Lista CVE - 2024 / Settembre
Visualizzazione 101 - 200 di 2518 CVE per Settembre 2024 (Pagina 2 di 26)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2024-45180 | 2024-09-03 | SquaredUp DS for SCOM 6.2.1.11104 allows XSS. |
| CVE-2024-45678 | 2024-09-03 | Yubico YubiKey 5 Series devices with firmware before 5.7.0 and... |
| CVE-2024-8380 | 2024-09-03 | SourceCodester Contact Manager with Export to VCF Delete Contact delete-account.php sql injection |
| CVE-2024-5412 | 2024-09-03 | A buffer overflow vulnerability in the library "libclinkc" of the... |
| CVE-2024-6343 | 2024-09-03 | A buffer overflow vulnerability in the CGI program of Zyxel... |
| CVE-2024-7203 | 2024-09-03 | A post-authentication command injection vulnerability in Zyxel ATP series firmware... |
| CVE-2024-42057 | 2024-09-03 | A command injection vulnerability in the IPSec VPN feature of... |
| CVE-2024-42058 | 2024-09-03 | A null pointer dereference vulnerability in Zyxel ATP series firmware... |
| CVE-2024-42059 | 2024-09-03 | A post-authentication command injection vulnerability in Zyxel ATP series firmware... |
| CVE-2024-42060 | 2024-09-03 | A post-authentication command injection vulnerability in Zyxel ATP series firmware... |
| CVE-2024-42061 | 2024-09-03 | A reflected cross-site scripting (XSS) vulnerability in the CGI program... |
| CVE-2024-7261 | 2024-09-03 | The improper neutralization of special elements in the parameter "host"... |
| CVE-2024-37136 | 2024-09-03 | Dell Path to PowerProtect, versions 1.1, 1.2, contains an Exposure... |
| CVE-2024-3655 | 2024-09-03 | Mali GPU Kernel Driver allows improper GPU memory processing operations |
| CVE-2024-38811 | 2024-09-03 | Code-execution vulnerability |
| CVE-2024-8374 | 2024-09-03 | Arbitrary Code Injection in Cura |
| CVE-2024-45586 | 2024-09-03 | Account Take Over Vulnerability |
| CVE-2024-45587 | 2024-09-03 | Unauthorized Modification Vulnerability |
| CVE-2024-45588 | 2024-09-03 | Information Disclosure Vulnerability |
| CVE-2024-6473 | 2024-09-03 | DLL Hijacking in Yandex Browser |
| CVE-2024-6232 | 2024-09-03 | Regular-expression DoS when parsing TarFile headers |
| CVE-2024-8381 | 2024-09-03 | A potentially exploitable type confusion could be triggered when looking... |
| CVE-2024-8382 | 2024-09-03 | Internal browser event interfaces were exposed to web content when... |
| CVE-2024-8383 | 2024-09-03 | Firefox normally asks for confirmation before asking the operating system... |
| CVE-2024-8384 | 2024-09-03 | The JavaScript garbage collector could mis-color cross-compartment objects if OOM... |
| CVE-2024-8385 | 2024-09-03 | A difference in the handling of StructFields and ArrayTypes in... |
| CVE-2024-8386 | 2024-09-03 | If a site had been granted the permission to open... |
| CVE-2024-8387 | 2024-09-03 | Memory safety bugs present in Firefox 129, Firefox ESR 128.1,... |
| CVE-2024-8388 | 2024-09-03 | Multiple prompts and panels from both Firefox and the Android... |
| CVE-2024-8389 | 2024-09-03 | Memory safety bugs present in Firefox 129. Some of these... |
| CVE-2024-4259 | 2024-09-03 | Sensetive Data Exposure in SAMPAS's AKOS |
| CVE-2024-7654 | 2024-09-03 | Unauthenticated Content Injection in OpenEdge Management web interface via ActiveMQ discovery service |
| CVE-2024-7345 | 2024-09-03 | Direct local client connections to MS Agents can bypass authentication |
| CVE-2024-7346 | 2024-09-03 | Client connections using default TLS certificates from OpenEdge may bypass TLS host name validation |
| CVE-2024-6119 | 2024-09-03 | Possible denial of service in X.509 name checks |
