781
|
7.3 |
HIGH
Local
|
beckhoff
|
twincat\/bsd mdp_package
|
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local
attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in
the context of user “roo…
|
NVD-CWE-Other
|
CVE-2024-41176
|
2024-10-1 16:15 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
782
|
6.5 |
MEDIUM
Network
|
phoenixcontact
|
axc_f_1152_firmware axc_f_2152_firmware axc_f_3152_firmware bpc_9102s_firmware epc_1502_firmware epc_1522_firmware plcnext_engineer rfc_4072r_firmware rfc_4072s_firmware
|
A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connecte…
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2023-46144
|
2024-10-1 16:15 |
2023-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
783
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
|
NVD-CWE-noinfo
|
CVE-2024-43390
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
784
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
|
NVD-CWE-noinfo
|
CVE-2024-43389
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
785
|
0.0 |
NONE
Physics
|
-
|
-
|
This CVE has been rejected.
|
-
|
CVE-2024-8421
|
2024-10-1 15:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
786
|
- |
|
-
|
-
|
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying `userPassword` using malf…
|
-
|
CVE-2024-8445
|
2024-10-1 15:15 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
787
|
- |
|
-
|
-
|
All versions of the package git-shallow-clone are vulnerable to Command injection due to missing sanitization or mitigation flags in the process variable of the gitShallowClone function.
|
-
|
CVE-2024-21531
|
2024-10-1 14:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
788
|
- |
|
-
|
-
|
Versions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the attribute resolves to the object prototype.
|
-
|
CVE-2024-21489
|
2024-10-1 14:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
789
|
- |
|
-
|
-
|
NVIDIA Triton Inference Server contains a vulnerability where a user may cause an out-of-bounds read issue by releasing a shared memory region while it is in use. A successful exploit of this vulnera…
|
-
|
CVE-2024-0116
|
2024-10-1 14:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
790
|
- |
|
-
|
-
|
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server …
|
-
|
CVE-2024-7409
|
2024-10-1 14:15 |
2024-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|