2351
|
7.5 |
HIGH
Network
nozominetworks
|
cmc guardian
|
A Denial of Service (Dos) vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in certain fields used in the Asset Intelligence functionality of our IDS, allows an unau…
|
CWE-20
Improper Input Validation
|
CVE-2023-32649
|
2024-09-20 20:15 |
2023-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2352
|
7.4 |
HIGH
Network
|
nozominetworks
|
cmc guardian
|
A SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in certain fields used in the Asset Intelligence functionality of our IDS, may allow an unauthentic…
|
CWE-89
SQL Injection
|
CVE-2023-29245
|
2024-09-20 20:15 |
2023-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2353
|
7.2 |
HIGH
Network
|
nozominetworks
|
cmc guardian
|
Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands o…
|
CWE-20
Improper Input Validation
|
CVE-2022-0551
|
2024-09-20 20:15 |
2022-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2354
|
7.2 |
HIGH
Network
|
nozominetworks
|
cmc guardian
|
Improper Input Validation vulnerability in custom report logo upload in Nozomi Networks Guardian, and CMC allows an authenticated attacker with admin or report manager roles to execute unattended com…
|
CWE-20
Improper Input Validation
|
CVE-2022-0550
|
2024-09-20 20:15 |
2022-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2355
|
- |
|
-
|
-
|
Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an attacker to create a document which without prompt will execute scripts built-into LibreOffice on cli…
|
-
|
CVE-2024-3044
|
2024-09-20 19:15 |
2024-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2356
|
- |
|
-
|
-
|
Rejected reason: DoS issues, or unexploitable crashes, are out of scope for vulnerabilities.
|
-
|
CVE-2023-36268
|
2024-09-20 18:15 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2357
|
- |
|
-
|
-
|
There is a difficult to exploit improper authentication issue in the Home application for Esri Portal for ArcGIS versions 10.8.1 through 11.2 on Windows and Linux, and ArcGIS Enterprise 11.1 and belo…
|
CWE-323
Reusing a Nonce, Key Pair in Encryption
|
CVE-2024-25699
|
2024-09-20 12:15 |
2024-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2358
|
- |
|
-
|
-
|
Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality.
|
-
|
CVE-2024-8963
|
2024-09-20 10:00 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2359
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2016 windows_server_1803 windows_server_2019 windows_10_1809 windows_10_1703 windows_10_1709 windows_10_1803 windows_10_1607 windows_10_1507 windows_10_1903<…
|
An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations, aka 'Task Scheduler Elevation of Privilege Vulnerability'.
|
CWE-59
Link Following
|
CVE-2019-1069
|
2024-09-20 10:00 |
2019-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2360
|
9.8 |
CRITICAL
Network
tenda
|
o6_firmware
|
Tenda O6 V3.0 firmware V1.0.0.7(2054) contains a stack overflow vulnerability in the formexeCommand function.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-46049
|
2024-09-20 09:39 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|