1941
|
7.5 |
HIGH
Network
idattend
|
idweb
|
Missing authentication in the SetStudentNotes method in IDAttend’s IDWeb application 3.1.052 and earlier allows modification of student data by unauthenticated attackers.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2023-26571
|
2024-09-25 21:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1942
|
7.5 |
HIGH
Network
idattend
|
idweb
|
Missing authentication in the StudentPopupDetails_Timetable method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction sensitive student data by unauthenticated attackers.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2023-26570
|
2024-09-25 21:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1943
|
7.5 |
HIGH
Network
hitachienergy
|
microscada_x_sys600
|
Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP stack during the ICCP communication establishment causes a denial-of-service when ICCP of SYS600 is req…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2022-2277
|
2024-09-25 20:15 |
2022-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1944
|
4.4 |
MEDIUM
Local
|
hitachienergy
|
microscada_x_sys600
|
Improper Input Validation vulnerability in Hitachi Energy MicroSCADA X SYS600 while reading a specific configuration file causes a buffer-overflow that causes a failure to start the SYS600. The confi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2022-1778
|
2024-09-25 20:15 |
2022-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1945
|
7.5 |
HIGH
Network
hitachienergy
|
rtu500_firmware
|
Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not v…
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-6711
|
2024-09-25 18:15 |
2023-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1946
|
7.5 |
HIGH
Network
abb hitachienergy
|
rtu500_firmware
|
A vulnerability exists in the HCI Modbus TCP function included in the product versions listed above. If the HCI Modbus TCP is en-abled and configured, an attacker could exploit the vulnerability by s…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2022-28613
|
2024-09-25 17:15 |
2022-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1947
|
- |
|
kubernetes redhat
|
cri-o openshift_container_platform
|
A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal (“../“). This flaw allows the container to read and write to arbitra…
|
CWE-22
Path Traversal
|
CVE-2024-5154
|
2024-09-25 15:15 |
2024-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1948
|
- |
|
-
|
-
|
Out-of-bounds read vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure …
|
-
|
CVE-2024-29219
|
2024-09-25 13:15 |
2024-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1949
|
- |
|
-
|
-
|
Out-of-bounds write vulnerability exists in KV STUDIO Ver.11.64 and earlier, KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or…
|
-
|
CVE-2024-29218
|
2024-09-25 13:15 |
2024-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1950
|
8.8 |
HIGH
Network
|
google fedoraproject
|
chrome fedora
|
Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)
|
CWE-843
Type Confusion
|
CVE-2024-5830
|
2024-09-25 10:37 |
2024-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|