461
|
7.5 |
HIGH
Network
huawei
|
emui harmonyos
|
Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause newly installed apps to fail to restart.
|
CWE-20
Improper Input Validation
|
CVE-2023-39386
|
2024-10-10 23:35 |
2023-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
462
|
7.5 |
HIGH
Network
atlassian
|
jira_software_data_center
|
Affected versions of Atlassian Jira Server and Data Center allow attackers with access to an administrator account that has had its access revoked to modify projects' Users & Roles settings, via a Br…
|
CWE-287
Improper Authentication
|
CVE-2021-41311
|
2024-10-10 23:35 |
2021-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
463
|
5.3 |
MEDIUM
Network
atlassian
|
jira_software_data_center
|
Affected versions of Atlassian Jira Server and Data Center allow a user who has had their Jira Service Management access revoked to export audit logs of another user's Jira Service Management project…
|
CWE-287
Improper Authentication
|
CVE-2021-41309
|
2024-10-10 23:35 |
2021-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
464
|
7.5 |
HIGH
Network
atlassian
|
jira data_center
|
Affected versions of Atlassian Jira Server and Data Center allow a remote attacker who has had their access revoked from Jira Service Management to enable and disable Issue Collectors on Jira Service…
|
CWE-287
Improper Authentication
|
CVE-2021-41312
|
2024-10-10 23:35 |
2021-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
465
|
5.3 |
MEDIUM
Network
latchset redhat fedoraproject
|
jwcrypto enterprise_linux enterprise_linux_for_power_little_endian enterprise_linux_for_ibm_z_systems fedora enterprise_linux_for_arm_64
|
A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of service (DoS) attack and possible password brute-force and dictionary attacks to be more resource-intensive. T…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2023-6681
|
2024-10-10 23:32 |
2024-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
466
|
- |
|
esri
|
arcmap
|
ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote attackers to execute arbitrary VBA code via a c…
|
CWE-94
Code Injection
|
CVE-2012-1661
|
2024-10-10 23:30 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
467
|
- |
|
redhat fedoraproject
|
389_directory_server directory_server fedora enterprise_linux enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions enterprise_linux_server_aus enterpris…
|
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in log_entry_attr.
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2024-1062
|
2024-10-10 23:22 |
2024-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
468
|
- |
|
-
|
-
|
A vulnerability was found in LyLme_spage 1.9.5 and classified as critical. This issue affects some unknown processing of the file /admin/apply.php. The manipulation of the argument id leads to sql in…
|
CWE-89
SQL Injection
|
CVE-2024-9789
|
2024-10-10 23:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
469
|
- |
|
-
|
-
|
A vulnerability has been found in LyLme_spage 1.9.5 and classified as critical. This vulnerability affects unknown code of the file /admin/tag.php. The manipulation of the argument id leads to sql in…
|
CWE-89
SQL Injection
|
CVE-2024-9788
|
2024-10-10 23:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
470
|
- |
|
-
|
-
|
A vulnerability, which was classified as problematic, was found in Contemporary Control System BASrouter BACnet BASRT-B 2.7.2. This affects an unknown part of the component UDP Packet Handler. The ma…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2024-9787
|
2024-10-10 23:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|