Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 252 253 254 255 256 257 258 259 260 261 [262] 263 264 265 266 267 268 269 270 271 272 ... Result(s) : 324592

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2025-05-14 CVE-2025-0136 cve Using the AES-128-CCM algorithm for IPSec on certain Palo Alto Networks PAN-OS® firewalls (PA-7500, PA-5400, PA-5400f, PA-3400, PA-1600, PA-1400, and PA-400 Series) leads to une...
N/A 2025-05-14 CVE-2025-0135 cve An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a locally authenticated non administrative user to disable ...
N/A 2025-05-14 CVE-2025-0134 cve A code injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to execute arbitrary code with root privileges on the host operating ...
N/A 2025-05-14 CVE-2025-0133 cve A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect™ gateway and portal features of Palo Alto Networks PAN-OS® software enables execution of malicious Java...
N/A 2025-05-14 CVE-2025-0132 cve A missing authentication vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an unauthenticated user to disable certain internal services on the Broker VM.  The at...
N/A 2025-05-14 CVE-2025-0131 cve An incorrect privilege management vulnerability in the OPSWAT MetaDefender Endpoint Security SDK used by the Palo Alto Networks GlobalProtect™ app on Windows devices allows a lo...
N/A 2025-05-14 CVE-2025-0130 cve A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted pac...
5.3 2025-05-14 CVE-2024-8988 cve The PeepSo Core: File Uploads plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.4.6.0 via the file_download REST API...
N/A 2025-05-14 CVE-2024-58101 cve Samsung Galaxy Buds and Galaxy Buds 2 audio devices are Bluetooth pairable by default without user input nor a way to stop this mode. As a consequence, audio playback takeover o...
N/A 2025-05-14 CVE-2024-57096 cve An issue in wps office before v.19302 allows a local attacker to obtain sensitive information via a crafted file.
N/A 2025-05-14 CVE-2024-56157 cve iTop is an web based IT Service Management tool. Prior to versions 3.1.3 and 3.2.1, by filling malicious code in a CSV content, a cross-site scripting attack can be performed wh...
N/A 2025-05-14 CVE-2024-55569 cve An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000,...
N/A 2025-05-14 CVE-2024-54780 cve Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding Plus builds are vulnerable to command injection in the OpenVPN widget due to improper sanitization of user-sup...
N/A 2025-05-14 CVE-2024-52601 cve iTop is an web based IT Service Management tool. Prior to versions 2.7.12, 3.1.3, and 3.2.1, anyone with an account having portal access can have read access to objects they...
N/A 2025-05-14 CVE-2024-52290 cve LF Edge eKuiper is a lightweight internet of things (IoT) data analytics and stream processing engine. Prior to version 2.1.0 user with rights to modificate the service (e.g. ku...
N/A 2025-05-14 CVE-2024-45067 cve Incorrect default permissions in some Intel(R) Gaudi(R) software installers before version 1.18 may allow an authenticated user to potentially enable escalation of privilege via...
N/A 2025-05-14 CVE-2024-24780 cve Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attacker who has privilege to create UDF can register malicious function from untrusted URI. ...
5.5 2025-05-14 CVE-2024-13940 cve The Ninja Forms Webhooks plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.0.7 via the form webhook functionality. This m...
N/A 2025-05-14 CVE-2024-10865 cve Improper Input validation leads to XSS or Cross-site Scripting vulnerability in OpenText Advanced Authentication. This issue affects Advanced Authentication versions before 6.5.
N/A 2025-05-14 CVE-2024-10864 cve Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in OpenText Advanced Authentication. This issue affects Advanced Aut...
Page(s) : 1 ... 252 253 254 255 256 257 258 259 260 261 [262] 263 264 265 266 267 268 269 270 271 272 ... Result(s) : 324592