| CVE-2024-46980 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-45731 |
In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user that ... |
|
2024-10-14 |
View Details |
| CVE-2024-46528 |
An Insecure Direct Object Reference (IDOR) vulnerability in KubeSphere v3.4.1 and v4.1.1 allows low-... |
|
2024-10-14 |
View Details |
| CVE-2024-45732 |
In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud Platform... |
|
2024-10-14 |
View Details |
| CVE-2023-45817 |
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-9823. Reason: T... |
|
2024-10-14 |
View Details |
| CVE-2024-45733 |
In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not... |
|
2024-10-14 |
View Details |
| CVE-2024-48799 |
An issue in LOREX TECHNOLOGY INC com.lorexcorp.lorexping 1.4.22 allows a remote attacker to obtain s... |
|
2024-10-14 |
View Details |
| CVE-2024-45734 |
In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold the ... |
|
2024-10-14 |
View Details |
| CVE-2024-48798 |
An issue in Hubble Connected (com.hubbleconnected.vervelife) 2.00.81 allows a remote attacker to obt... |
|
2024-10-14 |
View Details |
| CVE-2024-45735 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6, and Splunk Secure Gateway versions on Splunk Cl... |
|
2024-10-14 |
View Details |
| CVE-2024-48797 |
An issue in PCS Engineering Preston Cinema (com.prestoncinema.app) 0.2.0 allows a remote attacker to... |
|
2024-10-14 |
View Details |
| CVE-2024-45736 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below... |
|
2024-10-14 |
View Details |
| CVE-2024-46528 |
An Insecure Direct Object Reference (IDOR) vulnerability in KubeSphere v3.4.1 and v4.1.1 allows low-... |
|
2024-10-14 |
View Details |
| CVE-2024-48796 |
An issue in EQUES com.eques.plug 1.0.1 allows a remote attacker to obtain sensitive information via ... |
|
2024-10-14 |
View Details |
| CVE-2024-45737 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below... |
|
2024-10-14 |
View Details |
| CVE-2024-48168 |
A stack overflow vulnerability exists in the sub_402280 function of the HNAP service of D-Link DCS-9... |
|
2024-10-14 |
View Details |
| CVE-2024-45738 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes sensit... |
|
2024-10-14 |
View Details |
| CVE-2024-46535 |
Jepaas v7.2.8 was discovered to contain a SQL injection vulnerability via the orderSQL parameter at ... |
|
2024-10-14 |
View Details |
| CVE-2024-45739 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes plaint... |
|
2024-10-14 |
View Details |
| CVE-2024-46535 |
Jepaas v7.2.8 was discovered to contain a SQL injection vulnerability via the orderSQL parameter at ... |
|
2024-10-14 |
View Details |
| CVE-2024-45741 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.240... |
|
2024-10-14 |
View Details |
| CVE-2024-45740 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.240... |
|
2024-10-14 |
View Details |
| CVE-2024-45740 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.240... |
|
2024-10-14 |
View Details |
| CVE-2024-45739 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes plaint... |
|
2024-10-14 |
View Details |
| CVE-2024-45741 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.240... |
|
2024-10-14 |
View Details |
| CVE-2024-45738 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes sensit... |
|
2024-10-14 |
View Details |
| CVE-2024-45737 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below... |
LOW |
2024-10-14 |
View Details |
| CVE-2024-45736 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-45735 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6, and Splunk Secure Gateway versions on Splunk Cl... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-45734 |
In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold the ... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-45733 |
In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not... |
HIGH |
2024-10-14 |
View Details |
| CVE-2024-45732 |
In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud Platform... |
|
2024-10-14 |
View Details |
| CVE-2024-45731 |
In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user that ... |
|
2024-10-14 |
View Details |
| CVE-2024-8184 |
There exists a security vulnerability in Jetty's ThreadLimitHandler.getRemote() which can be exploit... |
|
2024-10-14 |
View Details |
| CVE-2024-6763 |
Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine . It inclu... |
|
2024-10-14 |
View Details |
| CVE-2024-6762 |
Jetty PushSessionCacheFilter can be exploited by unauthenticated users
to launch remote DoS attacks... |
|
2024-10-14 |
View Details |
| CVE-2024-48153 |
DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and ex... |
|
2024-10-14 |
View Details |
| CVE-2024-9921 |
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate specific page parameter, allowing unau... |
CRITICAL |
2024-10-14 |
View Details |
| CVE-2023-50780 |
Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which a... |
|
2024-10-14 |
View Details |
| CVE-2024-48150 |
D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the sub_451208 function.... |
|
2024-10-14 |
View Details |
| CVE-2024-9922 |
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing un... |
HIGH |
2024-10-14 |
View Details |
| CVE-2024-41997 |
An issue was discovered in version of Warp Terminal prior to 2024.07.18 (v0.2024.07.16.08.02). A com... |
|
2024-10-14 |
View Details |
| CVE-2024-47885 |
The Astro web framework has a DOM Clobbering gadget in the client-side router starting in version 3.... |
|
2024-10-14 |
View Details |
| CVE-2024-9923 |
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing re... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2023-50780 |
Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which a... |
HIGH |
2024-10-14 |
View Details |
| CVE-2024-9924 |
The fix for CVE-2024-26261 was incomplete, and and the specific package for OAKlouds from Hgiga rema... |
CRITICAL |
2024-10-14 |
View Details |
| CVE-2024-9823 |
There exists a security vulnerability in Jetty's DosFilter which can be exploited by unauthorized us... |
|
2024-10-14 |
View Details |
| CVE-2024-48261 |
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-48251. Reason: This candidat... |
|
2024-10-14 |
View Details |
| CVE-2024-9936 |
When manipulating the selection node cache, an attacker may have been able to cause unexpected behav... |
|
2024-10-14 |
View Details |
| CVE-2024-48259 |
Cloudlog 2.6.15 allows Oqrs.php request_form SQL injection via station_id or callsign.... |
|
2024-10-14 |
View Details |