseer software provides users the capability to customize the dashboard in WebView pages. |
CVE-2024-31415 | Medium | 6.3 | — | 2024-09-13 | The Eaton Foreseer software provides the feasibility for the user to configure external servers for multiple purposes such as network management, user management, etc. |
CVE-2024-31416 | Medium | 5.6 | — | 2024-09-13 | The Eaton Foreseer software provides multiple customizable input fields for the users to configure parameters in the tool like alarms, reports, etc. |
Expressjs · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45590 | High | 7.5 | — | 2024-09-10 | body-parser is Node.js body parsing middleware. |
CVE-2024-43800 | Medium | 5.0 | — | 2024-09-10 | serve-static serves static files. |
CVE-2024-43796 | Medium | 5.0 | — | 2024-09-10 | Express.js minimalist web framework for node. |
Heyewei · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8782 | Medium | 6.3 | — | 2024-09-13 | A vulnerability was found in JFinalCMS up to 1.0. |
CVE-2024-8706 | Medium | 4.3 | — | 2024-09-12 | A vulnerability was found in JFinalCMS up to 20240903. |
CVE-2024-8694 | Low | 3.8 | — | 2024-09-11 | A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903. |
Michalaugustyniak · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7817 | Medium | 6.5 | — | 2024-09-12 | The Misiek Photo Album WordPress plugin through 1.4.3 does not have CSRF checks in some places, which could allow attackers to make logged in users delete arbitrary albums via a CSRF attack |
CVE-2024-7861 | Medium | 6.1 | — | 2024-09-12 | The Misiek Paypal WordPress plugin through 1.1.20090324 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack. |
CVE-2024-7818 | Medium | 6.1 | — | 2024-09-12 | The Misiek Photo Album WordPress plugin through 1.4.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack. |
Pega · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6701 | Medium | 5.5 | — | 2024-09-12 | Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type. |
CVE-2024-6700 | Medium | 5.5 | — | 2024-09-12 | Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name. |
CVE-2024-6702 | Medium | 5.2 | — | 2024-09-12 | Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage. |
Scriptonite · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6019 | Medium | 6.1 | — | 2024-09-12 | The Music Request Manager WordPress plugin through 1.3 does not sanitise and escape incoming music requests, which could allow unauthenticated users to perform Cross-Site Scripting attacks against administrators |
CVE-2024-6018 | Medium | 6.1 | — | 2024-09-12 | The Music Request Manager WordPress plugin through 1.3 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers |
CVE-2024-6017 | Medium | 6.1 | — | 2024-09-12 | The Music Request Manager WordPress plugin through 1.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack |
Adobe · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-41874 | Critical | 9.8 | — | 2024-09-13 | ColdFusion versions 2023.9, 2021.15 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-45113 | High | 7.5 | — | 2024-09-13 | ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. |
Angularjs · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8373 | Medium | 4.8 | — | 2024-09-09 | Improper sanitization of the value of the [srcset] attribute in <source> HTML elements in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-commu… |
CVE-2024-8372 | Medium | 4.8 | — | 2024-09-09 | Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/Content_Spoof… |
Arielhr1987 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8732 | Medium | 6.1 | — | 2024-09-13 | The Roles & Capabilities plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.1.9. |
CVE-2024-8731 | Medium | 6.1 | — | 2024-09-13 | The Cron Jobs plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.2.9. |
Arnoldgoodway · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5870 | Medium | 6.4 | — | 2024-09-13 | The Tweaker5 theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter within the theme's Button shortcode in all versions up to, and including, 1.2 due to insufficient input sanitization and output escaping. |
CVE-2024-5869 | Medium | 6.4 | — | 2024-09-13 | The Neighborly theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter within the theme's Button shortcode in all versions up to, and including, 1.4 due to insufficient input sanitization and output escapin… |
Autocms_project · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44725 | High | 7.2 | — | 2024-09-09 | AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php. |
CVE-2024-44724 | High | 7.2 | — | 2024-09-09 | AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php. |
Automationdirect · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45368 | High | 8.8 | — | 2024-09-13 | The H2-DM1E PLC's authentication protocol appears to utilize either a custom encoding scheme or a challenge-response protocol. |
CVE-2024-43099 | High | 8.8 | — | 2024-09-13 | The session hijacking attack targets the application layer's control mechanism, which manages authenticated sessions between a host PC and a PLC. |
Azindex_project · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7688 | Medium | 6.5 | — | 2024-09-09 | The AZIndex WordPress plugin through 0.8.1 does not have CSRF checks in some places, which could allow attackers to make logged in admin delete arbitrary indexes via a CSRF attack |
CVE-2024-7687 | Medium | 4.3 | — | 2024-09-09 | The AZIndex WordPress plugin through 0.8.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack. |
Baxter · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6795 | Critical | 10.0 | — | 2024-09-09 | In Connex health portal released before8/30/2024, SQL injection vulnerabilities were found that could have allowed an unauthenticated attacker to gain unauthorized access to Connex portal's database. An attacker could have submitted a cr… |
