| Page(s) : 1 ... 298 299 300 301 302 303 304 305 306 307 [308] 309 310 311 312 313 314 315 316 317 318 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-08-23 | CVE-2023-4041 | cve | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Out-of-bounds Write, Download of Code Without Integrity Check vulnerability in Silicon Labs Gec... |
| 9.8 | 2023-08-23 | CVE-2023-4404 | cve | The Donation Forms by Charitable plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.7.0.12 due to insufficient restriction on the �... |
| 9.1 | 2023-08-22 | CVE-2020-24113 | cve | Directory Traversal vulnerability in Contacts File Upload Interface in Yealink W60B version 77.83.0.85, allows attackers to gain sensitive information and cause a denial of serv... |
| 9.8 | 2023-08-22 | CVE-2023-38734 | cve | IBM Robotic Process Automation 21.0.0 through 21.0.7.1 and 23.0.0 through 23.0.1 is vulnerable to incorrect privilege assignment when importing users from an LDAP directory. I... |
| 9.8 | 2023-08-22 | CVE-2021-32292 | cve | An issue was discovered in json-c from 20200420 (post 0.14 unreleased code) through 0.15-20200726. A stack-buffer-overflow exists in the auxiliary sample program json_parse whic... |
| 9.8 | 2023-08-22 | CVE-2021-33388 | cve | dpic 2021.04.10 has a Heap Buffer Overflow in themakevar() function in dpic.y |
| 9.8 | 2023-08-22 | CVE-2021-33390 | cve | dpic 2021.04.10 has a use-after-free in thedeletestringbox() function in dpic.y. A different vulnerablility than CVE-2021-32421. |
| 10 | 2023-08-22 | CVE-2022-36648 | cve | The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in 7.0.0 and earlier, allows remote attackers to crash the host qemu and potentiall... |
| 9.8 | 2023-08-22 | CVE-2022-45611 | cve | An issue was discovered in Fresenius Kabi PharmaHelp 5.1.759.0 allows attackers to gain escalated privileges via via capture of user login information. |
| 9.8 | 2023-08-22 | CVE-2022-48174 | cve | There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbi... |
| 9.8 | 2023-08-22 | CVE-2022-48522 | cve | In Perl 5.34.0, function S_find_uninit_var in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation. |
| 9.8 | 2023-08-22 | CVE-2022-48565 | cve | An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilit... |
| 9.8 | 2023-08-22 | CVE-2023-36281 | cve | An issue in langchain v.0.0.171 allows a remote attacker to execute arbitrary code via a JSON file to load_prompt. This is related to __subclasses__ or a template. |
| 9.8 | 2023-08-21 | CVE-2023-4373 | cve | Inadequate validation of permissions when employing remote tools and macros within Devolutions Remote Desktop Manager versions 2023.2.19 and earlier permits a user to initiate ... |
| 9.8 | 2023-08-21 | CVE-2023-31447 | cve | user_login.cgi on Draytek Vigor2620 devices before 3.9.8.4 (and on all versions of Vigor2925 devices) allows attackers to send a crafted payload to modify the content of the cod... |
| 9.8 | 2023-08-21 | CVE-2023-32002 | cve | The use of `Module._load()` can bypass the policy mechanism and require modules outside of the policy.json definition for a given module. This vulnerability affects all users u... |
| 9.8 | 2023-08-21 | CVE-2023-38035 | cve | A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the adminis... |
| 9.8 | 2023-08-21 | CVE-2023-38961 | cve | Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-sca... |
| 9.8 | 2023-08-21 | CVE-2023-39660 | cve | An issue in Gaberiele Venturi pandasai v.0.8.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the prompt function. |
| 9.8 | 2023-08-21 | CVE-2020-28715 | cve | An issue was discovered in kdmserver service in LeEco LeTV X43 version V2401RCN02C080080B04121S, allows attackers to execute arbitrary code, escalate privileges, and cause a den... |
| Page(s) : 1 ... 298 299 300 301 302 303 304 305 306 307 [308] 309 310 311 312 313 314 315 316 317 318 ... | Result(s) : 43290 |
