Lista CVE - 2024 / Maggio

Visualizzazione 1201 - 1300 di 4994 CVE per Maggio 2024 (Pagina 13 di 50)

Torna alla Lista Precedente Successivo

ID CVE	Data	Titolo
CVE-2023-51599	2024-05-03	Honeywell Saia PG5 Controls Suite Directory Traversal Remote Code Execution Vulnerability
CVE-2023-51600	2024-05-03	Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability
CVE-2023-51601	2024-05-03	Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability
CVE-2023-51602	2024-05-03	Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability
CVE-2023-51603	2024-05-03	Honeywell Saia PG5 Controls Suite CAB File Parsing Directory Traversal Remote Code Execution Vulnerability
CVE-2023-51604	2024-05-03	Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability
CVE-2023-51605	2024-05-03	Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure Vulnerability
CVE-2023-51606	2024-05-03	Kofax Power PDF U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
CVE-2023-51607	2024-05-03	Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-51608	2024-05-03	Kofax Power PDF J2K File Parsing Memory Corruption Remote Code Execution Vulnerability
CVE-2023-51609	2024-05-03	Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-51610	2024-05-03	Kofax Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability
CVE-2023-51611	2024-05-03	Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-51612	2024-05-03	Kofax Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability
CVE-2023-51613	2024-05-03	D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51614	2024-05-03	D-Link DIR-X3260 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51615	2024-05-03	D-Link DIR-X3260 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51616	2024-05-03	D-Link DIR-X3260 prog.cgi SetSysEmailSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51617	2024-05-03	D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51618	2024-05-03	D-Link DIR-X3260 prog.cgi SetWLanRadioSecurity Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51619	2024-05-03	D-Link DIR-X3260 prog.cgi SetMyDLinkRegistration Stack-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51620	2024-05-03	D-Link DIR-X3260 prog.cgi SetIPv6PppoeSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51621	2024-05-03	D-Link DIR-X3260 prog.cgi SetDeviceSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51622	2024-05-03	D-Link DIR-X3260 prog.cgi SetTriggerPPPoEValidate Stack-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51623	2024-05-03	D-Link DIR-X3260 prog.cgi SetAPClientSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51624	2024-05-03	D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Nonce Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51625	2024-05-03	D-Link DCS-8300LHV2 ONVIF SetSystemDateAndTime Command Injection Remote Code Execution Vulnerability
CVE-2023-51626	2024-05-03	D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Username Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51627	2024-05-03	D-Link DCS-8300LHV2 ONVIF Duration Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51628	2024-05-03	D-Link DCS-8300LHV2 ONVIF SetHostName Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-51629	2024-05-03	D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability
CVE-2023-51633	2024-05-03	Centreon sysName Cross-Site Scripting Remote Code Execution Vulnerability
CVE-2023-47220	2024-05-03	Media Streaming add-on
CVE-2024-4439	2024-05-03	WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient output escaping on the display...
CVE-2024-3637	2024-05-03	Responsive Contact Form Builder & Lead Generation Plugin <= 1.8.9 - Admin+ Stored XSS
CVE-2024-3692	2024-05-03	Gutenverse < 1.9.1 - Contributor+ Stored XSS
CVE-2024-3703	2024-05-03	Carousel Slider < 2.2.10 - Editor+ Stored XSS
CVE-2024-33947	2024-05-03	WordPress RegistrationMagic plugin <= 5.3.2.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33946	2024-05-03	WordPress WPify Woo Czech plugin <= 4.0.10 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33945	2024-05-03	WordPress Eleblog – Elementor Blog And Magazine Addons plugin <= 1.8 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33943	2024-05-03	WordPress Ultimate Under Construction plugin <= 1.9.3 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33940	2024-05-03	WordPress EventON plugin <= 2.2.14 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33936	2024-05-03	WordPress Print-O-Matic plugin <= 2.1.10 - Auth. Cross Site Scripting (XSS) vulnerability
CVE-2024-33935	2024-05-03	WordPress PB MailCrypt plugin <= 3.1.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33934	2024-05-03	WordPress Mini Loops plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33932	2024-05-03	WordPress Login Logout Register Menu plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33928	2024-05-03	WordPress CodeBard's Patron Button and Widgets for Patreon plugin <= 2.2.0 - Reflected Cross Site Scripting (XSS) vulnerability
CVE-2024-33927	2024-05-03	WordPress Giphypress plugin <= 1.6.2 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33926	2024-05-03	WordPress GWP-Histats plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33924	2024-05-03	WordPress Realtyna Organic IDX plugin + WPL Real Estate plugin <= 4.14.4 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33918	2024-05-03	WordPress AJAX Login and Registration modal popup + inline form plugin <= 2.23 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33916	2024-05-03	WordPress CPO Companion plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-32831	2024-05-03	WordPress Accessibility Widget plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability
CVE-2024-33941	2024-05-03	WordPress iPanorama 360 plugin <= 1.8.1 - Broken Access Control vulnerability
CVE-2023-44472	2024-05-03	WordPress Unyson plugin <= 2.7.28 - Broken Access Control vulnerability
CVE-2023-25457	2024-05-03	WordPress Slider Carousel – Responsive Image Slider plugin <=1.5.1 - Broken Access Control vulnerability