CVE-2024-6796 | High | 8.2 | — | 2024-09-09 | In Baxter Connex health portal released before 8/30/2024, an improper access control vulnerability has been found that could allow an unauthenticated attacker to gain unauthorized access to Connex portal's database and/or modify content. |
Bplugins · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7727 | Medium | 5.3 | — | 2024-09-11 | The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on multiple functions called via the 'h5vp_ajax_handler' ajax action in all vers… |
CVE-2024-7721 | Medium | 4.3 | — | 2024-09-11 | The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_password' function in all versions up to, and including, 2.5… |
Docker · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8696 | Critical | 9.8 | — | 2024-09-12 | A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2. |
CVE-2024-8695 | Critical | 9.8 | — | 2024-09-12 | A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2. |
Eclipse · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8642 | High | 8.1 | — | 2024-09-11 | In Eclipse Dataspace Components, from version 0.5.0 and before version 0.9.0, the ConsumerPullTransferTokenValidationApiController does not check for token validity (expiry, not-before, issuance date), which can allow an attacker to bypass… |
CVE-2024-8646 | Medium | 6.1 | — | 2024-09-11 | In Eclipse Glassfish versions prior to 7.0.10, a URL redirection vulnerability to untrusted sites existed. |
Eladmin · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44677 | Critical | 9.8 | — | 2024-09-10 | eladmin v2.7 and before is vulnerable to Server-Side Request Forgery (SSRF) which allows an attacker to execute arbitrary code via the DatabaseController.java component. |
CVE-2024-44676 | Medium | 4.8 | — | 2024-09-10 | eladmin v2.7 and before is vulnerable to Cross Site Scripting (XSS) which allows an attacker to execute arbitrary code via LocalStoreController. |
Ellevo · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-42760 | High | 7.5 | — | 2024-09-11 | SQL Injection vulnerability in Ellevo v.6.2.0.38160 allows a remote attacker to obtain sensitive information via the /api/mob/instrucao/conta/destinatarios component. |
CVE-2024-42759 | Medium | 6.3 | — | 2024-09-09 | An issue in Ellevo v.6.2.0.38160 allows a remote attacker to escalate privileges via the /api/usuario/cadastrodesuplente endpoint. |
Espressif · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-42484 | Medium | 6.5 | — | 2024-09-12 | ESP-NOW Component provides a connectionless Wi-Fi communication protocol. |
CVE-2024-42483 | Medium | 6.5 | — | 2024-09-12 | ESP-NOW Component provides a connectionless Wi-Fi communication protocol. |
I-doit · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8749 | High | 8.8 | — | 2024-09-12 | SQL injection vulnerability in idoit pro version 28. |
CVE-2024-8750 | Medium | 5.4 | — | 2024-09-12 | Cross-site Scripting (XSS) vulnerability in idoit pro version 28. |
Ibm · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-43180 | Medium | 4.3 | — | 2024-09-13 | IBM Concert 1.0 does not set the secure attribute on authorization tokens or session cookies. |
CVE-2024-27257 | Medium | 4.3 | — | 2024-09-10 | IBM OpenPages 8.3 and 9.0 potentially exposes information about client-side source code through use of JavaScript source maps to unauthorized users. |
Inspireui · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8269 | High | 7.3 | — | 2024-09-13 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to unauthorized user registration in all versions up to, and including, 4.15.3. |
CVE-2024-8242 | Medium | 4.3 | — | 2024-09-13 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_user_profile() function in all versions up to, and including, 4.1… |
Learning Digital · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8584 | Critical | 9.8 | — | 2024-09-09 | Orca HCM from LEARNING DIGITAL has an Missing Authentication vulnerability, allowing unauthenticated remote attacker to exploit this functionality to create an account with administrator privilege and subsequently use it to log in. |
CVE-2024-8585 | Medium | 6.5 | — | 2024-09-09 | Orca HCM from LEARNING DIGITA does not properly restrict a specific parameter of the file download functionality, allowing a remote attacker with regular privileges to download arbitrary system files. |
Mm-breaking_news_project · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8056 | Medium | 6.1 | — | 2024-09-12 | The MM-Breaking News WordPress plugin through 0.7.9 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers |
CVE-2024-8054 | Medium | 6.1 | — | 2024-09-12 | The MM-Breaking News WordPress plugin through 0.7.9 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack. |
Mozilo · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44871 | High | 7.2 | — | 2024-09-10 | An arbitrary file upload vulnerability in the component /admin/index.php of moziloCMS v3.0 allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2024-44872 | Medium | 6.1 | — | 2024-09-10 | A reflected cross-site scripting (XSS) vulnerability in moziloCMS v3.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload. |
Ninjateam · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6617 | Medium | 4.8 | — | 2024-09-13 | The NinjaTeam Header Footer Custom Code WordPress plugin before 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilt… |
CVE-2024-6493 | Medium | 4.8 | — | 2024-09-13 | The NinjaTeam Header Footer Custom Code WordPress plugin before 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilt… |
Open-xchange Gmbh · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-23185 | High | 7.5 | — | 2024-09-10 | Very large headers can cause resource exhaustion when parsing message. |
