|
381
|
6.4 |
MEDIUM
Local
|
google
|
android
|
In ims service, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed…
Update
|
CWE-362
Race Condition
|
CVE-2023-20827
|
2024-10-11 01:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
382
|
7.8 |
HIGH
Local
|
intel
|
unite
|
Improper access control in the Intel(R) Unite(R) Hub software installer for Windows before version 4.2.34962 may allow an authenticated user to potentially enable escalation of privilege via local ac…
Update
|
NVD-CWE-noinfo
|
CVE-2023-25773
|
2024-10-11 01:35 |
2023-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
383
|
7.5 |
HIGH
Network
atlassian
|
data_center
jira
|
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the /rest/gad…
Update
|
NVD-CWE-noinfo
|
CVE-2021-39123
|
2024-10-11 01:35 |
2021-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
384
|
5.3 |
MEDIUM
Network
atlassian
|
data_center
jira
|
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to discover the usernames and full names of users via an enumeration vulnerability in the /rest/api/1.0/render endpoi…
Update
|
NVD-CWE-noinfo
|
CVE-2021-39118
|
2024-10-11 01:35 |
2021-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
385
|
5.3 |
MEDIUM
Network
atlassian
|
data_center
jira
jira_server
jira_data_center
|
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view users' emails via an Information Disclosure vulnerability in the /rest/api/2/search endpoint. The a…
Update
|
NVD-CWE-noinfo
|
CVE-2021-39122
|
2024-10-11 01:35 |
2021-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
386
|
7.8 |
HIGH
Local
|
libcap_project
redhat
fedoraproject
debian
|
libcap
enterprise_linux
fedora
debian_linux
|
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.
Update
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-2603
|
2024-10-11 01:32 |
2023-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
387
|
- |
|
-
|
-
|
A vulnerability, which was classified as critical, has been found in Codezips Online Shopping Portal 1.0. This issue affects some unknown processing of the file /update-image1.php. The manipulation o…
New
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9794
|
2024-10-11 01:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
388
|
- |
|
-
|
-
|
A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This vulnerability affects the function ate_iwpriv_set/ate_ifconfig_set of the file /goform/ate. The manipulation l…
New
|
CWE-77
Command Injection
|
CVE-2024-9793
|
2024-10-11 01:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
389
|
- |
|
-
|
-
|
pac4j is a security framework for Java. `pac4j-core` prior to version 4.0.0 is affected by a Java deserialization vulnerability. The vulnerability affects systems that store externally controlled val…
New
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2023-25581
|
2024-10-11 01:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
390
|
4.3 |
MEDIUM
Network
|
nask
|
ezd_rp
|
Incorrect User Management vulnerability in Naukowa i Akademicka Siec Komputerowa - Panstwowy Instytut Badawczy EZD RP allows logged-in user to list all users in the system, including those from other…
Update
|
CWE-863
Incorrect Authorization
|
CVE-2024-7266
|
2024-10-11 01:15 |
2024-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
