2001
|
4.7 |
MEDIUM
Network
|
mozilla
|
firefox_focus
|
Websites could utilize Javascript links to spoof URL addresses in the Focus navigation bar This vulnerability affects Focus for iOS < 130.
|
NVD-CWE-noinfo
|
CVE-2024-8399
|
2024-09-13 04:45 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2002
|
6.8 |
MEDIUM
Physics
|
redhat
|
enterprise_linux
|
A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. When …
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-45620
|
2024-09-13 04:38 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2003
|
7.5 |
HIGH
Network
huawei
|
emui harmonyos
|
Access control vulnerability in the SystemUI module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2024-42039
|
2024-09-13 04:37 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2004
|
7.5 |
HIGH
Network
huawei
|
emui harmonyos
|
Input verification vulnerability in the system service module
Impact: Successful exploitation of this vulnerability will affect availability.
|
NVD-CWE-noinfo
|
CVE-2024-45441
|
2024-09-13 04:35 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2005
|
7.5 |
HIGH
Network
|
trendmicro
|
apex_central
|
A local file inclusion vulnerability in one of Trend Micro Apex Central's widgets could allow a remote attacker to execute arbitrary code on affected installations.
Please note: this vulnerability…
|
NVD-CWE-Other
|
CVE-2023-52325
|
2024-09-13 04:35 |
2024-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2006
|
7.5 |
HIGH
Network
arm
|
mbed_tls
|
An issue was discovered in Mbed TLS 3.5.1. There is persistent handshake denial if a client sends a TLS 1.3 ClientHello without extensions.
|
NVD-CWE-noinfo
|
CVE-2024-23744
|
2024-09-13 04:35 |
2024-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2007
|
6.6 |
MEDIUM
Network
|
netmodule
|
netmodule_router_software
|
The web administration interface in NetModule Router Software (NRSW) 4.6 before 4.6.0.106 and 4.8 before 4.8.0.101 executes an OS command constructed with unsanitized user input: shell metacharacters…
|
CWE-78
OS Command
|
CVE-2023-46306
|
2024-09-13 04:35 |
2023-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2008
|
6.8 |
MEDIUM
Physics
|
dlink
|
dsl-2730u_firmware dsl-2750u_firmware
|
D-Link (Non-US) DSL-2750U N300 ADSL2+ and (Non-US) DSL-2730U N150 ADSL2+ are vulnerable to Incorrect Access Control. The UART/Serial interface on the PCB, provides log output and a root terminal with…
|
NVD-CWE-noinfo
|
CVE-2023-46033
|
2024-09-13 04:35 |
2023-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2009
|
9.8 |
CRITICAL
Network
get-simple
|
getsimplecms
|
An issue in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via a crafted payload to the phpinfo().
|
NVD-CWE-noinfo
|
CVE-2023-46042
|
2024-09-13 04:35 |
2023-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2010
|
7.8 |
HIGH
Local
|
enghouse
|
qumu
|
A privilege escalation vulnerability exists within the Qumu Multicast Extension v2 before 2.0.63 for Windows. When a standard user triggers a repair of the software, a pop-up window opens with SYSTEM…
|
NVD-CWE-noinfo
|
CVE-2023-45883
|
2024-09-13 04:35 |
2023-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|