CVE-2024-23184 | Medium | 5.0 | — | 2024-09-10 | Having a large number of address headers (From, To, Cc, Bcc, etc.) becomes excessively CPU intensive. |
Oretnom23 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8711 | Medium | 5.3 | — | 2024-09-12 | A vulnerability, which was classified as problematic, has been found in SourceCodester Food Ordering Management System 1.0. |
CVE-2024-8604 | Medium | 4.3 | — | 2024-09-09 | A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. |
Peepso · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7655 | Medium | 4.4 | — | 2024-09-10 | The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 6.4.5.0 due to insufficient input sanitization and ou… |
CVE-2024-7618 | Medium | 4.4 | — | 2024-09-10 | The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 6.4.5.0 due to insufficie… |
Pillarjs · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45296 | High | 7.5 | — | 2024-09-09 | path-to-regexp turns path strings into a regular expressions. |
CVE-2024-43799 | Medium | 5.0 | — | 2024-09-10 | Send is a library for streaming files from the file system as a http response. |
Pixeljar · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7863 | Medium | 6.8 | — | 2024-09-13 | The Favicon Generator (CLOSED) WordPress plugin before 2.1 does not validate files to be uploaded and does not have CSRF checks, which could allow attackers to make logged in admin upload arbitrary files such as PHP on the server |
CVE-2024-7864 | Medium | 6.5 | — | 2024-09-13 | The Favicon Generator (CLOSED) WordPress plugin before 2.1 does not have CSRF and path validation in the output_sub_admin_page_0() function, allowing attackers to make logged in admins delete arbitrary files on the server |
Refuel · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-27321 | High | 7.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its multilabel classification tasks handle provided CSV files. |
CVE-2024-27320 | High | 7.8 | — | 2024-09-12 | An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its classification tasks handle provided CSV files. |
Solarwinds · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-28991 | Critical | 9.0 | — | 2024-09-12 | SolarWinds Access Rights Manager (ARM) was found to be susceptible to a remote code execution vulnerability. |
CVE-2024-28990 | Medium | 6.3 | — | 2024-09-12 | SolarWinds Access Rights Manager (ARM) was found to contain a hard-coded credential authentication bypass vulnerability. |
Thimpress · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8529 | Critical | 10.0 | — | 2024-09-12 | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to SQL Injection via the 'c_fields' parameter of the /wp-json/lp/v1/courses/archive-course REST API endpoint in all versions up to, and including, 4.2.7 due to insuff… |
CVE-2024-8522 | Critical | 10.0 | — | 2024-09-12 | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to SQL Injection via the 'c_only_fields' parameter of the /wp-json/learnpress/v1/courses REST API endpoint in all versions up to, and including, 4.2.7 due to insuffic… |
Utarit · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3306 | High | 7.5 | — | 2024-09-12 | Authorization Bypass Through User-Controlled Key vulnerability in Utarit Information SoliClub allows Exploiting Incorrectly Configured Access Control Security Levels. |
CVE-2024-3305 | High | 7.5 | — | 2024-09-12 | Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in Utarit Information SoliClub allows Retrieve Embedded Sensitive Data. |
Vicidial · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8503 | Critical | 9.8 | — | 2024-09-10 | An unauthenticated attacker can leverage a time-based SQL injection vulnerability in VICIdial to enumerate database records. |
CVE-2024-8504 | High | 8.8 | — | 2024-09-10 | An attacker with authenticated access to VICIdial as an "agent" can execute arbitrary shell commands as the "root" user. |
Wpdeveloper · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8742 | Medium | 6.4 | — | 2024-09-13 | The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Filterable Gallery widget in all versions up to… |
CVE-2024-8440 | Medium | 6.4 | — | 2024-09-11 | The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Fancy Text widget in all versions up to, and including… |
Zyxel · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6342 | Critical | 9.8 | — | 2024-09-10 | **UNSUPPORTED WHEN ASSIGNED** A command injection vulnerability in the export-cgi program of Zyxel NAS326 firmware versions through V5.21(AAZF.18)C0 and NAS542 firmware versions through V5.21(ABAG.15)C0 could allow an unauthenticated attac… |
CVE-2024-38270 | Medium | 5.3 | — | 2024-09-10 | An insufficient entropy vulnerability caused by the improper use of a randomness function with low entropy for web authentication tokens generation exists in the Zyxel GS1900-10HP firmware version V2.80(AAZI.0)C0. |
Adeelraza · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7816 | Medium | 6.1 | — | 2024-09-12 | The Gixaw Chat WordPress plugin through 1.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack. |
Agpt · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6091 | Critical | 9.8 | — | 2024-09-11 | A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings. |
Algoritmika · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8656 | Medium | 6.1 | — | 2024-09-13 | The WPFactory Helper plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.7.0. |
Alinto · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-24510 | Medium | 6.1 | — | 2024-09-09 | Cross Site Scripting vulnerability in Alinto SOGo before 5.10.0 allows a remote attacker to execute arbitrary code via the import function to the mail component. |
Allprices · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5884 | Medium | 6.4 | — | 2024-09-13 | The Beauty theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tpl_featured_cat_id’ parameter in all versions up to, and including, 1.1.4 due to insufficient input sanitization and output escaping. |
