1521
|
6.5 |
MEDIUM
Network
|
microsoft
|
outlook
|
Microsoft Outlook for iOS Information Disclosure Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43482
|
2024-09-18 23:11 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1522
|
6.5 |
MEDIUM
Network
|
microsoft
|
windows_server_2012 windows_10_1507 windows_10_1809 windows_server_2019 windows_10_21h2 windows_10_1607 windows_server_2016 windows_10_22h2
|
Windows Mark of the Web Security Feature Bypass Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43487
|
2024-09-18 23:10 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1523
|
7.8 |
HIGH
Local
|
microsoft
|
autoupdate
|
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43492
|
2024-09-18 22:57 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1524
|
7.3 |
HIGH
Local
|
microsoft
|
windows_11_22h2 windows_server_2022_23h2 windows_11_23h2
|
Windows libarchive Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43495
|
2024-09-18 22:55 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1525
|
4.3 |
MEDIUM
Network
|
discourse
|
discourse
|
Discourse is an open-source discussion platform. Prior to version 3.2.3 on the `stable` branch and version 3.3.0.beta4 on the `beta` and `tests-passed` branches, moderators using the review queue to …
|
NVD-CWE-noinfo
|
CVE-2024-36122
|
2024-09-18 22:55 |
2024-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1526
|
7.8 |
HIGH
Local
|
google
|
android
|
there is a possible escalation of privilege due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not need…
|
NVD-CWE-noinfo
|
CVE-2024-29779
|
2024-09-18 22:52 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1527
|
7.8 |
HIGH
Local
|
google
|
android
|
In TBD of TBD, there is a possible LCS signing enforcement missing due to test/debugging code left in a production build. This could lead to local escalation of privilege with no additional executio…
|
NVD-CWE-noinfo
|
CVE-2024-44092
|
2024-09-18 22:51 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1528
|
5.3 |
MEDIUM
Network
discourse
|
discourse
|
Discourse is an open-source discussion platform. Prior to version 3.2.3 on the `stable` branch and version 3.3.0.beta4 on the `beta` and `tests-passed` branches, a malicious actor could get the FastI…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-37157
|
2024-09-18 22:50 |
2024-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1529
|
7.8 |
HIGH
Local
|
google
|
android
|
In ppmp_unprotect_buf of drm/code/drm_fw.c, there is a possible memory corruption due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privi…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-44093
|
2024-09-18 22:42 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1530
|
6.5 |
MEDIUM
Adjacent
|
acronis
|
cloud_manager
|
Sensitive information disclosure due to unauthenticated path traversal. The following products are affected: Acronis Cloud Manager (Windows) before build 6.2.23089.203.
|
CWE-22
Path Traversal
|
CVE-2023-41747
|
2024-09-18 22:40 |
2023-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|