| Page(s) : 1 ... 979 980 981 982 983 984 985 986 987 988 [989] 990 991 992 993 994 995 996 997 998 999 ... | Result(s) : 300604 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.2 | 2025-02-11 | CVE-2024-47908 | cve | OS command injection in the admin web console of Ivanti CSA before version 5.0.5 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
| 8.8 | 2025-02-11 | CVE-2025-22467 | cve | A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6 allows a remote authenticated attacker to achieve remote code execution. |
| 7.1 | 2025-02-11 | CVE-2025-24807 | cve | eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.6.10, 2.10.7, 2.14.5, 3.0.2, ... |
| 8.1 | 2025-02-11 | CVE-2025-24896 | cve | Misskey is an open source, federated social media platform. Starting in version 12.109.0 and prior to version 2025.2.0-alpha.0, a login token named `token` is stored in a cookie... |
| N/A | 2025-02-11 | CVE-2025-24897 | cve | Misskey is an open source, federated social media platform. Starting in version 12.109.0 and prior to version 2025.2.0-alpha.0, due to a lack of CSRF protection and the lack of ... |
| N/A | 2025-02-11 | CVE-2025-24900 | cve | Concorde, formerly know as Nexkey, is a fork of the federated microblogging platform Misskey. Due to a lack of CSRF countermeasures and improper settings of cookies for MediaPro... |
| N/A | 2025-02-11 | CVE-2025-24973 | cve | Concorde, formerly know as Nexkey, is a fork of the federated microblogging platform Misskey. Prior to version 12.25Q1.1, due to an improper implementation of the logout process... |
| N/A | 2025-02-11 | CVE-2025-24976 | cve | Distribution is a toolkit to pack, ship, store, and deliver container content. Systems running registry versions 3.0.0-beta.1 through 3.0.0-rc.2 with token authentication enable... |
| N/A | 2025-02-11 | CVE-2023-40721 | cve | A use of externally-controlled format string vulnerability [CWE-134] in Fortinet FortiOS version 7.4.0 through 7.4.1 and before 7.2.6, FortiProxy version 7.4.0 and before 7.2.7,... |
| N/A | 2025-02-11 | CVE-2024-12755 | cve | A Cross-Site Scripting (XSS) vulnerability in Avaya Spaces may have allowed unauthorized code execution and potential disclose of sensitive information. |
| N/A | 2025-02-11 | CVE-2024-12756 | cve | An HTML Injection vulnerability in Avaya Spaces may have allowed disclosure of sensitive information or modification of the page content seen by the user. |
| N/A | 2025-02-11 | CVE-2024-27780 | cve | Multiple Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabilities [CWE-79] in FortiSIEM 7.1 all versions, 7.0 all versions... |
| N/A | 2025-02-11 | CVE-2024-27781 | cve | An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox at least versions 4.4.0 through 4.4.4 and 4.2.0 throug... |
| N/A | 2025-02-11 | CVE-2024-33504 | cve | A use of hard-coded cryptographic key to encrypt sensitive data vulnerability [CWE-321] in FortiManager 7.6.0 through 7.6.1, 7.4.0 through 7.4.5, 7.2.0 through 7.2.9, 7.0 all ve... |
| N/A | 2025-02-11 | CVE-2024-35279 | cve | A stack-based buffer overflow [CWE-121] vulnerability in Fortinet FortiOS version 7.2.4 through 7.2.8 and version 7.4.0 through 7.4.4 allows a remote unauthenticated attacker to... |
| N/A | 2025-02-11 | CVE-2024-36508 | cve | An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiManager version 7.4.0 through 7.4.2 and befor... |
| N/A | 2025-02-11 | CVE-2024-40584 | cve | An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiAnalyzer version 7.4.0 through 7.... |
| N/A | 2025-02-11 | CVE-2024-40586 | cve | An Improper Access Control vulnerability [CWE-284] in FortiClient Windows version 7.4.0, version 7.2.6 and below, version 7.0.13 and below may allow a local user to escalate his... |
| N/A | 2025-02-11 | CVE-2024-40591 | cve | An incorrect privilege assignment vulnerability [CWE-266] in Fortinet FortiOS version 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.9 and before 7.0.15 allows an authenticated a... |
| N/A | 2025-02-11 | CVE-2024-50567 | cve | An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb 7.4.0 through 7.6.0 allows attacker to execute unaut... |
| Page(s) : 1 ... 979 980 981 982 983 984 985 986 987 988 [989] 990 991 992 993 994 995 996 997 998 999 ... | Result(s) : 300604 |
