| Page(s) : 1 ... 1029 1030 1031 1032 1033 1034 1035 1036 1037 1038 [1039] 1040 1041 1042 1043 1044 1045 1046 1047 1048 1049 ... | Result(s) : 327084 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-11 | CVE-2023-20515 | cve | Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentialit... |
| N/A | 2025-02-11 | CVE-2023-20581 | cve | Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potentially leading to a loss of guest memory integrity. |
| N/A | 2025-02-11 | CVE-2023-20582 | cve | Improper handling of invalid nested page table entries in the IOMMU may allow a privileged attacker to induce page table entry (PTE) faults to bypass RMP checks in SEV-SNP, pote... |
| N/A | 2025-02-11 | CVE-2023-31331 | cve | Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potent... |
| N/A | 2025-02-11 | CVE-2024-32037 | cve | GeoNetwork is a catalog application to manage spatially referenced resources. In versions prior to 4.2.10 and 4.4.5, the search end-point response headers contain information ab... |
| N/A | 2025-02-11 | CVE-2024-51324 | cve | An issue in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 allows attackers to terminate arbitrary process via executing a BYOVD (Bring Your Own Vulnerable Driver) attack. |
| N/A | 2025-02-11 | CVE-2024-55212 | cve | DNNGo xBlog v6.5.0 was discovered to contain a SQL injection vulnerability via the Categorys parameter at /DNNGo_xBlog/Resource_Service.aspx. |
| N/A | 2025-02-11 | CVE-2024-57241 | cve | Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error does not judge the input GET request resulting in URL redirection. |
| N/A | 2025-02-11 | CVE-2024-57777 | cve | Directory Traversal vulnerability in Ianproxy v.0.1 and before allows a remote attacker to obtain sensitive information |
| N/A | 2025-02-11 | CVE-2025-1240 | cve | WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of... |
| N/A | 2025-02-11 | CVE-2024-33659 | cve | AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may le... |
| N/A | 2025-02-11 | CVE-2024-10644 | cve | Code injection in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to ... |
| N/A | 2025-02-11 | CVE-2024-11771 | cve | Path traversal in Ivanti CSA before version 5.0.5 allows a remote unauthenticated attacker to access restricted functionality. |
| N/A | 2025-02-11 | CVE-2024-12058 | cve | External control of a file name in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with adm... |
| N/A | 2025-02-11 | CVE-2024-12797 | cve | Issue summary: Clients using RFC7250 Raw Public Keys (RPKs) to authenticate a server may fail to notice that the server was not authenticated, because handshakes don't abor... |
| 7.1 | 2025-02-11 | CVE-2024-13813 | cve | Insufficient permissions in Ivanti Secure Access Client before version 22.8R1 allows a local authenticated attacker to delete arbitrary files. |
| 6.1 | 2025-02-11 | CVE-2024-13830 | cve | Reflected XSS in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote unauthenticated attacker to obtain admin privileg... |
| 4.4 | 2025-02-11 | CVE-2024-13842 | cve | A hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with admin privileges to ... |
| 4.4 | 2025-02-11 | CVE-2024-13843 | cve | Cleartext storage of information in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with adm... |
| 7.2 | 2025-02-11 | CVE-2024-47908 | cve | OS command injection in the admin web console of Ivanti CSA before version 5.0.5 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
| Page(s) : 1 ... 1029 1030 1031 1032 1033 1034 1035 1036 1037 1038 [1039] 1040 1041 1042 1043 1044 1045 1046 1047 1048 1049 ... | Result(s) : 327084 |