Alps System Integration Co., Ltd. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45504 | Medium | 6.5 | — | 2024-09-10 | Cross-site request forgery (CSRF) vulnerability in multiple Alps System Integration products and the OEM products allow a remote unauthenticated attacker to hijack the authentication of the user and to perform unintended operations if the… |
Amcharts · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8622 | Medium | 6.1 | — | 2024-09-12 | The amCharts: Charts and Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'amcharts_javascript' parameter in all versions up to, and including, 1.4.4 due to the ability to supply arbitrary JavaScript a lack… |
Angeljudesuarez · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8611 | Medium | 6.3 | — | 2024-09-09 | A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. |
Anujk305 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44798 | Medium | 4.8 | — | 2024-09-13 | phpgurukul Bus Pass Management System 1.0 is vulnerable to Cross-site scripting (XSS) in /admin/pass-bwdates-reports-details.php via fromdate and todate parameters. |
Apple · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8258 | High | 7.8 | — | 2024-09-10 | Improper Control of Generation of Code ('Code Injection') in Electron Fuses in Logitech Options Plus version 1.60.496306 on macOS allows attackers to execute arbitrary code via insecure Electron Fuses configuration. |
Artembovkun · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8543 | Medium | 6.4 | — | 2024-09-10 | The Slider comparison image before and after plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's [sciba] shortcode in all versions up to, and including, 0.8.3 due to insufficient input sanitization and output… |
Avg · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6510 | High | 7.8 | — | 2024-09-12 | Local Privilege Escalation in AVG Internet Security v24 on Windows allows a local unprivileged user to escalate privileges to SYSTEM via COM-Hijacking. |
Axis · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6979 | Medium | 6.8 | — | 2024-09-10 | Amin Aliakbari, member of the AXIS OS Bug Bounty Program, has found a broken access control which would lead to less-privileged operator- and/or viewer accounts having more privileges than designed. |
Bareos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45044 | High | 8.8 | — | 2024-09-10 | Bareos is open source software for backup, archiving, and recovery of data for operating systems. |
Benjaminprojas · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2022-2446 | High | 7.2 | — | 2024-09-13 | The WP Editor plugin for WordPress is vulnerable to deserialization of untrusted input via the 'current_theme_root' parameter in versions up to, and including 1.2.9. |
Berriai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6587 | High | 7.5 | — | 2024-09-13 | A Server-Side Request Forgery (SSRF) vulnerability exists in berriai/litellm version 1.38.10. |
Bitapps · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7770 | High | 8.8 | — | 2024-09-10 | The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'upload' function in all versions up to, and… |
Boopathi0001 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8664 | Medium | 6.1 | — | 2024-09-13 | The WP Test Email plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.1.7. |
Buffalo Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44072 | Medium | 5.7 | — | 2024-09-10 | OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN repeaters. |
Buffercode · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8268 | High | 8.8 | — | 2024-09-10 | The Frontend Dashboard plugin for WordPress is vulnerable to unauthorized code execution due to insufficient filtering on callable methods/functions via the ajax_request() function in all versions up to, and including, 2.2.4. |
Checkmk · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6572 | High | 7.4 | — | 2024-09-09 | Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem' in Checkmk before Checkmk 2.3.0p15, 2.2.0p33, 2.1.0p48 and 2.0.0 (EOL) allows man-in-the-middle attackers to intercept traffic |
Cleanlab · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45857 | High | 7.8 | — | 2024-09-12 | Deserialization of untrusted data can occur in versions 2.4.0 or newer of the Cleanlab project, enabling a maliciously crafted datalab.pkl file to run arbitrary code on an end user’s system when the data directory is loaded. |
Cminds · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5799 | Medium | 4.8 | — | 2024-09-12 | The CM Pop-Up Banners for WordPress plugin before 1.7.3 does not sanitise and escape some of its popup fields, which could allow high privilege users such as Contributors to perform Cross-Site Scripting attacks. |
Code-atlantic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5561 | Medium | 4.8 | — | 2024-09-09 | The Popup Maker WordPress plugin before 1.19.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability… |
Codesys · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6876 | Medium | 4.4 | — | 2024-09-10 | Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service. |
Coffee2code · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6544 | Medium | 5.3 | — | 2024-09-13 | The Custom Post Limits plugin for WordPress is vulnerable to full path disclosure in all versions up to, and including, 4.4.1. |
Comfast · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44466 | Critical | 9.8 | — | 2024-09-11 | COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. |
Craftcms · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45406 | Medium | 5.5 | — | 2024-09-09 | Craft is a content management system (CMS). |
