| Page(s) : 1 ... 35 36 37 38 39 40 41 42 43 44 [45] 46 47 48 49 50 51 52 53 54 55 ... | Result(s) : 89962 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2024-02-02 | CVE-2024-22899 | cve | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function. |
| 8.8 | 2024-02-02 | CVE-2024-22900 | cve | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function. |
| 8.8 | 2024-02-02 | CVE-2024-22903 | cve | Vinchin Backup & Recovery v7.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK function. |
| 8.8 | 2024-02-02 | CVE-2024-22320 | cve | IBM Operational Decision Manager 8.10.3 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization. By sending spec... |
| 8.8 | 2024-02-02 | CVE-2023-38263 | cve | IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to perform unauthorized actions due to improper access controls. IBM X-Force ID: 260577. |
| 7.5 | 2024-02-02 | CVE-2023-50939 | cve | IBM PowerSC 1.3, 2.0, and 2.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 275129. |
| 7.8 | 2024-02-02 | CVE-2024-22016 | cve | In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an authorized user can write directly to the Scada directory. This may allow privilege escalation. |
| 8.8 | 2024-02-01 | CVE-2023-36496 | cve | Delegated Admin Privilege virtual attribute provider plugin, when enabled, allows an authenticated user to elevate their permissions in the Directory Server. |
| 8.8 | 2024-02-01 | CVE-2023-47867 | cve | MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the dev... |
| 7.5 | 2024-02-01 | CVE-2023-49115 | cve | MachineSense devices use unauthenticated MQTT messaging to monitor devices and remote viewing of sensor data by users. |
| 8.1 | 2024-02-01 | CVE-2023-49610 | cve | MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or ... |
| 8.8 | 2024-02-01 | CVE-2024-21852 | cve | In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can supply a malicious configuration file by utilizing a Zip Slip vulnerability in the unpa... |
| 7.5 | 2024-02-01 | CVE-2024-24756 | cve | Crafatar serves Minecraft avatars based on the skin for use in external applications. Files outside of the `lib/public/` directory can be requested from the server. Instances ru... |
| 8.1 | 2024-02-01 | CVE-2023-47257 | cve | ConnectWise ScreenConnect through 23.8.4 allows man-in-the-middle attackers to achieve remote code execution via crafted messages. |
| 7.8 | 2024-02-01 | CVE-2024-0325 | cve | In Helix Sync versions prior to 2024.1, a local command injection was identified. Reported by Bryan Riggins. |
| 7.8 | 2024-02-01 | CVE-2024-24557 | cve | Moby is an open-source project created by Docker to enable software containerization. The classic builder cache system is prone to cache poisoning if the image is built FROM scr... |
| 8.1 | 2024-02-01 | CVE-2023-51446 | cve | GLPI is a Free Asset and IT Management Software package. When authentication is made against a LDAP, the authentication form can be used to perform LDAP injection. Upgrade to 10... |
| 7.5 | 2024-02-01 | CVE-2024-1167 | cve | When SEW-EURODRIVE MOVITOOLS MotionStudio processes XML information unrestricted file access can occur. |
| 7.5 | 2024-02-01 | CVE-2024-0935 | cve | Insertion of Sensitive Information into Log File vulnerabilities are affecting DELMIA Apriso Release 2019 through Release 2024 |
| 7.8 | 2024-02-01 | CVE-2024-22449 | cve | Dell PowerScale OneFS versions 9.0.0.x through 9.6.0.x contains a missing authentication for critical function vulnerability. A low privileged local malicious user could potent... |
| Page(s) : 1 ... 35 36 37 38 39 40 41 42 43 44 [45] 46 47 48 49 50 51 52 53 54 55 ... | Result(s) : 89962 |
