601
|
8.8 |
HIGH
Adjacent
|
ivanti
|
endpoint_manager
|
An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code.
Update
|
CWE-89
SQL Injection
|
CVE-2024-29823
|
2024-10-4 01:45 |
2024-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
602
|
8.8 |
HIGH
Adjacent
|
ivanti
|
endpoint_manager
|
An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code.
Update
|
CWE-89
SQL Injection
|
CVE-2024-29822
|
2024-10-4 01:45 |
2024-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
603
|
7.8 |
HIGH
Local
|
fujielectric
|
tellus_lite_v-simulator
|
Fuji Electric Tellus Lite V-Simulator
is vulnerable to a stack-based buffer overflow, which could allow an attacker to execute arbitrary code.
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-37029
|
2024-10-4 01:43 |
2024-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
604
|
7.8 |
HIGH
Local
|
siemens
|
simcenter_femap
|
A vulnerability has been identified in Simcenter Femap (All versions < V2401.0000), Simcenter Femap (All versions < V2306.0001). The affected applications contain an out of bounds read past the end o…
Update
|
-
|
CVE-2024-24923
|
2024-10-4 01:39 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
605
|
- |
|
-
|
-
|
A Command injection vulnerability in requestLetsEncryptSslWithDnsChallenge in NginxProxyManager 2.11.3 allows an attacker to achieve remote code execution via Add Let's Encrypt Certificate. NOTE: thi…
Update
|
-
|
CVE-2024-46257
|
2024-10-4 01:35 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
606
|
8.1 |
HIGH
Network
|
arubanetworks
|
edgeconnect_sd-wan_orchestrator
|
A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote attacker to run arbitrary commands on the underlying host if certain pre…
Update
|
NVD-CWE-noinfo
|
CVE-2023-37424
|
2024-10-4 01:35 |
2023-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
607
|
7.8 |
HIGH
Local
|
siemens
|
simcenter_femap
|
A vulnerability has been identified in Simcenter Femap (All versions < V2306.0000). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specia…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-24924
|
2024-10-4 01:33 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
608
|
7.8 |
HIGH
Local
|
siemens
|
simcenter_femap
|
A vulnerability has been identified in Simcenter Femap (All versions < V2306.0000). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted Catia MODEL …
Update
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2024-24925
|
2024-10-4 01:32 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
609
|
9.8 |
CRITICAL
Network
bbsetheme
|
bbs-e-popup
|
Missing Authorization vulnerability in BBS e-Theme BBS e-Popup.This issue affects BBS e-Popup: from n/a through 2.4.5.
Update
|
CWE-862
Missing Authorization
|
CVE-2023-36504
|
2024-10-4 01:31 |
2024-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
610
|
8.8 |
HIGH
Network
|
maximeschoeni
|
sublanguage
|
Missing Authorization vulnerability in Maxime Schoeni Sublanguage.This issue affects Sublanguage: from n/a through 2.9.
Update
|
CWE-862
Missing Authorization
|
CVE-2023-36695
|
2024-10-4 01:28 |
2024-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|