Lista CVE - 2024 / Ottobre
Visualizzazione 3101 - 3200 di 3570 CVE per Ottobre 2024 (Pagina 32 di 36)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2024-50441 | 2024-10-28 | WordPress Cozy Blocks plugin <= 2.0.15 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50440 | 2024-10-28 | WordPress CodePen Embedded Pens Shortcode plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50439 | 2024-10-28 | WordPress Astra Widgets plugin <= 1.2.14 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50438 | 2024-10-28 | WordPress Church Admin plugin < 5.0.0 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50437 | 2024-10-28 | WordPress GeoDirectory plugin <= 2.3.80 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50433 | 2024-10-28 | WordPress Sky Addons for Elementor plugin <= 2.5.15 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50432 | 2024-10-28 | WordPress Post Grid and Gutenberg Blocks plugin <= 2.2.93 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50431 | 2024-10-28 | WordPress Breeze plugin <= 2.1.14 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-50429 | 2024-10-28 | WordPress Magazine Blocks plugin <= 1.3.15 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-9825 | 2024-10-28 | The Chef Habitat builder is impacted by Indirect Object reference(IDOR) by deletion of personal access token |
| CVE-2024-5532 | 2024-10-28 | A stored XSS vulnerability has been discovered on OpenText™ Operations Agent (OA). |
| CVE-2024-49755 | 2024-10-28 | Duende IdentityServer has insufficient validation of DPoP cnf claim in Local APIs |
| CVE-2024-50457 | 2024-10-28 | WordPress Qode Essential Addons plugin <= 1.6.3 - Local File Inclusion vulnerability |
| CVE-2024-50453 | 2024-10-28 | WordPress The Pack Elementor addons plugin <= 2.0.9 - Local File Inclusion vulnerability |
| CVE-2024-50436 | 2024-10-28 | WordPress Clean Retina theme <= 3.0.6 - Local File Inclusion vulnerability |
| CVE-2024-50435 | 2024-10-28 | WordPress Meta News theme <= 1.1.7 - Local File Inclusion vulnerability |
| CVE-2024-50434 | 2024-10-28 | WordPress NewsCard theme <= 1.3 - Local File Inclusion vulnerability |
| CVE-2024-50496 | 2024-10-28 | WordPress AR For WordPress plugin <= 6.2 - Arbitrary File Upload vulnerability |
| CVE-2024-50495 | 2024-10-28 | WordPress Plugin Propagator plugin <= 0.1 - Arbitrary File Upload vulnerability |
| CVE-2024-44259 | 2024-10-28 | This issue was addressed through improved state management. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, Safari 18.1.... |
| CVE-2024-40867 | 2024-10-28 | A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1. A remote attacker may be able to break... |
| CVE-2024-44218 | 2024-10-28 | This issue was addressed with improved checks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, macOS Sonoma 14.7.1, iOS 18.1 and iPadOS 18.1. Processing a maliciously crafted file... |
| CVE-2024-44263 | 2024-10-28 | A logic issue was addressed with improved state management. This issue is fixed in iOS 18.1 and iPadOS 18.1. An app may be able to access user-sensitive data. |
| CVE-2024-44275 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the... |
| CVE-2024-44222 | 2024-10-28 | This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to read sensitive location... |
| CVE-2024-44255 | 2024-10-28 | A path handling issue was addressed with improved logic. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1, tvOS... |
| CVE-2024-40851 | 2024-10-28 | This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker with physical access may be able... |
| CVE-2024-44280 | 2024-10-28 | A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to... |
| CVE-2024-44296 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, watchOS 11.1, visionOS 2.1, macOS Sequoia... |
| CVE-2024-44279 | 2024-10-28 | An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a file may lead to disclosure of user information. |
| CVE-2024-44297 | 2024-10-28 | The issue was addressed with improved bounds checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma... |
| CVE-2024-44278 | 2024-10-28 | An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS... |
| CVE-2024-44281 | 2024-10-28 | An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a file may lead to disclosure of user information. |
| CVE-2024-44239 | 2024-10-28 | An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS... |
| CVE-2024-44215 | 2024-10-28 | This issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1,... |
| CVE-2024-44203 | 2024-10-28 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access a user's Photos Library. |
