| Page(s) : 1 ... 3 4 5 6 7 8 9 10 11 12 [13] 14 15 16 17 18 19 20 21 22 23 ... | Result(s) : 9031 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.7 | 2023-08-11 | CVE-2023-4304 | cve | Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0. |
| 3.3 | 2023-08-10 | CVE-2023-30683 | cve | Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call endCall API without permission. |
| 3.3 | 2023-08-10 | CVE-2023-30700 | cve | PendingIntent hijacking vulnerability in SemWifiApTimeOutImpl in framework prior to SMR Aug-2023 Release 1 allows local attackers to access ContentProvider without proper permis... |
| 3.3 | 2023-08-10 | CVE-2023-30685 | cve | Improper access control vulnerability in Telecom prior to SMR Aug-2023 Release 1 allows local attakcers to change TTY mode. |
| 3.3 | 2023-08-10 | CVE-2023-30682 | cve | Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call silenceRinger API without permission. |
| 3.3 | 2023-08-10 | CVE-2023-30684 | cve | Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local attackers to call acceptRingingCall API without permission. |
| 3.3 | 2023-08-09 | CVE-2023-39341 | cve | "FFRI yarai", "FFRI yarai Home and Business Edition" and their OEM products handle exceptional conditions improperly, which may lead to denial-of-service (DoS) condition. Affe... |
| 3.6 | 2023-08-08 | CVE-2023-39342 | cve | Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI (`dangerzone-cli` command) logs output from the co... |
| 3.3 | 2023-08-08 | CVE-2023-39978 | cve | ImageMagick before 6.9.12-91 allows attackers to cause a denial of service (memory consumption) in Magick::Draw. |
| 3.7 | 2023-08-04 | CVE-2023-38700 | cve | matrix-appservice-irc is a Node.js IRC bridge for Matrix. Prior to version 1.0.1, it was possible to craft an event such that it would leak part of a targeted message event from... |
| 3.1 | 2023-08-03 | CVE-2023-26979 | cve | Bluetens Electrostimulation Device BluetensQ device app version 4.3.15 is vulnerable to Man-in-the-middle attacks in the BLE channel. It allows attackers to decrease or increase... |
| 3.3 | 2023-08-03 | CVE-2023-3669 | cve | A missing Brute-Force protection in CODESYS Development System prior to 3.5.19.20 allows a local attacker to have unlimited attempts of guessing the password within an import di... |
| 3.2 | 2023-08-02 | CVE-2023-26442 | cve | In case Cacheservice was configured to use a sproxyd object-storage backend, it would follow HTTP redirects issued by that backend. An attacker with access to a local or restric... |
| 3.1 | 2023-08-02 | CVE-2023-26438 | cve | External service lookups for a number of protocols were vulnerable to a time-of-check/time-of-use (TOCTOU) weakness, involving the JDK DNS cache. Attackers that were timing DNS ... |
| 3.3 | 2023-08-02 | CVE-2023-4016 | cve | Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a machine, the ability to write almost unlimited amounts of unfiltered data into ... |
| 3.1 | 2023-07-29 | CVE-2022-4923 | cve | Inappropriate implementation in Omnibox in Google Chrome prior to 99.0.4844.51 allowed an attacker in a privileged network position to perform a man-in-the-middle attack via mal... |
| 3.1 | 2023-07-28 | CVE-2023-37904 | cve | Discourse is an open source discussion platform. Prior to version 3.0.6 of the `stable` branch and version 3.1.0.beta7 of the `beta` and `tests-passed` branches, more users than... |
| 2.7 | 2023-07-27 | CVE-2023-37900 | cve | Crossplane is a framework for building cloud native control planes without needing to write code. In versions prior to 1.11.5, 1.12.3, and 1.13.0, a high-privileged user could c... |
| 3.5 | 2023-07-26 | CVE-2023-33229 | cve | The SolarWinds Platform was susceptible to the Incorrect Input Neutralization Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform accoun... |
| 2.7 | 2023-07-25 | CVE-2023-37361 | cve | REDCap 12.0.26 LTS and 12.3.2 Standard allows SQL Injection via scheduling, repeatforms, purpose, app_title, or randomization. |
| Page(s) : 1 ... 3 4 5 6 7 8 9 10 11 12 [13] 14 15 16 17 18 19 20 21 22 23 ... | Result(s) : 9031 |
