1801
|
- |
|
-
|
-
|
Mattermost versions 9.5.x <= 9.5.8 fail to include the metadata endpoints of Oracle Cloud and Alibaba in the SSRF denylist, which allows an attacker to possibly cause an SSRF if Mattermost was deploy…
|
-
|
CVE-2024-45843
|
2024-09-26 17:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1802
|
- |
|
-
|
-
|
An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. A maintainer coul…
|
-
|
CVE-2024-4278
|
2024-09-26 16:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1803
|
8.8 |
HIGH
Network
|
elecom
|
wrc-2533gs2-b_firmware wrc-2533gs2-w_firmware wrc-2533gs2v-b_firmware wrc-x6000xs-g_firmware wrc-x1500gs-b_firmware wrc-x1500gsa-b_firmware
|
Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected product with an administrative privilege, the user may be dir…
|
CWE-352
Origin Validation Error
|
CVE-2024-40883
|
2024-09-26 14:15 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1804
|
- |
|
-
|
-
|
User interface (UI) misrepresentation of critical information issue exists in multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION. If this vulnerabi…
|
-
|
CVE-2024-47045
|
2024-09-26 13:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1805
|
- |
|
-
|
-
|
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in vss service component in Synology Drive Client before 3.5.0-16084 allows remote attackers to overwrite trivial …
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-52946
|
2024-09-26 13:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1806
|
- |
|
-
|
-
|
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with admini…
|
CWE-120
Classic Buffer Overflow
|
CVE-2022-49041
|
2024-09-26 13:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1807
|
- |
|
-
|
-
|
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in connection management functionality in Synology Drive Client before 3.4.0-15721 allows local users with adminis…
|
CWE-120
Classic Buffer Overflow
|
CVE-2022-49040
|
2024-09-26 13:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1808
|
- |
|
-
|
-
|
Out-of-bounds write vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to execute arbitrary commands vi…
|
-
|
CVE-2022-49039
|
2024-09-26 13:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1809
|
- |
|
-
|
-
|
Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component in Synology Drive Client before 3.3.0-15082 allows local users to execute arbitrary code via unspecifie…
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2022-49038
|
2024-09-26 13:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1810
|
- |
|
-
|
-
|
Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive informatio…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2022-49037
|
2024-09-26 13:15 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|