Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 89609 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
8.8 | 2024-02-08 | CVE-2024-24830 | cve | OpenObserve is a observability platform built specifically for logs, metrics, traces, analytics, designed to work at petabyte scale. A vulnerability has been identified in the "... |
7 | 2024-02-08 | CVE-2024-22795 | cve | Insecure Permissions vulnerability in Forescout SecureConnector v.11.3.06.0063 allows a local attacker to escalate privileges via the Recheck Compliance Status component. |
7.5 | 2024-02-08 | CVE-2024-1329 | cve | HashiCorp Nomad and Nomad Enterprise 1.5.13 up to 1.6.6, and 1.7.3 template renderer is vulnerable to arbitrary file write on the host as the Nomad client user through symlink a... |
7.5 | 2024-02-08 | CVE-2024-23660 | cve | The Binance Trust Wallet app for iOS in commit 3cd6e8f647fbba8b5d8844fcd144365a086b629f, git tag 0.0.4 misuses the trezor-crypto library and consequently generates mnemonic word... |
7.5 | 2024-02-08 | CVE-2024-23756 | cve | The HTTP PUT and DELETE methods are enabled in the Plone official Docker version 5.2.13 (5221), allowing unauthenticated attackers to execute dangerous actions such as uploading... |
7.8 | 2024-02-08 | CVE-2023-25365 | cve | Cross Site Scripting vulnerability found in October CMS v.3.2.0 allows local attacker to execute arbitrary code via the file type .mp3 |
8.8 | 2024-02-08 | CVE-2023-27001 | cve | An issue discovered in Egerie Risk Manager v4.0.5 allows attackers to bypass the signature mechanism and tamper with the values inside the JWT payload resulting in privilege esc... |
8.8 | 2024-02-08 | CVE-2023-40265 | cve | An issue was discovered in Atos Unify OpenScape Xpressions WebAssistant V7 before V7R1 FR5 HF42 P911. It allows authenticated remote code execution via file upload. |
8.8 | 2024-02-08 | CVE-2023-47020 | cve | Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Handler v.1.5.1 allows privileges to be escalated by an attacker through a crafted request involving user acc... |
7.5 | 2024-02-08 | CVE-2023-6517 | cve | Exposure of Sensitive Information Due to Incompatible Policies vulnerability in Mia Technology Inc. MIA-MED allows Collect Data as Provided by Users.This issue affects MIA-MED: ... |
7.5 | 2024-02-08 | CVE-2023-6518 | cve | Plaintext Storage of a Password vulnerability in Mia Technology Inc. MIA-MED allows Read Sensitive Strings Within an Executable.This issue affects MIA-MED: before 1.0.7. |
7.5 | 2024-02-08 | CVE-2023-6519 | cve | Exposure of Data Element to Wrong Session vulnerability in Mia Technology Inc. MIA-MED allows Read Sensitive Strings Within an Executable.This issue affects MIA-MED: before 1.0.... |
8 | 2024-02-08 | CVE-2024-0985 | cve | Late privilege drop in REFRESH MATERIALIZED VIEW CONCURRENTLY in PostgreSQL allows an object creator to execute arbitrary SQL functions as the command issuer. The command intend... |
8.8 | 2024-02-08 | CVE-2024-24113 | cve | xxl-job =< 2.4.1 has a Server-Side Request Forgery (SSRF) vulnerability, which causes low-privileged users to control executor to RCE. |
7.5 | 2024-02-08 | CVE-2024-23452 | cve | Request smuggling vulnerability in HTTP server in Apache bRPC 0.9.5~1.7.0 on all platforms allows attacker to smuggle request. Vulnerability Cause Description: The http_parser... |
8.8 | 2024-02-08 | CVE-2023-6515 | cve | Authorization Bypass Through User-Controlled Key vulnerability in Mia Technology Inc. MIA-MED allows Authentication Abuse.This issue affects MIA-MED: before 1.0.7. |
8.8 | 2024-02-08 | CVE-2024-24350 | cve | File Upload vulnerability in Software Publico e-Sic Livre v.2.0 and before allows a remote attacker to execute arbitrary code via the extension filtering component. |
8.1 | 2024-02-08 | CVE-2024-25148 | cve | In Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 15, and older unsupported versions the `doA... |
7.5 | 2024-02-07 | CVE-2023-6356 | cve | A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, ... |
7.5 | 2024-02-07 | CVE-2023-6535 | cve | A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, ... |
Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 89609 |