1821
|
5.4 |
MEDIUM
Network
|
opensearch
|
observability
|
OpenSearch Dashboards Reports allows ‘Report Owner’ export and share reports from OpenSearch Dashboards. An issue in the OpenSearch reporting plugin allows unintended access to private tenant resourc…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-39900
|
2024-09-20 21:40 |
2024-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1822
|
5.4 |
MEDIUM
Network
|
opensearch
|
observability
|
OpenSearch Observability is collection of plugins and applications that visualize data-driven events. An issue in the OpenSearch observability plugins allows unintended access to private tenant resou…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-39901
|
2024-09-20 21:33 |
2024-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1823
|
- |
|
-
|
-
|
A vulnerability in the FAISS.deserialize_from_bytes function of langchain-ai/langchain allows for pickle deserialization of untrusted data. This can lead to the execution of arbitrary commands via th…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-5998
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1824
|
- |
|
-
|
-
|
Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup plugin for cPanel & WHM (Linux) before build 619, Acronis Back…
|
CWE-250
Execution with Unnecessary Privileges
|
CVE-2024-8767
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1825
|
- |
|
-
|
-
|
Denial of Service (DoS) vulnerability has been found in Dual-redundant Platform for Computer.
If a computer on which the affected product is installed receives a large number of UDP broadcast packets…
|
-
|
CVE-2024-8110
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1826
|
- |
|
-
|
-
|
A flaw was found in openshift/builder. This vulnerability allows command injection via path traversal, where a malicious user can execute arbitrary commands on the OpenShift node running the builder …
|
CWE-250
Execution with Unnecessary Privileges
|
CVE-2024-7387
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1827
|
- |
|
-
|
-
|
A flaw was found in OpenShift. This issue occurs due to the misuse of elevated privileges in the OpenShift Container Platform's build process. During the build initialization step, the git-clone cont…
|
CWE-269
Improper Privilege Management
|
CVE-2024-45496
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1828
|
- |
|
-
|
-
|
An authentication issue was addressed with improved state management. This issue is fixed in iOS 18 and iPadOS 18. Private Browsing tabs may be accessed without authentication.
|
-
|
CVE-2024-44202
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1829
|
- |
|
-
|
-
|
A privacy issue was addressed by moving sensitive data to a more secure location. This issue is fixed in iOS 18 and iPadOS 18, watchOS 11, macOS Sequoia 15. An app may be able to access user-sensitiv…
|
-
|
CVE-2024-44170
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1830
|
- |
|
-
|
-
|
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, macOS Sonom…
|
-
|
CVE-2024-44169
|
2024-09-20 21:31 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|