271
|
7.3 |
HIGH
Local
|
beckhoff
|
twincat\/bsd mdp_package
|
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local
attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in
the context of user “roo…
Update
|
NVD-CWE-Other
|
CVE-2024-41176
|
2024-10-1 16:15 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272
|
6.5 |
MEDIUM
Network
|
phoenixcontact
|
axc_f_1152_firmware axc_f_2152_firmware axc_f_3152_firmware bpc_9102s_firmware epc_1502_firmware epc_1522_firmware plcnext_engineer rfc_4072r_firmware rfc_4072s_firmware
|
A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connecte…
Update
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2023-46144
|
2024-10-1 16:15 |
2023-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
273
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SR…
Update
|
NVD-CWE-noinfo
|
CVE-2024-43391
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
274
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
Update
|
NVD-CWE-noinfo
|
CVE-2024-43390
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
275
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
Update
|
NVD-CWE-noinfo
|
CVE-2024-43389
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
276
|
0.0 |
NONE
Physics
|
-
|
-
|
This CVE has been rejected.
New
|
-
|
CVE-2024-8421
|
2024-10-1 15:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
277
|
- |
|
-
|
-
|
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying `userPassword` using malf…
Update
|
-
|
CVE-2024-8445
|
2024-10-1 15:15 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
278
|
- |
|
-
|
-
|
All versions of the package git-shallow-clone are vulnerable to Command injection due to missing sanitization or mitigation flags in the process variable of the gitShallowClone function.
New
|
-
|
CVE-2024-21531
|
2024-10-1 14:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
279
|
- |
|
-
|
-
|
Versions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the attribute resolves to the object prototype.
New
|
-
|
CVE-2024-21489
|
2024-10-1 14:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
280
|
- |
|
-
|
-
|
NVIDIA Triton Inference Server contains a vulnerability where a user may cause an out-of-bounds read issue by releasing a shared memory region while it is in use. A successful exploit of this vulnera…
New
|
-
|
CVE-2024-0116
|
2024-10-1 14:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|