Page(s) : 1 ... 31 32 33 34 35 36 37 38 39 40 [41] 42 43 44 45 46 47 48 49 50 51 ... | Result(s) : 86502 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
7.8 | 2024-09-25 | CVE-2024-8316 | cve | In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is possible through an insecure deserialization vulnerability. |
7.5 | 2024-09-25 | CVE-2024-22892 | cve | OpenSlides 4.0.15 was discovered to be using a weak hashing algorithm to store passwords. |
7.5 | 2024-09-25 | CVE-2024-20433 | cve | A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an a... |
7.5 | 2024-09-25 | CVE-2024-20436 | cve | A vulnerability in the HTTP Server feature of Cisco IOS XE Software when the Telephony Service feature is enabled could allow an unauthenticated, remote attacker to cause a deni... |
8.8 | 2024-09-25 | CVE-2024-20437 | cve | A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a cross-site request forgery (CSRF) att... |
8.6 | 2024-09-25 | CVE-2024-20455 | cve | A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE Software in controller mode could allow an una... |
8.6 | 2024-09-25 | CVE-2024-20464 | cve | A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) c... |
8.6 | 2024-09-25 | CVE-2024-20467 | cve | A vulnerability in the implementation of the IPv4 fragmentation reassembly code in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of ser... |
8.6 | 2024-09-25 | CVE-2024-20480 | cve | A vulnerability in the DHCP Snooping feature of Cisco IOS XE Software on Software-Defined Access (SD-Access) fabric edge nodes could allow an unauthenticated, remote attacker to... |
7.8 | 2024-09-25 | CVE-2024-8975 | cve | Unquoted Search Path or Element vulnerability in Grafana Alloy on Windows allows Privilege Escalation from Local User to SYSTEM This issue affects Alloy: before 1.3.3, from 1.4.... |
7.8 | 2024-09-25 | CVE-2024-8996 | cve | Unquoted Search Path or Element vulnerability in Grafana Agent (Flow mode) on Windows allows Privilege Escalation from Local User to SYSTEM This issue affects Agent Flow: before... |
7.5 | 2024-09-25 | CVE-2024-6594 | cve | Improper Handling of Exceptional Conditions vulnerability in the WatchGuard Single Sign-On Client on Windows causes the client to crash while handling malformed commands. An att... |
8.8 | 2024-09-25 | CVE-2024-8290 | cve | The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible plugin for WordPress is vulnerable to Insecure Direct Object Reference in all ve... |
7.5 | 2024-09-25 | CVE-2024-8175 | cve | An unauthenticated remote attacker can causes the CODESYS web server to access invalid memory which results in a DoS. |
8 | 2024-09-25 | CVE-2021-38963 | cve | IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a CSV injection vulnerability. By persuadin... |
7.5 | 2024-09-25 | CVE-2022-43845 | cve | IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exp... |
7.5 | 2024-09-25 | CVE-2023-5359 | cve | The W3 Total Cache plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.5 via Google OAuth API secrets stored in plaintext ... |
8.8 | 2024-09-25 | CVE-2024-45373 | cve | Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator. |
7.5 | 2024-09-25 | CVE-2024-46610 | cve | An access control issue in IceCMS v3.4.7 and before allows attackers to arbitrarily modify users' information, including username and password, via a crafted POST request s... |
7.5 | 2024-09-25 | CVE-2024-46935 | cve | Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and earlier is vulnerable to denial of service (DoS). Attackers who craft messages with specific characters may crash th... |
Page(s) : 1 ... 31 32 33 34 35 36 37 38 39 40 [41] 42 43 44 45 46 47 48 49 50 51 ... | Result(s) : 86502 |