Page(s) : 1 ... 252 253 254 255 256 257 258 259 260 261 [262] 263 264 265 266 267 268 269 270 271 272 ... | Result(s) : 324592 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
N/A | 2025-05-14 | CVE-2025-0136 | cve | Using the AES-128-CCM algorithm for IPSec on certain Palo Alto Networks PAN-OS® firewalls (PA-7500, PA-5400, PA-5400f, PA-3400, PA-1600, PA-1400, and PA-400 Series) leads to une... |
N/A | 2025-05-14 | CVE-2025-0135 | cve | An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a locally authenticated non administrative user to disable ... |
N/A | 2025-05-14 | CVE-2025-0134 | cve | A code injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to execute arbitrary code with root privileges on the host operating ... |
N/A | 2025-05-14 | CVE-2025-0133 | cve | A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect™ gateway and portal features of Palo Alto Networks PAN-OS® software enables execution of malicious Java... |
N/A | 2025-05-14 | CVE-2025-0132 | cve | A missing authentication vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an unauthenticated user to disable certain internal services on the Broker VM. The at... |
N/A | 2025-05-14 | CVE-2025-0131 | cve | An incorrect privilege management vulnerability in the OPSWAT MetaDefender Endpoint Security SDK used by the Palo Alto Networks GlobalProtect™ app on Windows devices allows a lo... |
N/A | 2025-05-14 | CVE-2025-0130 | cve | A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted pac... |
5.3 | 2025-05-14 | CVE-2024-8988 | cve | The PeepSo Core: File Uploads plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.4.6.0 via the file_download REST API... |
N/A | 2025-05-14 | CVE-2024-58101 | cve | Samsung Galaxy Buds and Galaxy Buds 2 audio devices are Bluetooth pairable by default without user input nor a way to stop this mode. As a consequence, audio playback takeover o... |
N/A | 2025-05-14 | CVE-2024-57096 | cve | An issue in wps office before v.19302 allows a local attacker to obtain sensitive information via a crafted file. |
N/A | 2025-05-14 | CVE-2024-56157 | cve | iTop is an web based IT Service Management tool. Prior to versions 3.1.3 and 3.2.1, by filling malicious code in a CSV content, a cross-site scripting attack can be performed wh... |
N/A | 2025-05-14 | CVE-2024-55569 | cve | An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000,... |
N/A | 2025-05-14 | CVE-2024-54780 | cve | Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding Plus builds are vulnerable to command injection in the OpenVPN widget due to improper sanitization of user-sup... |
N/A | 2025-05-14 | CVE-2024-52601 | cve | iTop is an web based IT Service Management tool. Prior to versions 2.7.12, 3.1.3, and 3.2.1, anyone with an account having portal access can have read access to objects they... |
N/A | 2025-05-14 | CVE-2024-52290 | cve | LF Edge eKuiper is a lightweight internet of things (IoT) data analytics and stream processing engine. Prior to version 2.1.0 user with rights to modificate the service (e.g. ku... |
N/A | 2025-05-14 | CVE-2024-45067 | cve | Incorrect default permissions in some Intel(R) Gaudi(R) software installers before version 1.18 may allow an authenticated user to potentially enable escalation of privilege via... |
N/A | 2025-05-14 | CVE-2024-24780 | cve | Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attacker who has privilege to create UDF can register malicious function from untrusted URI. ... |
5.5 | 2025-05-14 | CVE-2024-13940 | cve | The Ninja Forms Webhooks plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.0.7 via the form webhook functionality. This m... |
N/A | 2025-05-14 | CVE-2024-10865 | cve | Improper Input validation leads to XSS or Cross-site Scripting vulnerability in OpenText Advanced Authentication. This issue affects Advanced Authentication versions before 6.5. |
N/A | 2025-05-14 | CVE-2024-10864 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in OpenText Advanced Authentication. This issue affects Advanced Aut... |
Page(s) : 1 ... 252 253 254 255 256 257 258 259 260 261 [262] 263 264 265 266 267 268 269 270 271 272 ... | Result(s) : 324592 |