|
1811
|
5.5 |
MEDIUM
Local
|
dell
|
precision_7920_firmware
7920_xl_firmware
|
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially ex…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-42425
|
2024-09-17 00:46 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1812
|
9.8 |
CRITICAL
Network
dell
|
insightiq
|
Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. An unauthenticated attacker with remote access could potentially exploi…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-39583
|
2024-09-17 00:42 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1813
|
6.7 |
MEDIUM
Local
|
dell
|
insightiq
|
Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, lead…
|
NVD-CWE-noinfo
|
CVE-2024-39580
|
2024-09-17 00:40 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1814
|
4.4 |
MEDIUM
Local
|
dell
|
insightiq
|
Dell PowerScale InsightIQ, version 5.0, contain a Use of hard coded Credentials vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to In…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-39582
|
2024-09-17 00:36 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1815
|
7.5 |
HIGH
Network
esst
|
esst_monitoring
|
A lack of input sanitizing in the file download feature of eSST Monitoring v2.147.1 allows attackers to execute a path traversal.
|
NVD-CWE-noinfo
|
CVE-2023-41629
|
2024-09-17 00:35 |
2023-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1816
|
9.1 |
CRITICAL
Network
|
southrivertech
|
titan_mft_server
titan_sftp_server
|
Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker to write a file to any l…
|
CWE-22
Path Traversal
|
CVE-2023-45685
|
2024-09-17 00:35 |
2023-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1817
|
6.7 |
MEDIUM
Local
|
oracle
|
sql_developer
|
Vulnerability in Oracle SQL Developer (component: Installation). Supported versions that are affected are Prior to 23.1.0. Easily exploitable vulnerability allows high privileged attacker with logon…
|
NVD-CWE-noinfo
|
CVE-2023-21969
|
2024-09-17 00:35 |
2023-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1818
|
8.2 |
HIGH
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnera…
|
NVD-CWE-noinfo
|
CVE-2023-21990
|
2024-09-17 00:35 |
2023-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1819
|
7.8 |
HIGH
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Difficult to exploit vulne…
|
NVD-CWE-noinfo
|
CVE-2023-21987
|
2024-09-17 00:35 |
2023-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1820
|
7.7 |
HIGH
Local
|
oracle
|
solaris
|
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Utility). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows high privileged attac…
|
NVD-CWE-noinfo
|
CVE-2023-21985
|
2024-09-17 00:35 |
2023-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
