61
|
9.8 |
CRITICAL
Network
zoom
|
zoom
|
Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.
Update
|
NVD-CWE-noinfo
|
CVE-2023-39216
|
2024-09-28 05:15 |
2023-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
62
|
5.7 |
MEDIUM
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.
Update
|
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
|
CVE-2024-7698
|
2024-09-28 04:39 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
63
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SR…
Update
|
NVD-CWE-noinfo
|
CVE-2024-43391
|
2024-09-28 04:38 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
64
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
Update
|
NVD-CWE-noinfo
|
CVE-2024-43390
|
2024-09-28 04:37 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
65
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP …
Update
|
NVD-CWE-noinfo
|
CVE-2024-43393
|
2024-09-28 04:36 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
66
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
Update
|
NVD-CWE-noinfo
|
CVE-2024-43389
|
2024-09-28 04:36 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
67
|
- |
|
-
|
-
|
Directory Traversal vulnerability in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary code via the getFileNameFromConnection method in DownloadTask
New
|
-
|
CVE-2024-33369
|
2024-09-28 04:35 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
68
|
- |
|
-
|
-
|
An issue in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary code via the build method in DonwloadPromptScreen
New
|
-
|
CVE-2024-33368
|
2024-09-28 04:35 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
69
|
- |
|
-
|
-
|
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMPersonnel.asmx function.
New
|
-
|
CVE-2024-40507
|
2024-09-28 04:35 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
70
|
- |
|
-
|
-
|
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMHospitality.asmx function.
New
|
-
|
CVE-2024-40506
|
2024-09-28 04:35 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|