591
|
5.4 |
MEDIUM
Network
|
-
|
-
|
A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw a…
New
|
CWE-59
Link Following
|
CVE-2024-9341
|
2024-10-2 04:15 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
592
|
- |
|
-
|
-
|
Cross Site Scripting vulnerability in flatpress CMS Flatpress v1.3 allows a remote attacker to execute arbitrary code via a crafted payload to the file name parameter.
New
|
-
|
CVE-2024-31835
|
2024-10-2 04:15 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
593
|
- |
|
-
|
-
|
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with …
Update
|
CWE-1288
Improper Validation of Consistency within Input
|
CVE-2024-5953
|
2024-10-2 04:15 |
2024-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
594
|
- |
|
-
|
-
|
A flaw was found in 389-ds-base. A specially-crafted LDAP query can potentially cause a failure on the directory server, leading to a denial of service
Update
|
-
|
CVE-2024-3657
|
2024-10-2 04:15 |
2024-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
595
|
- |
|
-
|
-
|
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in log_entry_attr.
Update
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2024-1062
|
2024-10-2 04:15 |
2024-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
596
|
7.5 |
HIGH
Network
openslides
|
openslides
|
OpenSlides 4.0.15 was discovered to be using a weak hashing algorithm to store passwords.
Update
|
CWE-326
Inadequate Encryption Strength
|
CVE-2024-22892
|
2024-10-2 04:10 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
597
|
6.5 |
MEDIUM
Network
|
ihedvall
|
mdf_library
|
Library MDF (mdflib) v2.1 is vulnerable to a heap-based buffer overread via a crafted mdf4 file is parsed using the ReadData function
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-41445
|
2024-10-2 04:03 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
598
|
5.5 |
MEDIUM
Local
|
devolutions
|
remote_desktop_manager
|
An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows allows local attackers with access to system logs to obtain session credentials via passwords included…
Update
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2024-7421
|
2024-10-2 03:36 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
599
|
- |
|
-
|
-
|
Memory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort…
New
|
-
|
CVE-2024-9401
|
2024-10-2 03:35 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
600
|
- |
|
-
|
-
|
go-tuf is a Go implementation of The Update Framework (TUF). The go-tuf client inconsistently traces the delegations. For example, if targets delegate to "A", and to "B", and "B" delegates to "C", th…
New
|
CWE-362
Race Condition
|
CVE-2024-47534
|
2024-10-2 03:35 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|