161
|
- |
|
-
|
-
|
Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability in the fromAdvSetMacMtuWan function.
Update
|
-
|
CVE-2024-46652
|
2024-09-24 00:35 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
162
|
7.5 |
HIGH
Network
redhat
|
keycloak single_sign-on
|
A denial of service vulnerability was found in keycloak where the amount of attributes per object is not limited,an attacker by sending repeated HTTP requests could cause a resource exhaustion when t…
Update
|
NVD-CWE-noinfo
|
CVE-2023-6841
|
2024-09-24 00:19 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
163
|
- |
|
-
|
-
|
Sony XAV-AX5500 USB Configuration Descriptor Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installa…
New
|
-
|
CVE-2024-23972
|
2024-09-24 00:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
164
|
- |
|
-
|
-
|
Sony XAV-AX5500 Insufficient Firmware Update Validation Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations…
New
|
-
|
CVE-2024-23922
|
2024-09-24 00:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
165
|
- |
|
-
|
-
|
The authentication system of Securepoint UTM mishandles OTP keys. This allows the bypassing of second-factor verification (when OTP is enabled) in both the administration web interface and the user p…
Update
|
-
|
CVE-2024-39340
|
2024-09-24 00:15 |
2024-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
166
|
8.8 |
HIGH
Network
|
lunary
|
lunary
|
An Insecure Direct Object Reference (IDOR) vulnerability was identified in lunary-ai/lunary, affecting versions up to and including 1.2.2. This vulnerability allows unauthorized users to view, update…
Update
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-5128
|
2024-09-24 00:11 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
167
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2008 windows_server_2012 windows_10_1809 windows_server_2019 windows_server_2022 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_11_2…
|
Windows Security Zone Mapping Security Feature Bypass Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-30073
|
2024-09-24 00:08 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
168
|
5.5 |
MEDIUM
Local
|
intel
|
raid_web_console
|
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access.
Update
|
NVD-CWE-noinfo
|
CVE-2024-28170
|
2024-09-23 23:49 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
169
|
5.5 |
MEDIUM
Local
|
intel
|
raid_web_console
|
NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access.
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-32666
|
2024-09-23 23:47 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
170
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ethtool: check device is present when getting link settings
A sysfs reader can race with a device reset or removal, attempting to…
Update
|
NVD-CWE-noinfo
|
CVE-2024-46679
|
2024-09-23 23:47 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|