181
|
- |
|
-
|
-
|
eNMS 4.0.0 is vulnerable to Directory Traversal via get_tree_files.
Update
|
-
|
CVE-2024-46645
|
2024-09-23 23:35 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
182
|
- |
|
-
|
-
|
eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via edit_file.
Update
|
-
|
CVE-2024-46644
|
2024-09-23 23:35 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
183
|
7.8 |
HIGH
Local
|
intel
|
raid_web_console
|
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
Update
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-34153
|
2024-09-23 23:35 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
184
|
8.8 |
HIGH
Network
|
purestorage
|
purity\/\/fa
|
A flaw exists in VASA which allows users with access to a vSphere/ESXi VMware admin on a FlashArray to gain root access through privilege escalation.
Update
|
NVD-CWE-noinfo
|
CVE-2023-36628
|
2024-09-23 23:35 |
2023-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
185
|
4.9 |
MEDIUM
Network
|
purestorage
|
purity\/\/fa
|
A flaw exists in FlashArray Purity wherein under limited circumstances, an array administrator can alter the retention lock of a pgroup and disable pgroup SafeMode protection.
Update
|
NVD-CWE-noinfo
|
CVE-2023-32572
|
2024-09-23 23:35 |
2023-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
186
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
nirvana
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Nirvana allows Stored XSS.This issue affects Nirvana: from n/a through 1.6…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-44057
|
2024-09-23 23:33 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
187
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
parabola
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Parabola allows Stored XSS.This issue affects Parabola: from n/a through 2…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-44058
|
2024-09-23 23:28 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
188
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
fluida
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Fluida allows Stored XSS.This issue affects Fluida: from n/a through 1.8.8.
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-44054
|
2024-09-23 23:23 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
189
|
6.5 |
MEDIUM
Adjacent
|
juniper
|
junos_os_evolved
|
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent …
Update
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2024-39519
|
2024-09-23 23:21 |
2024-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
190
|
7.8 |
HIGH
Local
|
intel
|
raid_web_console
|
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
Update
|
NVD-CWE-noinfo
|
CVE-2024-34543
|
2024-09-23 23:17 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|