| Page(s) : 1 ... 473 474 475 476 477 478 479 480 481 482 [483] 484 485 486 487 488 489 490 491 492 493 ... | Result(s) : 299485 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-15 | CVE-2025-1276 | cve | A maliciously crafted DWG file, when parsed through certain Autodesk applications, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerabil... |
| 7.8 | 2025-04-15 | CVE-2025-1275 | cve | A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vu... |
| 7.8 | 2025-04-15 | CVE-2025-1274 | cve | A maliciously crafted RCS file, when parsed through Autodesk Revit, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a ... |
| 7.8 | 2025-04-15 | CVE-2025-1273 | cve | A maliciously crafted PDF file, when linked or imported into Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerabil... |
| N/A | 2025-04-15 | CVE-2025-1122 | cve | Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 15753.50.0 stable on Cr50 Boards allows an attacker with root access to gain persistence and Bypass operating ... |
| N/A | 2025-04-15 | CVE-2024-50960 | cve | A command injection vulnerability in the Nmap diagnostic tool in the admin web console of Extron SMP 111 |
| N/A | 2025-04-15 | CVE-2024-49200 | cve | An issue was discovered in AcpiS3SaveDxe and ChipsetSvcDxe in Insyde InsydeH2O with kernel 5.2 though 5.7. A potential DXE memory corruption vulnerability has been identified. T... |
| 2.6 | 2025-04-15 | CVE-2024-45712 | cve | SolarWinds Serv-U is vulnerable to a client-side cross-site scripting (XSS) vulnerability. The vulnerability can only be performed by an authenticated account, on the local mach... |
| N/A | 2025-04-15 | CVE-2024-44843 | cve | An issue in the web socket handshake process of SteVe v3.7.1 allows attackers to bypass authentication and execute arbitrary coammands via supplying crafted OCPP requests. |
| N/A | 2025-04-15 | CVE-2024-42200 | cve | HCL BigFix Web Reports might be subject to a Stored Cross-Site Scripting (XSS) attack, due to a potentially weak validation of user input. |
| N/A | 2025-04-15 | CVE-2024-42193 | cve | HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-i... |
| N/A | 2025-04-15 | CVE-2024-42189 | cve | HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack, due to a potentially weak validation of an API parameter. |
| N/A | 2025-04-15 | CVE-2024-36842 | cve | An issue in Oncord+ Android Infotainment Systems OS Android 12, Model Hardware TS17,Hardware part Number F57L_V3.2_20220301, and Build Number PlatformVER:K24-2023/05/09-v0.01 al... |
| N/A | 2025-04-15 | CVE-2024-13610 | cve | The Simple Social Media Share Buttons WordPress plugin before 6.0.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to p... |
| N/A | 2025-04-15 | CVE-2024-13207 | cve | The Widget for Social Page Feeds WordPress plugin before 6.4.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform... |
| N/A | 2025-04-15 | CVE-2024-13177 | cve | Netskope Client on Mac OS is impacted by a vulnerability in which the postinstall script does not properly validate the path of the file “nsinstallation”. A standard user could ... |
| N/A | 2025-04-15 | CVE-2024-11084 | cve | Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists. |
| N/A | 2025-04-15 | CVE-2023-5616 | cve | In Ubuntu, gnome-control-center did not properly reflect SSH remote login status when the system was configured to use systemd socket activation for openssh-server. This could u... |
| N/A | 2025-04-15 | CVE-2021-27289 | cve | A replay attack vulnerability was discovered in a Zigbee smart home kit manufactured by Ksix (Zigbee Gateway Module = v1.0.3, Door Sensor = v1.0.7, Motion Sensor = v1.0.12), whe... |
| N/A | 2025-04-15 | CVE-2020-18243 | cve | SQL injection vulnerability found in Enricozab CMS v.1.0 allows a remote attacker to execute arbitrary code via /hdo/hdo-view-case.php. |
| Page(s) : 1 ... 473 474 475 476 477 478 479 480 481 482 [483] 484 485 486 487 488 489 490 491 492 493 ... | Result(s) : 299485 |
