1211
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
|
NVD-CWE-noinfo
|
CVE-2024-43389
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1212
|
- |
|
-
|
-
|
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying `userPassword` using malf…
|
-
|
CVE-2024-8445
|
2024-10-1 15:15 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1213
|
- |
|
-
|
-
|
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server …
|
-
|
CVE-2024-7409
|
2024-10-1 14:15 |
2024-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1214
|
7.8 |
HIGH
Local
|
bmc
|
patrol_agent
|
BMC PATROL Agent through 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.
|
NVD-CWE-noinfo
|
CVE-2020-35593
|
2024-10-1 05:35 |
2023-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1215
|
9.8 |
CRITICAL
Network
perforce
|
akana_api
|
In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity (XXE) was discovered.
|
CWE-611
XXE
|
CVE-2024-3930
|
2024-10-1 05:14 |
2024-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1216
|
8.8 |
HIGH
Network
|
tianchoy
|
blog
|
A vulnerability was found in Tianchoy Blog up to 1.8.8. It has been classified as critical. This affects an unknown part of the file /so.php. The manipulation of the argument search leads to sql inje…
|
CWE-89
SQL Injection
|
CVE-2024-7114
|
2024-10-1 05:10 |
2024-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1217
|
7.5 |
HIGH
Network
txtdot
|
txtdot
|
txtdot is an HTTP proxy that parses only text, links, and pictures from pages, removing ads and heavy scripts. Prior to version 1.7.0, a Server-Side Request Forgery (SSRF) vulnerability in the `/get`…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-41812
|
2024-10-1 05:05 |
2024-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1218
|
7.5 |
HIGH
Network
txtdot
|
txtdot
|
txtdot is an HTTP proxy that parses only text, links, and pictures from pages, removing ads and heavy scripts. Starting in version 1.4.0 and prior to version 1.6.1, a Server-Side Request Forgery (SSR…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-41813
|
2024-10-1 05:02 |
2024-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1219
|
6.1 |
MEDIUM
Network
|
doverfuelingsolutions
|
progauge_maglink_lx_console_firmware progauge_maglink_lx4_console_firmware
|
ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input
fields that are used to render pages which may allow cross site
scripting.
|
CWE-79
Cross-site Scripting
|
CVE-2024-41725
|
2024-10-1 04:55 |
2024-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1220
|
5.5 |
MEDIUM
Local
|
apple
|
macos iphone_os ipados watchos
|
A privacy issue was addressed by moving sensitive data to a more secure location. This issue is fixed in iOS 18 and iPadOS 18, watchOS 11, macOS Sequoia 15. An app may be able to access user-sensitiv…
|
NVD-CWE-noinfo
|
CVE-2024-44170
|
2024-10-1 04:48 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|