Curl · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8096 | Medium | 6.5 | — | 2024-09-11 | When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the server certificate is valid, it might fail to detect some OCSP problems and instead wrongly consider the response… |
Cvat · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45393 | Medium | 6.4 | — | 2024-09-10 | Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. |
Cvscvstechcom · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8730 | Medium | 6.1 | — | 2024-09-13 | The Exit Notifier plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.10.4. |
Damienharper · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45592 | High | 8.2 | — | 2024-09-10 | auditor-bundle, formerly known as DoctrineAuditBundle, integrates auditor library into any Symfony 3.4+ application. |
Directus · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45596 | High | 7.4 | — | 2024-09-10 | Directus is a real-time API and App dashboard for managing SQL database content. |
Discourse · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45303 | Medium | 6.1 | — | 2024-09-12 | Discourse Calendar plugin adds the ability to create a dynamic calendar in the first post of a topic to Discourse. |
Elastic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-37288 | Critical | 9.9 | — | 2024-09-09 | A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML document containing a crafted payload. |
Elementor · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5416 | Medium | 5.4 | — | 2024-09-11 | The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the url parameter of multiple widgets in all versions up to, and including, 3.23.4 due to insufficient inpu… |
Elliot · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7820 | Medium | 6.5 | — | 2024-09-12 | The ILC Thickbox WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack |
Emqx · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44460 | High | 7.5 | — | 2024-09-12 | An invalid read size in Nanomq v0.21.9 allows attackers to cause a Denial of Service (DoS). |
Endress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6596 | Critical | 9.8 | — | 2024-09-10 | An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context. |
Enviragallery · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3899 | Medium | 4.8 | — | 2024-09-11 | The Gallery Plugin for WordPress WordPress plugin before 1.8.15 does not sanitise and escape some of its image settings, which could allow users with post-writing privilege such as Author to perform Cross-Site Scripting attacks. |
Erichamby · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7766 | High | 7.2 | — | 2024-09-12 | The Adicon Server WordPress plugin through 1.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks |
External-secrets · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45041 | High | 8.3 | — | 2024-09-09 | External Secrets Operator is a Kubernetes operator that integrates external secret management systems. |
Freakingwildchild · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7859 | Medium | 6.5 | — | 2024-09-12 | The Visual Sound WordPress plugin through 1.03 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack |
Gibbonedu · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-34831 | Medium | 6.1 | — | 2024-09-10 | cross-site scripting (XSS) vulnerability in Gibbon Core v26.0.00 allows an attacker to execute arbitrary code via the imageLink parameter in the library_manage_catalog_editProcess.php component. |
Gsplugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7716 | Medium | 4.8 | — | 2024-09-11 | The Logo Slider WordPress plugin before 3.6.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability… |
Gwycon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7822 | Medium | 6.1 | — | 2024-09-12 | The Quick Code WordPress plugin through 1.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack. |
Halo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-43793 | Medium | 6.3 | — | 2024-09-11 | Halo is an open source website building tool. |
Hathway · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44815 | Medium | 4.6 | — | 2024-09-10 | Vulnerability in Hathway Skyworth Router CM5100 v.4.1.1.24 allows a physically proximate attacker to obtain user credentials via SPI flash Firmware W25Q64JV. |
Hewlett Packard Enterprise (Hpe) · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-42500 | Critical | 9.3 | — | 2024-09-09 | HPE has identified a denial of service vulnerability in HPE HP-UX System's Network File System (NFSv4) services. |
Hitachi Vantara · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-28981 | High | 8.5 | — | 2024-09-12 | Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.1.0.0 and 9.3.0.8, including 8.3.x, discloses database passwords when searching metadata injectable fields. |
I13websolution · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2019-25212 | Medium | 4.9 | — | 2024-09-11 | The video carousel slider with lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficie… |
Ifeelweb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8478 | High | 7.3 | — | 2024-09-10 | The The Affiliate Super Assistent plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.5.3. |
Incsub · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45625 | Medium | 6.1 | — | 2024-09-09 | Cross-site scripting vulnerability exists in Forminator versions prior to 1.34.1. |
Ininet Solutions Gmbh · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8232 | High | 7.5 | — | 2024-09-10 | SpiderControl SCADA Web Server has a vulnerability that could allow an attacker to upload specially crafted malicious files without authentication. |
Iovamihai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8714 | Medium | 6.1 | — | 2024-09-13 | The WordPress Affiliates Plugin — SliceWP Affiliates plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.1… |
