| Page(s) : 1 ... 1444 1445 1446 1447 1448 1449 1450 1451 1452 1453 [1454] 1455 1456 1457 1458 1459 1460 1461 1462 1463 1464 ... | Result(s) : 328784 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-12-18 | CVE-2024-53270 | cve | Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions `sendOverloadError` is going to assume the active request exists when `envoy.load_shed_p... |
| N/A | 2024-12-18 | CVE-2024-53271 | cve | Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy does not properly handle http 1.1 non-101 1xx responses. This can lead to downstr... |
| 7.2 | 2024-12-18 | CVE-2024-12686 | cve | A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) which can allow an attacker with existing administrative privileges to inject comma... |
| N/A | 2024-12-18 | CVE-2024-45338 | cve | An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a de... |
| N/A | 2024-12-18 | CVE-2024-56140 | cve | Astro is a web framework for content-driven websites. In affected versions a bug in Astro’s CSRF-protection middleware allows requests to bypass CSRF checks. When the `security.... |
| 9.8 | 2024-12-18 | CVE-2024-56145 | cve | Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. Users of affected versions are affected by this vulnerability if their php.... |
| 8.8 | 2024-12-18 | CVE-2024-12692 | cve | Type Confusion in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severi... |
| 8.8 | 2024-12-18 | CVE-2024-12693 | cve | Out of bounds memory access in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromiu... |
| 8.8 | 2024-12-18 | CVE-2024-12694 | cve | Use after free in Compositing in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium securi... |
| 8.8 | 2024-12-18 | CVE-2024-12695 | cve | Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium securi... |
| N/A | 2024-12-18 | CVE-2024-55231 | cve | An IDOR vulnerability in the edit-notes.php module of PHPGurukul Online Notes Sharing Management System v1.0 allows unauthorized users to modify notes belonging to other account... |
| N/A | 2024-12-18 | CVE-2024-55232 | cve | An IDOR vulnerability in the manage-notes.php module in PHPGurukul Online Notes Sharing Management System v1.0 allows unauthorized users to delete notes belonging to other accou... |
| N/A | 2024-12-18 | CVE-2024-55505 | cve | An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate privileges via the mess-view.php component. |
| 4.4 | 2024-12-18 | CVE-2023-50956 | cve | IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 could allow a privileged user to obtain highly sensitive user credentials from secret keys that are stored in cle... |
| N/A | 2024-12-18 | CVE-2024-12371 | cve | A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authenticati... |
| N/A | 2024-12-18 | CVE-2024-12372 | cve | A denial-of-service and possible remote code execution vulnerability exists in the Rockwell Automation Power Monitor 1000. The vulnerability results in corruption of the heap me... |
| N/A | 2024-12-18 | CVE-2024-12373 | cve | A denial-of-service vulnerability exists in the Rockwell Automation Power Monitor 1000. The vulnerability results in a buffer-overflow, potentially causing denial-of-service. |
| 5.9 | 2024-12-18 | CVE-2024-47119 | cve | IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a certificate which could allow an attacker to spoof a trusted entity by interfering in ... |
| N/A | 2024-12-18 | CVE-2024-47810 | cve | A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a 3D page object. A specially crafted Javascript code inside a malicious PDF document can tr... |
| N/A | 2024-12-18 | CVE-2024-49576 | cve | A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a checkbox CBF_Widget object. A specially crafted Javascript code inside a malicious PDF doc... |
| Page(s) : 1 ... 1444 1445 1446 1447 1448 1449 1450 1451 1452 1453 [1454] 1455 1456 1457 1458 1459 1460 1461 1462 1463 1464 ... | Result(s) : 328784 |
