2281
|
- |
|
-
|
-
|
An issue was discovered in Samsung Semiconductor Mobile Processor and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 13…
|
-
|
CVE-2024-25073
|
2024-09-24 04:15 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2282
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An application may be able to read restricted memory.
|
NVD-CWE-noinfo
|
CVE-2024-27860
|
2024-09-24 04:10 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2283
|
7.5 |
HIGH
Network
apple
|
macos
|
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An application may be able to read restricted memory.
|
NVD-CWE-noinfo
|
CVE-2024-27861
|
2024-09-24 03:56 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2284
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.
|
NVD-CWE-noinfo
|
CVE-2024-40837
|
2024-09-24 03:50 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2285
|
6.5 |
MEDIUM
Network
|
backstage
|
backstage
|
Backstage is an open framework for building developer portals. When using the AWS S3 or GCS storage provider for TechDocs it is possible to access content in the entire storage bucket. This can leak …
|
CWE-22
Path Traversal
|
CVE-2024-45816
|
2024-09-24 03:41 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2286
|
7.5 |
HIGH
Network
ayesa
|
ibermatica_rps
|
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in …
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2023-3350
|
2024-09-24 03:35 |
2023-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2287
|
6.1 |
MEDIUM
Network
|
phpkobo
|
ajaxnewsticker
|
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the subcmd parameter in the index.php component.
|
CWE-79
Cross-site Scripting
|
CVE-2023-41447
|
2024-09-24 03:35 |
2023-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2288
|
6.1 |
MEDIUM
Network
|
phpkobo
|
ajaxnewsticker
|
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted script to the title parameter in the index.php component.
|
CWE-79
Cross-site Scripting
|
CVE-2023-41446
|
2024-09-24 03:35 |
2023-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2289
|
7.3 |
HIGH
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Easily exploitable vulnerability allows low pri…
|
NVD-CWE-noinfo
|
CVE-2022-39421
|
2024-09-24 03:35 |
2022-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2290
|
7.5 |
HIGH
Network
oracle
|
access_manager
|
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Admin Console). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allow…
|
NVD-CWE-noinfo
|
CVE-2022-39412
|
2024-09-24 03:35 |
2022-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|