|
131
|
- |
|
-
|
-
|
An issue in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary code via the build method in DonwloadPromptScreen
New
|
-
|
CVE-2024-33368
|
2024-09-28 04:35 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
132
|
- |
|
-
|
-
|
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMPersonnel.asmx function.
New
|
-
|
CVE-2024-40507
|
2024-09-28 04:35 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
133
|
- |
|
-
|
-
|
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMHospitality.asmx function.
New
|
-
|
CVE-2024-40506
|
2024-09-28 04:35 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
134
|
8.8 |
HIGH
Network
|
apache
|
airflow_sqoop_provider
|
Apache Airflow Sqoop Provider, versions before 4.0.0, is affected by a vulnerability that allows an attacker pass parameters with the connections, which makes it possible to implement RCE attacks via…
Update
|
CWE-20
Improper Input Validation
|
CVE-2023-27604
|
2024-09-28 04:35 |
2023-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
135
|
8.8 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware
tc_mguard_rs4000_4g_vpn_firmware
tc_mguard_rs4000_4g_att_vpn_firmware
tc_mguard_rs4000_3g_vpn_firmware
tc_mguard_rs2000_4g_vzw_vpn_firmware
tc_mgua…
|
A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.
Update
|
CWE-78
OS Command
|
CVE-2024-43387
|
2024-09-28 04:33 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
136
|
8.8 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware
tc_mguard_rs4000_4g_vpn_firmware
tc_mguard_rs4000_4g_att_vpn_firmware
tc_mguard_rs4000_3g_vpn_firmware
tc_mguard_rs2000_4g_vzw_vpn_firmware
tc_mgua…
|
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.
Update
|
CWE-78
OS Command
|
CVE-2024-43386
|
2024-09-28 04:33 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
137
|
8.8 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware
tc_mguard_rs4000_4g_vpn_firmware
tc_mguard_rs4000_4g_att_vpn_firmware
tc_mguard_rs4000_3g_vpn_firmware
tc_mguard_rs2000_4g_vzw_vpn_firmware
tc_mgua…
|
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.
Update
|
CWE-78
OS Command
|
CVE-2024-43385
|
2024-09-28 04:33 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
138
|
8.8 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware
tc_mguard_rs4000_4g_vpn_firmware
tc_mguard_rs4000_4g_att_vpn_firmware
tc_mguard_rs4000_3g_vpn_firmware
tc_mguard_rs2000_4g_vzw_vpn_firmware
tc_mgua…
|
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation.
Update
|
NVD-CWE-noinfo
|
CVE-2024-43388
|
2024-09-28 04:32 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
139
|
- |
|
-
|
-
|
In versions of the PEADM Forge Module prior to 3.24.0 a security misconfiguration was discovered.
New
|
-
|
CVE-2024-9160
|
2024-09-28 04:15 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
140
|
7.5 |
HIGH
Network
redhat
cryptography.io
couchbase
|
ansible_automation_platform
enterprise_linux
update_infrastructure
cryptography
couchbase_server
|
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confi…
Update
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2023-50782
|
2024-09-28 04:15 |
2024-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