| CVE-2024-43412 | 2024-09-03 | Xibo CMS XSS vulnerability when previewing files uploaded to the library containing HTML/JS |
| CVE-2024-43413 | 2024-09-03 | Xibo CMS XSS vulnerability using DataSet HTML columns |
| CVE-2024-43803 | 2024-09-03 | BMO can expose particularly named secrets from other namespaces via BMH CRD |
| CVE-2024-45307 | 2024-09-03 | SudoBot missing authorization check in `-config` command |
| CVE-2024-45310 | 2024-09-03 | runc can be confused to create empty files/directories on the host |
| CVE-2024-45389 | 2024-09-03 | Pagefind DOM clobbering could escalate to Cross-site Scripting (XSS) |
| CVE-2024-45390 | 2024-09-03 | @blakeembrey/template vulnerable to code injection when attacker controls template input |
| CVE-2024-4629 | 2024-09-03 | Keycloak: potential bypass of brute force protection |
| CVE-2024-45391 | 2024-09-03 | Tina search token leak via lock file in TinaCMS |
| CVE-2024-8399 | 2024-09-03 | Websites could utilize Javascript links to spoof URL addresses in... |
| CVE-2024-45394 | 2024-09-03 | Secret encryption vulnerable to brute-force attacks |
| CVE-2024-45615 | 2024-09-03 | Libopensc: pkcs15init: usage of uninitialized values in libopensc and pkcs15init |
| CVE-2024-45616 | 2024-09-03 | Libopensc: uninitialized values after incorrect check or usage of apdu response values in libopensc |
| CVE-2024-45617 | 2024-09-03 | Libopensc: uninitialized values after incorrect or missing checking return values of functions in libopensc |
| CVE-2024-45618 | 2024-09-03 | Libopensc: uninitialized values after incorrect or missing checking return values of functions in pkcs15init |
| CVE-2024-45619 | 2024-09-03 | Libopensc: incorrect handling length of buffers or files in libopensc |
| CVE-2024-45620 | 2024-09-03 | Libopensc: incorrect handling of the length of buffers or files in pkcs15init |
| CVE-2024-8362 | 2024-09-03 | Use after free in WebAudio in Google Chrome prior to... |
| CVE-2024-7970 | 2024-09-03 | Out of bounds write in V8 in Google Chrome prior... |
| CVE-2024-42642 | 2024-09-04 | Micron Crucial MX500 Series Solid State Drives M3CR046 is vulnerable... |
| CVE-2024-44383 | 2024-09-04 | WAYOS FBM-291W v19.09.11 is vulnerable to Command Execution via msp_info_htm. |
| CVE-2024-44400 | 2024-09-04 | A vulnerability was discovered in DI_8400-16.07.26A1, which has been classified... |
| CVE-2024-44808 | 2024-09-04 | An issue in Vypor Attack API System v.1.0 allows a... |
| CVE-2024-44817 | 2024-09-04 | SQL Injection vulnerability in ZZCMS v.2023 and before allows a... |
| CVE-2024-44818 | 2024-09-04 | Cross Site Scripting vulnerability in ZZCMS v.2023 and before allows... |
| CVE-2024-44820 | 2024-09-04 | A sensitive information disclosure vulnerability exists in ZZCMS v.2023 and... |
| CVE-2024-44821 | 2024-09-04 | ZZCMS 2023 contains a vulnerability in the captcha reuse logic... |
| CVE-2024-44859 | 2024-09-04 | Tenda FH1201 v1.2.0.14 has a stack buffer overflow vulnerability in... |
| CVE-2024-45170 | 2024-09-04 | An issue was discovered in za-internet C-MOR Video Surveillance 5.2401.... |
| CVE-2024-45172 | 2024-09-04 | An issue was discovered in za-internet C-MOR Video Surveillance 5.2401... |
| CVE-2024-45174 | 2024-09-04 | An issue was discovered in za-internet C-MOR Video Surveillance 5.2401... |
| CVE-2024-45177 | 2024-09-04 | An issue was discovered in za-internet C-MOR Video Surveillance 5.2401... |
| CVE-2024-45692 | 2024-09-04 | Webmin before 2.202 and Virtualmin before 7.20.2 allow a network... |
| CVE-2024-44819 | 2024-09-04 | Cross Site Scripting vulnerability in ZZCMS v.2023 and before allows... |
