| Page(s) : 1 ... 19 20 21 22 23 24 25 26 27 28 [29] 30 31 32 33 34 35 36 37 38 39 ... | Result(s) : 8820 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.6 | 2024-02-29 | CVE-2024-1949 | cve | A race condition in Mattermost versions 8.1.x before 8.1.9, and 9.4.x before 9.4.2 allows an authenticated attacker to gain unauthorized access to individual posts' content... |
| 3.1 | 2024-02-29 | CVE-2023-47634 | cve | Decidim is a participatory democracy framework. Starting in version 0.10.0 and prior to versions 0.26.9, 0.27.5, and 0.28.0, a race condition in the endorsement of resources (fo... |
| 3.5 | 2024-02-29 | CVE-2024-1128 | cve | The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to HTML Injection in all versions up to, and including, 2.6.0. This is due to insufficien... |
| 3.3 | 2024-02-29 | CVE-2024-26132 | cve | Element Android is an Android Matrix Client. A third-party malicious application installed on the same phone can force Element Android, version 0.91.0 through 1.6.12, to share f... |
| 3.3 | 2024-02-27 | CVE-2021-46971 | cve | In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix unconditional security_locked_down() call Currently, the lockdown state is queried unconditi... |
| 3.3 | 2024-02-27 | CVE-2021-46934 | cve | In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs.... |
| 2.7 | 2024-02-26 | CVE-2023-5775 | cve | The BackWPup plugin for WordPress is vulnerable to Plaintext Storage of Backup Destination Password in all versions up to, and including, 4.0.2. This is due to to the plugin imp... |
| 2.7 | 2024-02-21 | CVE-2023-50955 | cve | IBM InfoSphere Information Server 11.7 could allow an authenticated privileged user to obtain the absolute path of the web server installation which could aid in further attacks... |
| 3.3 | 2024-02-21 | CVE-2023-42939 | cve | A logic issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1. A user's private browsing activity may be unexpectedly saved in the App P... |
| 3.3 | 2024-02-20 | CVE-2023-50306 | cve | IBM Common Licensing 9.0 could allow a local user to enumerate usernames due to an observable response discrepancy. IBM X-Force ID: 273337. |
| 2 | 2024-02-19 | CVE-2024-1633 | cve | During the secure boot, bl2 (the second stage of the bootloader) loops over images defined in the table “bl2_mem_params_descs”. For each image, the bl2 reads the image length an... |
| 2.7 | 2024-02-17 | CVE-2024-20905 | cve | Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure SEC). Supported versions that are affected are Prior to 9... |
| 3.3 | 2024-02-16 | CVE-2024-1591 | cve | Prior to version 24.1, a local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy. This allows them to view the polic... |
| 2.3 | 2024-02-16 | CVE-2024-23591 | cve | ThinkSystem SR670V2 servers manufactured from approximately June 2021 to July 2023 were left in Manufacturing Mode which could allow an attacker with privileged logical access... |
| 3.3 | 2024-02-16 | CVE-2023-40122 | cve | In applyCustomDescription of SaveUi.java, there is a possible way to view other user's images due to a confused deputy. This could lead to local information disclosure with... |
| 3.3 | 2024-02-16 | CVE-2024-0037 | cve | In applyCustomDescription of SaveUi.java, there is a possible way to view images belonging to a different user due to a missing permission check. This could lead to local inform... |
| 2 | 2024-02-14 | CVE-2023-26591 | cve | Unchecked return value in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an unauthenticated user to potentially enable denial of service via p... |
| 3.8 | 2024-02-14 | CVE-2023-26592 | cve | Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable a denial of se... |
| 2.5 | 2024-02-14 | CVE-2023-26596 | cve | Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable denial of service via lo... |
| 3.8 | 2024-02-14 | CVE-2023-27300 | cve | Improper buffer restrictions in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable information disclos... |
| Page(s) : 1 ... 19 20 21 22 23 24 25 26 27 28 [29] 30 31 32 33 34 35 36 37 38 39 ... | Result(s) : 8820 |