Istyle · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45203 | Medium | 4.3 | — | 2024-09-09 | Improper authorization in handler for custom URL scheme issue in "@cosme" App for Android versions prior 5.69.0 and "@cosme" App for iOS versions prior to 6.74.0 allows an attacker to lead a user to access an arbitrary website via the vuln… |
Jeecg · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-44893 | Critical | 9.8 | — | 2024-09-10 | An issue in the component /jeecg-boot/jmreport/dict/list of JimuReport v1.7.8 allows attacker to escalate privileges via a crafted GET request. |
Joplin_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40643 | Critical | 9.6 | — | 2024-09-09 | Joplin is a free, open source note taking and to-do application. |
Just-a-web-developer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7891 | Medium | 4.8 | — | 2024-09-10 | The Floating Contact Button WordPress plugin before 2.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed |
Kaon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8693 | Low | 2.4 | — | 2024-09-11 | A vulnerability, which was classified as problematic, has been found in Kaon CG3000 1.01.43. |
Kasdanet · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-24061 | Medium | 4.3 | — | 2024-09-12 | Cross Site Scripting (XSS) Vulnerability in Firewall menu in Control Panel in KASDA KW5515 version 4.3.1.0, allows attackers to execute arbitrary code and steal cookies via a crafted script |
Keyfactor · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-36066 | Low | 3.1 | — | 2024-09-12 | The CMP CLI client in KeyFactor EJBCA before 8.3.1 has only 6 octets of salt, and is thus not compliant with the security requirements of RFC 4211, and might make man-in-the-middle attacks easier. |
Khromov · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8747 | Medium | 6.4 | — | 2024-09-13 | The Email Obfuscate Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'email-obfuscate' shortcode in all versions up to, and including, 2.0 due to insufficient input sanitization and output escapi… |
Kimhuebel · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7862 | Medium | 6.5 | — | 2024-09-12 | The blogintroduction-wordpress-plugin WordPress plugin through 0.3.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack |
Kubiq · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8737 | Medium | 6.1 | — | 2024-09-13 | The PDF Thumbnail Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.3. |
Litonice13 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6282 | Medium | 5.4 | — | 2024-09-10 | The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the data-jltma-wrapper-link element in all versions up to, and including 2… |
Lizardbyte · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45407 | Medium | 6.5 | — | 2024-09-10 | Sunshine is a self-hosted game stream host for Moonlight. |
Lucasstad · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8734 | Medium | 6.1 | — | 2024-09-13 | The Lucas String Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.5. |
Majeedraza · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6850 | Medium | 4.8 | — | 2024-09-13 | The Carousel Slider WordPress plugin before 2.2.4 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed |
Man · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45595 | Medium | 6.1 | — | 2024-09-10 | D-Tale is a visualizer for Pandas data structures. |
Meowapps · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6723 | Medium | 4.7 | — | 2024-09-13 | The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by admin users when viewing chatbot discussions. |
Mercury · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8655 | Medium | 5.3 | — | 2024-09-10 | A vulnerability was found in Mercury MNVR816 up to 2.0.1.0.5. |
Metagauss · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8369 | Medium | 5.3 | — | 2024-09-10 | The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access to Private or Password-protected events due to missing authorization checks in all versions up to, and including, 4.0.4.3. |
Mirapolis · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-25270 | Medium | 4.3 | — | 2024-09-12 | An issue in Mirapolis LMS 4.6.XX allows authenticated users to exploit an Insecure Direct Object Reference (IDOR) vulnerability by manipulating the ID parameter and increment STEP parameter, leading to the exposure of sensitive user data. |
Mongodb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8654 | Medium | 5.0 | — | 2024-09-10 | MongoDB Server may access non-initialized region of memory leading to unexpected behaviour when zero arguments are called in internal aggregation stage. |
Muffingroup · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5567 | Medium | 6.4 | — | 2024-09-13 | The Betheme theme for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 27.5.5 due to insufficient input sanitization and output escaping. |
Murgroland · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8663 | Medium | 6.1 | — | 2024-09-13 | The WP Simple Booking Calendar plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.10. |
Myeventon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6910 | Medium | 4.8 | — | 2024-09-09 | The EventON WordPress plugin before 2.2.17 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed. |
Nattywp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5867 | Medium | 6.4 | — | 2024-09-13 | The Delicate theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link' parameter within the theme's Button shortcode in all versions up to, and including, 3.5.5 due to insufficient input sanitization and output escapi… |
Netiq · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2022-26322 | Medium | 4.9 | — | 2024-09-12 | Possible Insertion of Sensitive Information into Log File Vulnerability in Identity Manager has been discovered in OpenText™ Identity Manager REST Driver. |