| CVE-2024-45506 | 2024-09-04 | HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through... |
| CVE-2024-41716 | 2024-09-04 | Cleartext storage of sensitive information vulnerability exists in WindLDR and... |
| CVE-2024-41927 | 2024-09-04 | Cleartext transmission of sensitive information vulnerability exists in multiple IDEC... |
| CVE-2024-45450 | 2024-09-04 | Permission control vulnerability in the software update module. Impact: Successful... |
| CVE-2024-42039 | 2024-09-04 | Access control vulnerability in the SystemUI module Impact: Successful exploitation... |
| CVE-2024-45441 | 2024-09-04 | Input verification vulnerability in the system service module Impact: Successful... |
| CVE-2024-45442 | 2024-09-04 | Vulnerability of permission verification for APIs in the DownloadProviderMain module... |
| CVE-2024-45443 | 2024-09-04 | Directory traversal vulnerability in the cust module Impact: Successful exploitation... |
| CVE-2024-39921 | 2024-09-04 | Observable timing discrepancy issue exists in IPCOM EX2 Series V01L02NF0001... |
| CVE-2024-45444 | 2024-09-04 | Access permission verification vulnerability in the WMS module Impact: Successful... |
| CVE-2024-45445 | 2024-09-04 | Vulnerability of resources not being closed or released in the... |
| CVE-2024-45446 | 2024-09-04 | Access permission verification vulnerability in the camera driver module Impact:... |
| CVE-2024-45447 | 2024-09-04 | Access control vulnerability in the camera framework module Impact: Successful... |
| CVE-2024-45448 | 2024-09-04 | Page table protection configuration vulnerability in the trusted firmware module... |
| CVE-2024-45449 | 2024-09-04 | Access permission verification vulnerability in the ringtone setting module Impact:... |
| CVE-2024-8298 | 2024-09-04 | Memory request vulnerability in the memory management module Impact: Successful... |
| CVE-2024-7950 | 2024-09-04 | WP Job Portal <= 2.1.6 - Missing Authorization to Unauthenticated Local File Inclusion, Arbitrary Settings Update, and User Creation |
| CVE-2024-8325 | 2024-09-04 | Gutenberg Page Builder Blocks & Ready-Made Patterns Library <= 3.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2024-34637 | 2024-09-04 | Improper access control in WindowManagerService prior to SMR Sep-2024 Release... |
| CVE-2024-34638 | 2024-09-04 | Improper handling of exceptional conditions in ThemeCenter prior to SMR... |
| CVE-2024-34639 | 2024-09-04 | Improper handling of exceptional conditions in Setupwizard prior to SMR... |
| CVE-2024-34640 | 2024-09-04 | Improper access control vulnerability in BGProtectManager prior to SMR Sep-2024... |
| CVE-2024-34641 | 2024-09-04 | Improper Export of Android Application Components in FeliCaTest prior to... |
| CVE-2024-34642 | 2024-09-04 | Improper authorization in One UI Home prior to SMR Sep-2024... |
| CVE-2024-34643 | 2024-09-04 | Improper access control in key input related function in Dressroom... |
| CVE-2024-34644 | 2024-09-04 | Improper access control in item selection related in Dressroom prior... |
| CVE-2024-34645 | 2024-09-04 | Improper input validation in ThemeCenter prior to SMR Sep-2024 Release... |
| CVE-2024-34646 | 2024-09-04 | Improper access control in DualDarManagerProxy prior to SMR Sep-2024 Release... |
| CVE-2024-34647 | 2024-09-04 | Incorrect use of privileged API in DualDarManagerProxy prior to SMR... |
| CVE-2024-34648 | 2024-09-04 | Improper Handling of Insufficient Permissions in KnoxMiscPolicy prior to SMR... |
| CVE-2024-34649 | 2024-09-04 | Improper access control in new Dex Mode in multitasking framework... |