1721
|
7.8 |
HIGH
Local
|
a10networks
|
advanced_core_operating_system
|
A10 Thunder ADC Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of A10 Thunder ADC…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2024-30369
|
2024-09-24 22:55 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1722
|
8.8 |
HIGH
Network
|
a10networks
|
advanced_core_operating_system
|
A10 Thunder ADC CsrRequestView Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of A10 Thunder ADC…
|
CWE-77
Command Injection
|
CVE-2024-30368
|
2024-09-24 22:54 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1723
|
8.8 |
HIGH
Network
|
agpt
|
autogpt
|
A Cross-Site Request Forgery (CSRF) vulnerability in significant-gravitas/autogpt version v0.5.0 allows attackers to execute arbitrary commands on the AutoGPT server. The vulnerability stems from the…
|
CWE-352
Origin Validation Error
|
CVE-2024-1879
|
2024-09-24 22:54 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1724
|
8.1 |
HIGH
Network
|
micropython
|
micropython
|
A vulnerability was found in MicroPython 1.22.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file py/objarray.c. The manipulation leads to use …
|
CWE-416
Use After Free
|
CVE-2024-8947
|
2024-09-24 22:17 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1725
|
7.5 |
HIGH
Network
micropython
|
micropython
|
A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mp_vfs_umount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipula…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-8946
|
2024-09-24 22:11 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1726
|
7.8 |
HIGH
Local
|
microsoft
|
visio office 365_apps office_long_term_servicing_channel
|
Microsoft Office Visio Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-38016
|
2024-09-24 20:11 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1727
|
4.3 |
MEDIUM
Physics
|
redhat opensc_project
|
enterprise_linux opensc
|
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially craft…
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-45619
|
2024-09-24 08:26 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1728
|
7.2 |
HIGH
Network
|
acquia
|
mautic
|
Prior to the patched version, logged in users of Mautic are vulnerable to an SQL injection vulnerability in the Reports bundle.
The user could retrieve and alter data like sensitive data, login, and…
|
CWE-89
SQL Injection
|
CVE-2022-25775
|
2024-09-24 08:22 |
2024-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1729
|
5.4 |
MEDIUM
Network
|
acquia
|
mautic
|
Prior to the patched version, logged in users of Mautic are vulnerable to a self XSS vulnerability in the notifications within Mautic.
Users could inject malicious code into the notification when sa…
|
CWE-79
Cross-site Scripting
|
CVE-2022-25774
|
2024-09-24 08:21 |
2024-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1730
|
4.8 |
MEDIUM
Network
|
concretecms
|
concrete_cms
|
Concrete CMS versions 9.0.0 through 9.3.3 are affected by a
stored XSS vulnerability in the "Top Navigator Bar" block.
Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue adm…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8660
|
2024-09-24 08:00 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|