| CVE-2024-44254 | 2024-10-28 | This issue was addressed with improved redaction of sensitive information. This issue is fixed in watchOS 11.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, iOS 18.1 and iPadOS 18.1. An app... |
| CVE-2024-44274 | 2024-10-28 | The issue was addressed with improved authentication. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, watchOS 11.1, iOS 18.1 and iPadOS 18.1. An attacker with physical access to... |
| CVE-2024-44262 | 2024-10-28 | This issue was addressed with improved redaction of sensitive information. This issue is fixed in visionOS 2.1. A user may be able to view sensitive user information. |
| CVE-2024-44235 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker may be able to view restricted content from the lock screen. |
| CVE-2024-44126 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, iOS 17.7 and iPadOS 17.7, macOS Sonoma 14.7, visionOS 2, iOS 18... |
| CVE-2024-27849 | 2024-10-28 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location... |
| CVE-2024-44258 | 2024-10-28 | This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, tvOS 18.1. Restoring a... |
| CVE-2024-44253 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the file... |
| CVE-2024-44269 | 2024-10-28 | A logic issue was addressed with improved checks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS... |
| CVE-2024-44156 | 2024-10-28 | A path deletion vulnerability was addressed by preventing vulnerable code from running with privileges. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able... |
| CVE-2024-44228 | 2024-10-28 | This issue was addressed with improved permissions checking. This issue is fixed in Xcode 16. An app may be able to inherit Xcode permissions and access user data. |
| CVE-2024-44208 | 2024-10-28 | This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15. An app may be able to bypass certain Privacy preferences. |
| CVE-2024-44137 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. An attacker with physical access may be able to... |
| CVE-2024-44265 | 2024-10-28 | The issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker with physical access can input... |
| CVE-2024-44273 | 2024-10-28 | This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, visionOS 2.1, macOS Sonoma 14.7.1, watchOS 11.1, tvOS 18.1. A malicious... |
| CVE-2024-44264 | 2024-10-28 | This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app may be able to create symlinks to... |
| CVE-2024-44229 | 2024-10-28 | An information leakage was addressed with additional validation. This issue is fixed in visionOS 2.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, Safari 18.1. Private browsing may leak some... |
| CVE-2024-44287 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the... |
| CVE-2024-44244 | 2024-10-28 | A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1, watchOS 11.1, visionOS 2.1, tvOS 18.1, macOS Sequoia 15.1, Safari... |
| CVE-2024-44301 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the... |
| CVE-2024-44213 | 2024-10-28 | An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker in... |
| CVE-2024-44252 | 2024-10-28 | A logic issue was addressed with improved file handling. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, tvOS 18.1. Restoring a... |
| CVE-2024-44194 | 2024-10-28 | This issue was addressed with improved redaction of sensitive information. This issue is fixed in watchOS 11.1, visionOS 2.1, iOS 18.1 and iPadOS 18.1. An app may be able to... |
| CVE-2024-44284 | 2024-10-28 | An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a maliciously crafted file may lead to an... |
| CVE-2024-40855 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. A sandboxed app may be able to access sensitive... |
| CVE-2024-44302 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1,... |
| CVE-2024-44247 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the... |
| CVE-2024-44251 | 2024-10-28 | This issue was addressed through improved state management. This issue is fixed in iOS 18.1 and iPadOS 18.1. An attacker may be able to view restricted content from the lock... |
| CVE-2024-44197 | 2024-10-28 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app may be able to cause a denial-of-service. |
| CVE-2024-44267 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the... |
| CVE-2024-44123 | 2024-10-28 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15, iOS 18 and iPadOS 18. A malicious app with root privileges may be able... |
| CVE-2024-44174 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An attacker may be able to view restricted content from the lock screen. |
| CVE-2024-44175 | 2024-10-28 | This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1. An app may be able to access sensitive user data. |