Nixos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45593 | Critical | 9.0 | — | 2024-09-10 | Nix is a package manager for Linux and other Unix systems. |
Nko · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8045 | Medium | 6.4 | — | 2024-09-11 | The Advanced WordPress Backgrounds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘imageTag’ parameter in all versions up to, and including, 1.12.3 due to insufficient input sanitization and output escaping. |
Nozomi Networks · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-4465 | Medium | 6.0 | — | 2024-09-11 | An access control vulnerability was discovered in the Reports section due to a specific access restriction not being properly enforced for users with limited privileges. |
Nsqua · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7129 | High | 7.2 | — | 2024-09-13 | The Appointment Booking Calendar WordPress plugin before 1.6.7.43 does not escape template syntax provided via user input, leading to Twig Template Injection which further exploited can result to remote code Execution by high privilege suc… |
Opensc_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8443 | Low | 2.9 | — | 2024-09-10 | A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. |
Opentext · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-22518 | Medium | 5.8 | — | 2024-09-12 | A vulnerability identified in OpenText™ Identity Manager AzureAD Driver that allows logging of sensitive information into log file. |
Opentibiabr · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8783 | Low | 3.5 | — | 2024-09-13 | A vulnerability classified as problematic has been found in OpenTibiaBR MyAAC up to 0.8.16. |
Outtolunchproductions · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7860 | Medium | 6.1 | — | 2024-09-12 | The Simple Headline Rotator WordPress plugin through 1.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attac… |
Payara · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7312 | Medium | 6.1 | — | 2024-09-11 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 befor… |
Payara Platform · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8097 | — | — | — | 2024-09-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Payara Platform Payara Server (Logging modules) allows Sensitive credentials posted in plain-text on the server log.This issue affects Payara Server: from 6.0.0 be… |
Pgpool Global Development Group · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45624 | High | 7.5 | — | 2024-09-12 | Exposure of sensitive information due to incompatible policies issue exists in Pgpool-II. |
Pickplugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8253 | High | 8.8 | — | 2024-09-11 | The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in all versions 2.2.87 to 2.2.90. |
Pixelgrade · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8241 | Medium | 6.4 | — | 2024-09-10 | The Nova Blocks by Pixelgrade plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' attribute of the 'wp:separator' Gutenberg block in all versions up to, and including, 2.1.7 due to insufficient input sanitizat… |
Pluto-lang · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45597 | Medium | 5.3 | — | 2024-09-10 | Pluto is a superset of Lua 5.4 with a focus on general-purpose programming. |
Premio · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7133 | Medium | 4.8 | — | 2024-09-13 | The Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any WordPress plugin before 2.7.3 does not validate and escape some of its settings before outputting them back in the page, which could all… |
Profelis · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7015 | Critical | 9.8 | — | 2024-09-09 | Missing Authentication for Critical Function vulnerability in Profelis Informatics and Consulting PassBox allows Authentication Abuse. |
Progress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6658 | High | 8.4 | — | 2024-09-12 | Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects: Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.0 (inclusive) … |
Qdocs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8784 | Medium | 6.3 | — | 2024-09-13 | A vulnerability classified as critical was found in QDocs Smart School Management System 7.0.0. |
Radiustheme · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7888 | Medium | 6.3 | — | 2024-09-13 | The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions like export_forms(), import_forms(), update_fb_options()… |
Rapid7 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8042 | Low | 2.4 | — | 2024-09-09 | Rapid7 Insight Platform versions between November 2019 and August 14, 2024 suffer from missing authorization issues whereby an attacker can intercept local requests to set the name and description of a new user group. |
Realestateconnected · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-3163 | Medium | 4.3 | — | 2024-09-12 | The Easy Property Listings WordPress plugin before 3.5.4 does not have CSRF check when deleting contacts in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack |
Ronvalstar · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7918 | Medium | 4.8 | — | 2024-09-09 | The Pocket Widget WordPress plugin through 0.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capabilit… |
Samsung Open Source · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-40754 | Critical | 9.8 | — | 2024-09-10 | Heap-based Buffer Overflow vulnerability in Samsung Open Source Escargot JavaScript engine allows Overflow Buffers.This issue affects Escargot: 4.0.0. |
Schneider Electric · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8306 | High | 7.8 | — | 2024-09-11 | CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access, loss of confidentiality, integrity and availability of the workstation when non-admin authenticated user tries to perform privilege escalatio… |
