2091
|
7.2 |
HIGH
Network
|
nozominetworks
|
cmc guardian
|
Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands o…
|
CWE-20
Improper Input Validation
|
CVE-2022-0551
|
2024-09-20 20:15 |
2022-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2092
|
7.2 |
HIGH
Network
|
nozominetworks
|
cmc guardian
|
Improper Input Validation vulnerability in custom report logo upload in Nozomi Networks Guardian, and CMC allows an authenticated attacker with admin or report manager roles to execute unattended com…
|
CWE-20
Improper Input Validation
|
CVE-2022-0550
|
2024-09-20 20:15 |
2022-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2093
|
- |
|
-
|
-
|
Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an attacker to create a document which without prompt will execute scripts built-into LibreOffice on cli…
|
-
|
CVE-2024-3044
|
2024-09-20 19:15 |
2024-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2094
|
- |
|
-
|
-
|
Rejected reason: DoS issues, or unexploitable crashes, are out of scope for vulnerabilities.
|
-
|
CVE-2023-36268
|
2024-09-20 18:15 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2095
|
- |
|
-
|
-
|
There is a difficult to exploit improper authentication issue in the Home application for Esri Portal for ArcGIS versions 10.8.1 through 11.2 on Windows and Linux, and ArcGIS Enterprise 11.1 and belo…
|
CWE-323
Reusing a Nonce, Key Pair in Encryption
|
CVE-2024-25699
|
2024-09-20 12:15 |
2024-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2096
|
- |
|
-
|
-
|
Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality.
|
-
|
CVE-2024-8963
|
2024-09-20 10:00 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2097
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2016 windows_server_1803 windows_server_2019 windows_10_1809 windows_10_1703 windows_10_1709 windows_10_1803 windows_10_1607 windows_10_1507 windows_10_1903<…
|
An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations, aka 'Task Scheduler Elevation of Privilege Vulnerability'.
|
CWE-59
Link Following
|
CVE-2019-1069
|
2024-09-20 10:00 |
2019-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2098
|
9.8 |
CRITICAL
Network
tenda
|
o6_firmware
|
Tenda O6 V3.0 firmware V1.0.0.7(2054) contains a stack overflow vulnerability in the formexeCommand function.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-46049
|
2024-09-20 09:39 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2099
|
9.8 |
CRITICAL
Network
tenda
|
fh451_firmware
|
Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i
|
CWE-77
Command Injection
|
CVE-2024-46048
|
2024-09-20 09:35 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2100
|
7.5 |
HIGH
Network
tenda
|
fh451_firmware
|
Tenda FH451 v1.0.0.9 has a stack overflow vulnerability in the fromDhcpListClient function.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-46047
|
2024-09-20 09:35 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|