| Page(s) : 1 ... 977 978 979 980 981 982 983 984 985 986 [987] 988 989 990 991 992 993 994 995 996 997 ... | Result(s) : 300579 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-11 | CVE-2024-32037 | cve | GeoNetwork is a catalog application to manage spatially referenced resources. In versions prior to 4.2.10 and 4.4.5, the search end-point response headers contain information ab... |
| N/A | 2025-02-11 | CVE-2024-51324 | cve | An issue in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 allows attackers to terminate arbitrary process via executing a BYOVD (Bring Your Own Vulnerable Driver) attack. |
| N/A | 2025-02-11 | CVE-2024-55212 | cve | DNNGo xBlog v6.5.0 was discovered to contain a SQL injection vulnerability via the Categorys parameter at /DNNGo_xBlog/Resource_Service.aspx. |
| N/A | 2025-02-11 | CVE-2024-57241 | cve | Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error does not judge the input GET request resulting in URL redirection. |
| N/A | 2025-02-11 | CVE-2024-57777 | cve | Directory Traversal vulnerability in Ianproxy v.0.1 and before allows a remote attacker to obtain sensitive information |
| N/A | 2025-02-11 | CVE-2025-1240 | cve | WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of... |
| N/A | 2025-02-11 | CVE-2024-33659 | cve | AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may le... |
| N/A | 2025-02-11 | CVE-2024-10644 | cve | Code injection in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to ... |
| N/A | 2025-02-11 | CVE-2024-11771 | cve | Path traversal in Ivanti CSA before version 5.0.5 allows a remote unauthenticated attacker to access restricted functionality. |
| N/A | 2025-02-11 | CVE-2024-12058 | cve | External control of a file name in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with adm... |
| N/A | 2025-02-11 | CVE-2024-12797 | cve | Issue summary: Clients using RFC7250 Raw Public Keys (RPKs) to authenticate a server may fail to notice that the server was not authenticated, because handshakes don't abor... |
| 7.1 | 2025-02-11 | CVE-2024-13813 | cve | Insufficient permissions in Ivanti Secure Access Client before version 22.8R1 allows a local authenticated attacker to delete arbitrary files. |
| 6.1 | 2025-02-11 | CVE-2024-13830 | cve | Reflected XSS in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote unauthenticated attacker to obtain admin privileg... |
| 4.4 | 2025-02-11 | CVE-2024-13842 | cve | A hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with admin privileges to ... |
| 4.4 | 2025-02-11 | CVE-2024-13843 | cve | Cleartext storage of information in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with adm... |
| 7.2 | 2025-02-11 | CVE-2024-47908 | cve | OS command injection in the admin web console of Ivanti CSA before version 5.0.5 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
| 8.8 | 2025-02-11 | CVE-2025-22467 | cve | A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6 allows a remote authenticated attacker to achieve remote code execution. |
| 7.1 | 2025-02-11 | CVE-2025-24807 | cve | eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.6.10, 2.10.7, 2.14.5, 3.0.2, ... |
| 8.1 | 2025-02-11 | CVE-2025-24896 | cve | Misskey is an open source, federated social media platform. Starting in version 12.109.0 and prior to version 2025.2.0-alpha.0, a login token named `token` is stored in a cookie... |
| N/A | 2025-02-11 | CVE-2025-24897 | cve | Misskey is an open source, federated social media platform. Starting in version 12.109.0 and prior to version 2025.2.0-alpha.0, due to a lack of CSRF protection and the lack of ... |
| Page(s) : 1 ... 977 978 979 980 981 982 983 984 985 986 [987] 988 989 990 991 992 993 994 995 996 997 ... | Result(s) : 300579 |