CVE-2024-32810	2024-05-03	WordPress ShortPixel Critical CSS plugin <= 1.0.2 - Broken Access Control vulnerability
CVE-2024-24710	2024-05-03	WordPress Feed Them Social plugin <= 4.2.0 - Broken Access Control vulnerability
CVE-2024-28072	2024-05-03	Arbitrary File Overwrite Vulnerability
CVE-2023-35701	2024-05-03	Apache Hive: Arbitrary command execution via JDBC driver
CVE-2024-23912	2024-05-03	Out-of-bounds Read vulnerability in Merge DICOM Toolkit C/C++ on Windows. When MC_Open_File() function is used to read a malformed DICOM data, it might result in over-reading memory buffer and could...
CVE-2024-23913	2024-05-03	Use of Out-of-range Pointer Offset vulnerability in Merge DICOM Toolkit C/C++ on Windows. When deprecated MC_XML_To_Message() function is used to read a malformed DICOM XML file, it might result in...
CVE-2024-23914	2024-05-03	Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows. When MC_Open_Association() function is used to open DICOM Association and gets DICOM Application Context Name with illegal...
CVE-2024-33937	2024-05-03	WordPress Progressive WordPress (PWA) plugin <= 2.1.13 - Broken Access Control vulnerability
CVE-2024-33931	2024-05-03	WordPress JW Player for WordPress plugin <= 2.3.3 - Broken Access Control vulnerability
CVE-2024-33929	2024-05-03	WordPress Directorist plugin <= 7.8.6 - Broken Access Control vulnerability
CVE-2024-33925	2024-05-03	WordPress Embed Google Fonts plugin <= 3.1.0 - Broken Access Control vulnerability
CVE-2024-33923	2024-05-03	WordPress SP Project & Document Manager plugin <= 4.69 - Broken Access Control vulnerability
CVE-2024-33921	2024-05-03	WordPress ReviewX plugin <= 1.6.21 - Broken Access Control vulnerability
CVE-2024-33920	2024-05-03	WordPress Democracy Poll plugin <= 6.0.3 - Broken Access Control vulnerability
CVE-2024-33919	2024-05-03	WordPress RomethemeKit For Elementor plugin <= 1.4.1 - Broken Access Control vulnerability
CVE-2024-33915	2024-05-03	WordPress Debug Log Manager plugin <= 2.3.1 - Broken Access Control vulnerability
CVE-2024-33914	2024-05-03	WordPress Exclusive Addons for Elementor plugin <= 2.6.9.1 - Broken Access Control on Post Duplication vulnerability
CVE-2024-34063	2024-05-03	Degraded secret zeroization capabilities in vodozemac
CVE-2024-34062	2024-05-03	tqdm CLI arguments injection attack
CVE-2024-32986	2024-05-03	Arbitrary code execution due to improper sanitization of web app properties in PWAsForFirefox
CVE-2024-34073	2024-05-03	Command Injection in sagemaker-python-sdk
CVE-2024-34072	2024-05-03	Deserialization of Untrusted Data in sagemaker-python-sdk
CVE-2024-4461	2024-05-03	Unquoted path or search item vulnerability in SugarSync
CVE-2024-4466	2024-05-03	SQL injection vulnerability in Gescen
CVE-2024-2410	2024-05-03	Use after free in C++ protobuf
CVE-2024-1395	2024-05-03	Mali GPU Kernel Driver allows improper GPU memory processing operations
CVE-2024-1067	2024-05-03	Mali GPU Kernel Driver allows improper GPU memory processing operations
CVE-2023-6363	2024-05-03	Mali GPU Kernel Driver allows improper GPU processing operations
CVE-2023-41816	2024-05-03	An improper export vulnerability was reported in the Motorola Services Main application that could allow a local attacker to write to a local database.
CVE-2023-41817	2024-05-03	An improper export vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read unauthorized information.
CVE-2023-41818	2024-05-03	An improper use of the SD card for sensitive data vulnerability was reported in the Motorola Device Help application that could allow a local attacker to read system logs.
CVE-2023-41819	2024-05-03	A PendingIntent hijacking vulnerability was reported in the Motorola Face Unlock application that could allow a local attacker to access unauthorized content providers.
CVE-2023-41820	2024-05-03	An implicit intent vulnerability was reported in the Motorola Ready For application that could allow a local attacker to read information about connected Bluetooth audio devices.
CVE-2023-41821	2024-05-03	A an improper export vulnerability was reported in the Motorola Setup application that could allow a local attacker to read sensitive user information.
CVE-2023-41822	2024-05-03	An improper export vulnerability was reported in the Motorola Interface Test Tool application that could allow a malicious local application to execute OS commands.
CVE-2023-41823	2024-05-03	An improper export vulnerability was reported in the Motorola Phone Extension application, that could allow a local attacker to execute unauthorized Activities.
CVE-2023-41824	2024-05-03	An implicit intent vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read the calling phone number and calling data.
CVE-2023-41825	2024-05-03	A path traversal vulnerability was reported in the Motorola Ready For application that could allow a local attacker to access local files.
CVE-2023-41826	2024-05-03	A PendingIntent hijacking vulnerability in Motorola Device Help (Genie) application that could allow local attackers to access files or interact with non-exported software components without permission.
CVE-2023-41828	2024-05-03	An implicit intent export vulnerability was reported in the Motorola Phone application, that could allow unauthorized access to a non-exported content provider.
CVE-2023-41830	2024-05-03	An improper absolute path traversal vulnerability was reported for the Ready For application allowing a local application access to files without authorization.
CVE-2024-3108	2024-05-03	An implicit intent vulnerability was reported for Motorola’s Time Weather Widget application that could allow a local application to acquire the location of the device without authorization.
CVE-2024-3109	2024-05-03	A hard-coded AES key vulnerability was reported in the Motorola GuideMe application, along with a lack of URI sanitation, could allow for a local attacker to read arbitrary files.
CVE-2024-3479	2024-05-03	An improper export vulnerability was reported in the Motorola Enterprise MotoDpms Provider (com.motorola.server.enterprise.MotoDpmsProvider) that could allow a local attacker to read local data.