| Page(s) : 1 ... 29 30 31 32 33 34 35 36 37 38 [39] 40 41 42 43 44 45 46 47 48 49 ... | Result(s) : 89852 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.8 | 2024-02-02 | CVE-2021-22282 | cve | Improper Control of Generation of Code ('Code Injection') vulnerability in B&R Industrial Automation Automation Studio allows Local Execution of Code.This issue affect... |
| 8.8 | 2024-02-02 | CVE-2020-24681 | cve | Incorrect Permission Assignment for Critical Resource vulnerability in B&R Industrial Automation Automation Studio allows Privilege Escalation.This issue affects Automation Stud... |
| 7.5 | 2024-02-02 | CVE-2023-50326 | cve | IBM PowerSC 1.3, 2.0, and 2.1 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 275107. |
| 8.8 | 2024-02-02 | CVE-2023-50936 | cve | IBM PowerSC 1.3, 2.0, and 2.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 27511... |
| 7.5 | 2024-02-02 | CVE-2023-50937 | cve | IBM PowerSC 1.3, 2.0, and 2.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 275117. |
| 8.3 | 2024-02-02 | CVE-2024-21399 | cve | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability |
| 7.5 | 2024-02-02 | CVE-2023-50962 | cve | IBM PowerSC 1.3, 2.0, and 2.1 MFA does not implement the "HTTP Strict Transport Security" (HSTS) web security policy mechanism. IBM X-Force ID: 276004. |
| 8.8 | 2024-02-02 | CVE-2024-22899 | cve | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function. |
| 8.8 | 2024-02-02 | CVE-2024-22900 | cve | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function. |
| 8.8 | 2024-02-02 | CVE-2024-22903 | cve | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK function. |
| 8.8 | 2024-02-02 | CVE-2024-22320 | cve | IBM Operational Decision Manager 8.10.3 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization. By sending spec... |
| 8.8 | 2024-02-02 | CVE-2023-38263 | cve | IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to perform unauthorized actions due to improper access controls. IBM X-Force ID: 260577. |
| 7.5 | 2024-02-02 | CVE-2023-50939 | cve | IBM PowerSC 1.3, 2.0, and 2.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 275129. |
| 7.8 | 2024-02-02 | CVE-2024-22016 | cve | In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an authorized user can write directly to the Scada directory. This may allow privilege escalation. |
| 8.8 | 2024-02-01 | CVE-2023-36496 | cve | Delegated Admin Privilege virtual attribute provider plugin, when enabled, allows an authenticated user to elevate their permissions in the Directory Server. |
| 8.8 | 2024-02-01 | CVE-2023-47867 | cve | MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the dev... |
| 7.5 | 2024-02-01 | CVE-2023-49115 | cve | MachineSense devices use unauthenticated MQTT messaging to monitor devices and remote viewing of sensor data by users. |
| 8.1 | 2024-02-01 | CVE-2023-49610 | cve | MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or ... |
| 8.8 | 2024-02-01 | CVE-2024-21852 | cve | In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can supply a malicious configuration file by utilizing a Zip Slip vulnerability in the unpa... |
| 7.5 | 2024-02-01 | CVE-2024-24756 | cve | Crafatar serves Minecraft avatars based on the skin for use in external applications. Files outside of the `lib/public/` directory can be requested from the server. Instances ru... |
| Page(s) : 1 ... 29 30 31 32 33 34 35 36 37 38 [39] 40 41 42 43 44 45 46 47 48 49 ... | Result(s) : 89852 |