Secreto31126 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45607 | Medium | 5.8 | — | 2024-09-12 | whatsapp-api-js is a TypeScript server agnostic Whatsapp's Official API framework. |
Seedprod · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6887 | Medium | 4.8 | — | 2024-09-12 | The Giveaways and Contests by RafflePress WordPress plugin before 1.12.16 does not sanitise and escape some of its Giveaways settings, which could allow high privilege users such as editor and above to perform Stored Cross-Site Scripting… |
Shandong Star Measurement And Control Equipment · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8705 | Medium | 6.3 | — | 2024-09-11 | A vulnerability was found in Shandong Star Measurement and Control Equipment Heating Network Wireless Monitoring System 5.6.2 and classified as critical. |
Sick Ag · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8751 | High | 7.5 | — | 2024-09-12 | A vulnerability in the MSC800 allows an unauthenticated attacker to modify the product’s IP address over Sopas ET. |
Snapshot_backup_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7689 | Medium | 4.3 | — | 2024-09-09 | The Snapshot Backup WordPress plugin through 2.1.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack. |
Spring · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-38816 | High | 7.5 | — | 2024-09-13 | Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. |
Squirrly · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7955 | Medium | 4.8 | — | 2024-09-10 | The Starbox WordPress plugin before 3.5.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is d… |
Symfony · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45411 | High | 8.5 | — | 2024-09-09 | Twig is a template language for PHP. |
Tduckcloud · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8692 | Medium | 5.3 | — | 2024-09-11 | A vulnerability classified as critical was found in TDuckCloud TDuckPro up to 6.3. |
Tebilisim · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-2010 | Medium | 6.1 | — | 2024-09-12 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in TE Informatics V5 allows Reflected XSS. |
Techexcel · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8601 | Medium | 6.5 | — | 2024-09-09 | This vulnerability exists in TechExcel Back Office Software versions prior to 1.0.0 due to improper access controls on certain API endpoints. |
Theme-fusion · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5628 | Medium | 6.4 | — | 2024-09-13 | The Avada | Website Builder For WordPress & eCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's fusion_button shortcode in all versions up to, and including, 3.11.9 due to insufficient input sanitiz… |
Themeum · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-2919 | Medium | 4.3 | — | 2024-09-10 | The Tutor LMS plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.7.4. |
Tnbmobil · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-6656 | Critical | 9.8 | — | 2024-09-13 | Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable. |
Towfiq I. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-5789 | Medium | 6.4 | — | 2024-09-13 | The Triton Lite theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'url' attribute within the theme's Button shortcode in all versions up to, and including, 1.3 due to insufficient input sanitization and output escapi… |
Ubiquiti Inc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-42025 | High | 7.8 | — | 2024-09-13 | A Command Injection vulnerability found in a Self-Hosted UniFi Network Servers (Linux) with UniFi Network Application (Version 8.3.32 and earlier) allows a malicious actor with unifi user shell access to escalate privileges to root on the… |
Uniong · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8586 | Medium | 6.1 | — | 2024-09-09 | WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers to exploit this vulnerability to forge URLs. |
Vidco · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7609 | High | 7.5 | — | 2024-09-11 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Vidco Software VOC TESTER allows Path Traversal. |
Villatheme · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8277 | Critical | 9.8 | — | 2024-09-11 | The WooCommerce Photo Reviews Premium plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.3.13.2. |
Wireshark · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8645 | Medium | 5.5 | — | 2024-09-10 | SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file |
Wpdelicious · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7626 | High | 8.1 | — | 2024-09-11 | The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for WordPress is vulnerable to arbitrary file movement and reading due to insufficient file path validation in the save_edit_profile_details() function… |
Xwiki · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45591 | Medium | 5.3 | — | 2024-09-10 | XWiki Platform is a generic wiki platform. |
Xwp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-7423 | High | 8.8 | — | 2024-09-13 | The Stream plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.0.1. |
Yeti-platform · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45412 | Medium | 5.3 | — | 2024-09-10 | Yeti bridges the gap between CTI and DFIR practitioners by providing a Forensics Intelligence platform and pipeline. |
Yithemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8665 | Medium | 6.1 | — | 2024-09-13 | The YITH Custom Login plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.7.3. |
云课网络科技有限公司 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-8707 | Medium | 4.3 | — | 2024-09-12 | A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 3.0.6. |