| CVE-2024-48823 |
Local file inclusion in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941... |
|
2024-10-14 |
View Details |
| CVE-2024-9139 |
The affected product permits OS command injection through improperly restricted commands, potentiall... |
|
2024-10-14 |
View Details |
| CVE-2024-48824 |
An issue in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941b10799fb7 al... |
|
2024-10-14 |
View Details |
| CVE-2024-9137 |
The affected product lacks an authentication check when sending commands to the server via the Moxa ... |
|
2024-10-14 |
View Details |
| CVE-2024-46911 |
Cross-site Resource Forgery (CSRF), Privilege escalation vulnerability in Apache Roller. On multi-bl... |
|
2024-10-14 |
View Details |
| CVE-2024-40616 |
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... |
|
2024-10-14 |
View Details |
| CVE-2024-43701 |
Software installed and run as a non-privileged user may conduct GPU system calls to read and write f... |
|
2024-10-14 |
View Details |
| CVE-2024-43701 |
Software installed and run as a non-privileged user may conduct GPU system calls to read and write f... |
|
2024-10-14 |
View Details |
| CVE-2024-38863 |
Exposure of CSRF tokens in query parameters on specific requests in Checkmk GmbH's Checkmk versions ... |
|
2024-10-14 |
View Details |
| CVE-2024-38862 |
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p18, <2.2.... |
|
2024-10-14 |
View Details |
| CVE-2024-9924 |
The fix for CVE-2024-26261 was incomplete, and and the specific package for OAKlouds from Hgiga rema... |
CRITICAL |
2024-10-14 |
View Details |
| CVE-2024-9923 |
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing re... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-49214 |
QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a ... |
|
2024-10-14 |
View Details |
| CVE-2024-9922 |
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing un... |
HIGH |
2024-10-14 |
View Details |
| CVE-2024-9921 |
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate specific page parameter, allowing unau... |
CRITICAL |
2024-10-14 |
View Details |
| CVE-2024-48909 |
SpiceDB is an open source database for scalably storing and querying fine-grained authorization data... |
|
2024-10-14 |
View Details |
| CVE-2024-48911 |
OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its config file... |
|
2024-10-14 |
View Details |
| CVE-2024-47766 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
|
2024-10-14 |
View Details |
| CVE-2024-47767 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
|
2024-10-14 |
View Details |
| CVE-2024-9137 |
The affected product lacks an authentication check when sending commands to the server via the Moxa ... |
|
2024-10-14 |
View Details |
| CVE-2024-9139 |
The affected product permits OS command injection through improperly restricted commands, potentiall... |
|
2024-10-14 |
View Details |
| CVE-2024-30117 |
A dynamic search for a prerequisite library could allow the possibility for an attacker to replace t... |
|
2024-10-14 |
View Details |
| CVE-2024-9953 |
A potential denial-of-service (DoS) vulnerability exists in CERT VINCE software versions prior to 3.... |
|
2024-10-14 |
View Details |
| CVE-2024-35520 |
Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMT_invite.cgi via device_name2 param... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-35519 |
Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable to c... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-35518 |
Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the wan_dns1_pri p... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-6207 |
CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN... |
|
2024-10-14 |
View Details |
| CVE-2024-48911 |
OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its config file... |
|
2024-10-14 |
View Details |
| CVE-2024-48909 |
SpiceDB is an open source database for scalably storing and querying fine-grained authorization data... |
|
2024-10-14 |
View Details |
| CVE-2024-48824 |
An issue in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941b10799fb7 al... |
|
2024-10-14 |
View Details |
| CVE-2024-48823 |
Local file inclusion in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941... |
|
2024-10-14 |
View Details |
| CVE-2024-48822 |
Privilege escalation in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941... |
|
2024-10-14 |
View Details |
| CVE-2024-48821 |
Cross Site Scripting vulnerability in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d505... |
|
2024-10-14 |
View Details |
| CVE-2024-47885 |
The Astro web framework has a DOM Clobbering gadget in the client-side router starting in version 3.... |
|
2024-10-14 |
View Details |
| CVE-2023-48082 |
Nagios XI before 5.11.3 2024R1 was discovered to improperly handle API keys generation (randomly-gen... |
|
2024-10-14 |
View Details |
| CVE-2024-48795 |
An issue in Creative Labs Pte Ltd com.creative.apps.xficonnect 2.00.02 allows a remote attacker to o... |
|
2024-10-14 |
View Details |
| CVE-2024-48793 |
An issue in INATRONIC com.inatronic.bmw 2.7.1 allows a remote attacker to obtain sensitive informati... |
|
2024-10-14 |
View Details |
| CVE-2024-48792 |
An issue in Hideez com.hideez 2.7.8.3 allows a remote attacker to obtain sensitive information via t... |
|
2024-10-14 |
View Details |
| CVE-2024-48791 |
An issue in Plug n Play Camera com.starvedia.mCamView.zwave 5.5.1 allows a remote attacker to obtain... |
|
2024-10-14 |
View Details |
| CVE-2024-47826 |
eLabFTW is an open source electronic lab notebook for research labs. A vulnerability in versions pri... |
|
2024-10-14 |
View Details |
| CVE-2024-48790 |
An issue in ILIFE com.ilife.home.global 1.8.7 allows a remote attacker to obtain sensitive informati... |
|
2024-10-14 |
View Details |
| CVE-2024-49214 |
QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a ... |
|
2024-10-14 |
View Details |
| CVE-2024-48789 |
An issue in INATRONIC com.inatronic.drivedeck.home 2.6.23 allows a remote attacker to obtain sensitv... |
|
2024-10-14 |
View Details |
| CVE-2024-9823 |
There exists a security vulnerability in Jetty's DosFilter which can be exploited by unauthorized us... |
|
2024-10-14 |
View Details |
| CVE-2024-47831 |
Next.js is a React Framework for the Web. Cersions on the 10.x, 11.x, 12.x, 13.x, and 14.x branches ... |
|
2024-10-14 |
View Details |
| CVE-2024-47826 |
eLabFTW is an open source electronic lab notebook for research labs. A vulnerability in versions pri... |
|
2024-10-14 |
View Details |
| CVE-2024-47831 |
Next.js is a React Framework for the Web. Cersions on the 10.x, 11.x, 12.x, 13.x, and 14.x branches ... |
|
2024-10-14 |
View Details |
| CVE-2024-47767 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
|
2024-10-14 |
View Details |
| CVE-2024-47766 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
|
2024-10-14 |
View Details |
| CVE-2024-46988 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
MEDIUM |
2024-10-14 |
View Details |