| Page(s) : 1 ... 28 29 30 31 32 33 34 35 36 37 [38] 39 40 41 42 43 44 45 46 47 48 ... | Result(s) : 246353 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2024-04-15 | CVE-2023-4856 | cve | A format string vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user to execute arbitrary commands on a specific API endpoint. |
| 7.5 | 2024-04-15 | CVE-2023-4857 | cve | An authentication bypass vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user to execute certain IPMI calls that could lead to exposure of li... |
| N/A | 2024-04-15 | CVE-2024-22014 | cve | An issue discovered in 360 Total Security Antivirus through 11.0.0.1061 for Windows allows attackers to gain escalated privileges via Symbolic Link Follow to Arbitrary File Delete. |
| N/A | 2024-04-15 | CVE-2024-23559 | cve | HCL DevOps Deploy / Launch is generating an obsolete HTTP header. |
| 6.7 | 2024-04-15 | CVE-2024-23593 | cve | A vulnerability was reported in a system recovery bootloader that was part of the Lenovo preloaded Windows 7 and 8 operating systems from 2012 to 2014 that could allow a pri... |
| 6.4 | 2024-04-15 | CVE-2024-23594 | cve | A buffer overflow vulnerability was reported in a system recovery bootloader that was part of the Lenovo preloaded Windows 7 and 8 operating systems from 2012 to 2014 that ... |
| N/A | 2024-04-15 | CVE-2024-28056 | cve | Amazon AWS Amplify CLI before 12.10.1 incorrectly configures the role trust policy of IAM roles associated with Amplify projects. When the Authentication component is removed fr... |
| 7.2 | 2024-04-15 | CVE-2024-2659 | cve | A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute system commands when performing ... |
| N/A | 2024-04-15 | CVE-2024-31219 | cve | Discourse-reactions is a plugin that allows user to add their reactions to the post. When whispers are enabled on a site via `whispers_allowed_groups` and reactions are made on ... |
| N/A | 2024-04-15 | CVE-2024-24485 | cve | An issue discovered in silex technology DS-600 Firmware v.1.4.1 allows a remote attacker to obtain sensitive information via the GET EEP_DATA command. |
| N/A | 2024-04-15 | CVE-2024-24486 | cve | An issue discovered in silex technology DS-600 Firmware v.1.4.1 allows a remote attacker to edit device settings via the SAVE EEP_DATA command. |
| N/A | 2024-04-15 | CVE-2024-24487 | cve | An issue discovered in silex technology DS-600 Firmware v.1.4.1 allows a remote attacker to cause a denial of service via crafted UDP packets using the EXEC REBOOT SYSTEM command. |
| N/A | 2024-04-15 | CVE-2024-28556 | cve | SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive infor... |
| N/A | 2024-04-15 | CVE-2024-28557 | cve | SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive infor... |
| N/A | 2024-04-15 | CVE-2024-28558 | cve | SQL Injection vulnerability in sourcecodester Petrol pump management software v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive ... |
| N/A | 2024-04-15 | CVE-2024-3803 | cve | A vulnerability classified as critical was found in Vesystem Cloud Desktop up to 20240408. This vulnerability affects unknown code of the file /Public/webuploader/0.1.5/server/f... |
| N/A | 2024-04-15 | CVE-2024-3781 | cve | Command injection vulnerability in the operating system. Improper neutralisation of special elements in Active Directory integration allows the intended command to be modified w... |
| N/A | 2024-04-15 | CVE-2024-3782 | cve | Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to create a manipulated HTML form to perform privileged actions once it is execute... |
| N/A | 2024-04-15 | CVE-2024-3783 | cve | The Backup Agents section in WBSAirback 21.02.04 is affected by a Path Traversal vulnerability, allowing a user with low privileges to download files from the system. |
| N/A | 2024-04-15 | CVE-2024-3784 | cve | Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 Accounts (/admin/CloudAccounts). Exploitation of this vuln... |
| Page(s) : 1 ... 28 29 30 31 32 33 34 35 36 37 [38] 39 40 41 42 43 44 45 46 47 48 ... | Result(s) : 246353 |
