Page(s) : 1 ... 18 19 20 21 22 23 24 25 26 27 [28] 29 30 31 32 33 34 35 36 37 38 ... | Result(s) : 89827 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
7.5 | 2024-02-07 | CVE-2023-6536 | cve | A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, ... |
7.5 | 2024-02-07 | CVE-2024-23448 | cve | An issue was discovered whereby APM Server could log at ERROR level, a response from Elasticsearch indicating that indexing the document failed and that response would contain p... |
7.3 | 2024-02-07 | CVE-2024-24806 | cve | libuv is a multi-platform support library with a focus on asynchronous I/O. The `uv_getaddrinfo` function in `src/unix/getaddrinfo.c` (and its windows counterpart `src/win/getad... |
7.8 | 2024-02-07 | CVE-2024-22012 | cve | there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User inte... |
7.5 | 2024-02-07 | CVE-2023-38369 | cve | IBM Security Access Manager Container 10.0.0.0 through 10.0.6.1 does not require that docker images should have strong passwords by default, which makes it easier for attackers ... |
7.2 | 2024-02-07 | CVE-2023-43017 | cve | IBM Security Verify Access 10.0.0.0 through 10.0.6.1 could allow a privileged user to install a configuration file that could allow remote access. IBM X-Force ID: 266155. |
7.5 | 2024-02-07 | CVE-2023-47700 | cve | IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and IBM Storage Virtualize 8.6 products could allow a remote attacker to spoof a trusted system that would not be correc... |
8.8 | 2024-02-07 | CVE-2024-20252 | cve | Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to conduct cross-site... |
8.8 | 2024-02-07 | CVE-2024-20254 | cve | Multiple vulnerabilities in Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to conduct cross-site... |
7.1 | 2024-02-07 | CVE-2024-20255 | cve | A vulnerability in the SOAP API of Cisco Expressway Series and Cisco TelePresence Video Communication Server could allow an unauthenticated, remote attacker to conduct a cross-s... |
7.5 | 2024-02-07 | CVE-2024-20290 | cve | A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. T... |
8.8 | 2024-02-07 | CVE-2024-24824 | cve | Graylog is a free and open log management platform. Starting in version 2.0.0 and prior to versions 5.1.11 and 5.2.4, arbitrary classes can be loaded and instantiated using a HT... |
8.8 | 2024-02-07 | CVE-2024-1118 | cve | The Podlove Subscribe button plugin for WordPress is vulnerable to UNION-based SQL Injection via the 'button' attribute of the podlove-subscribe-button shortcode in al... |
7.5 | 2024-02-07 | CVE-2024-25200 | cve | Espruino 2v20 (commit fcc9ba4) was discovered to contain a Stack Overflow via the jspeFactorFunctionCall at src/jsparse.c. |
7.5 | 2024-02-07 | CVE-2024-25201 | cve | Espruino 2v20 (commit fcc9ba4) was discovered to contain an Out-of-bounds Read via jsvStringIteratorPrintfCallback at src/jsvar.c. |
7.5 | 2024-02-07 | CVE-2024-24304 | cve | In the module "Mailjet" (mailjet) from Mailjet for PrestaShop before versions 3.5.1, a guest can download technical information without restriction. |
7.5 | 2024-02-07 | CVE-2024-24311 | cve | Path Traversal vulnerability in Linea Grafica "Multilingual and Multistore Sitemap Pro - SEO" (lgsitemaps) module for PrestaShop before version 1.6.6, a guest can download perso... |
7.4 | 2024-02-07 | CVE-2023-51437 | cve | Observable timing discrepancy vulnerability in Apache Pulsar SASL Authentication Provider can allow an attacker to forge a SASL Role Token that will pass signature verification.... |
8.8 | 2024-02-07 | CVE-2024-22022 | cve | Vulnerability CVE-2024-22022 allows a Veeam Recovery Orchestrator user that has been assigned a low-privileged role to access the NTLM hash of the service account used by the Ve... |
7.8 | 2024-02-07 | CVE-2024-24810 | cve | WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. The .be TEMP folder is vulnerable to DLL redirection attacks that allow the... |
Page(s) : 1 ... 18 19 20 21 22 23 24 25 26 27 [28] 29 30 31 32 33 34 35 36 37 38 ... | Result(s) : 89827 |