1081
|
7.8 |
HIGH
Local
|
restsharp
|
restsharp
|
RestSharp is a Simple REST and HTTP API Client for .NET. The second argument to `RestRequest.AddHeader` (the header value) is vulnerable to CRLF injection. The same applies to `RestRequest.AddOrUpdat…
|
CWE-74
Injection
|
CVE-2024-45302
|
2024-10-2 05:05 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1082
|
8.0 |
HIGH
Network
|
strawberryrocks
|
strawberry
|
Strawberry GraphQL is a library for creating GraphQL APIs. Prior to version 0.243.0, multipart file upload support as defined in the GraphQL multipart request specification was enabled by default in …
|
CWE-352
Origin Validation Error
|
CVE-2024-47082
|
2024-10-2 05:01 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1083
|
7.5 |
HIGH
Network
watchguard
|
single_sign-on_client
|
Improper Handling of Exceptional Conditions vulnerability in the WatchGuard Single Sign-On Client on Windows causes the client to crash while handling malformed commands. An attacker with network acc…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2024-6594
|
2024-10-2 04:41 |
2024-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1084
|
9.1 |
CRITICAL
Network
watchguard
|
authentication_gateway
|
Incorrect Authorization vulnerability in WatchGuard Authentication Gateway (aka Single Sign-On Agent) on Windows allows an attacker with network access to execute restricted management commands.
This…
|
CWE-863
Incorrect Authorization
|
CVE-2024-6593
|
2024-10-2 04:37 |
2024-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1085
|
6.7 |
MEDIUM
Local
|
linuxfoundation mediatek google
|
yocto iot_yocto android
|
In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32811
|
2024-10-2 04:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1086
|
6.5 |
MEDIUM
Local
|
linuxfoundation mediatek google linux
|
yocto iot_yocto android linux_kernel
|
In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is…
|
CWE-416
Use After Free
|
CVE-2023-20849
|
2024-10-2 04:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1087
|
8.8 |
HIGH
Network
|
google debian fedoraproject
|
chrome debian_linux fedora
|
Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-787
Out-of-bounds Write
|
CVE-2023-4353
|
2024-10-2 04:35 |
2023-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1088
|
7.5 |
HIGH
Network
apache
|
apache-airflow-providers-apache-drill
|
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.
Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in m…
|
CWE-20
Improper Input Validation
|
CVE-2023-39553
|
2024-10-2 04:35 |
2023-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1089
|
9.1 |
CRITICAL
Network
apache
|
traffic_server
|
Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.
|
CWE-444
HTTP Request Smuggling
|
CVE-2023-33934
|
2024-10-2 04:35 |
2023-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1090
|
7.5 |
HIGH
Network
apache
|
traffic_server
|
Improper input validation vulnerability on the range header in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: through 9.2.1.
|
CWE-20
Improper Input Validation
|
CVE-2022-47185
|
2024-10-2 04:35 |
2023-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|