| CVE-2024-44122 | 2024-10-28 | A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. An application may be able to break out... |
| CVE-2024-44289 | 2024-10-28 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to... |
| CVE-2024-44270 | 2024-10-28 | A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A sandboxed process may be able to circumvent sandbox restrictions. |
| CVE-2024-44159 | 2024-10-28 | A path deletion vulnerability was addressed by preventing vulnerable code from running with privileges. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able... |
| CVE-2024-44196 | 2024-10-28 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the... |
| CVE-2024-44285 | 2024-10-28 | A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 18.1 and iPadOS 18.1, watchOS 11.1, visionOS 2.1, tvOS 18.1. An app may be able... |
| CVE-2024-44155 | 2024-10-28 | A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 18, iOS 17.7.1 and iPadOS 17.7.1, macOS Sequoia 15, watchOS 11, iOS... |
| CVE-2024-40792 | 2024-10-28 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A malicious app may be able to change network settings. |
| CVE-2024-44277 | 2024-10-28 | The issue was addressed with improved memory handling. This issue is fixed in iOS 18.1 and iPadOS 18.1, visionOS 2.1, tvOS 18.1. An app may be able to cause unexpected... |
| CVE-2024-44261 | 2024-10-28 | This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1. An attacker may... |
| CVE-2024-44236 | 2024-10-28 | An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Processing a maliciously crafted file may lead to unexpected... |
| CVE-2024-44294 | 2024-10-28 | A path deletion vulnerability was addressed by preventing vulnerable code from running with privileges. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker with root privileges... |
| CVE-2024-44282 | 2024-10-28 | An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS... |
| CVE-2024-44144 | 2024-10-28 | A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1, tvOS 18, watchOS 11, visionOS... |
| CVE-2024-40853 | 2024-10-28 | This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to use Siri... |
| CVE-2024-44216 | 2024-10-28 | An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to access user-sensitive data. |
| CVE-2024-44257 | 2024-10-28 | This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to access sensitive user... |
| CVE-2024-44256 | 2024-10-28 | The issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to break out of its sandbox. |
| CVE-2024-44217 | 2024-10-28 | A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in iOS 18 and iPadOS 18. Password autofill may fill in passwords after... |
| CVE-2024-44240 | 2024-10-28 | The issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1,... |
| CVE-2024-44145 | 2024-10-28 | This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15, iOS 18 and iPadOS 18. An attacker with physical access to a macOS device... |
| CVE-2024-44283 | 2024-10-28 | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a maliciously crafted file may lead to an unexpected... |
| CVE-2024-44295 | 2024-10-28 | This issue was addressed with additional entitlement checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the... |
| CVE-2024-44237 | 2024-10-28 | An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Processing a maliciously crafted file may lead to unexpected... |
| CVE-2024-44260 | 2024-10-28 | This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app with root privileges may be able to... |
| CVE-2024-30106 | 2024-10-28 | HCL Connections is vulnerable to an information disclosure vulnerability |
| CVE-2019-25219 | 2024-10-29 | Asio C++ Library before 1.13.0 lacks a fallback error code in the case of SSL_ERROR_SYSCALL with no associated error information from the SSL library being used. |
| CVE-2024-44080 | 2024-10-29 | In Jitsi Meet before 2.0.9779, the functionality to share an image using giphy was implemented in an insecure way, resulting in clients loading GIFs from any arbitrary URL if a... |
| CVE-2024-44081 | 2024-10-29 | In Jitsi Meet before 2.0.9779, the functionality to share a video file was implemented in an insecure way, resulting in clients loading videos from an arbitrary URL if a message... |
| CVE-2024-48063 | 2024-10-29 | In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by multiple parties because this is intended behavior in PyTorch distributed computing. |
| CVE-2024-48138 | 2024-10-29 | A remote code execution (RCE) vulnerability in the component /PluXml/core/admin/parametres_edittpl.php of PluXml v5.8.16 and lower allows attackers to execute arbitrary code via injecting a crafted payload into a template. |