61
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2008 windows_server_2012 windows_10_1507 windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_11_21h2 windows_10_21h2 win…
|
Winlogon Elevation of Privilege Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-43583
|
2024-10-17 06:36 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
62
|
8.1 |
HIGH
Network
|
microsoft
|
windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_11_21h2 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_22h2 windows_server_…
|
Remote Desktop Protocol Server Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-43582
|
2024-10-17 06:35 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
63
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction i…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-20817
|
2024-10-17 06:35 |
2023-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
64
|
8.8 |
HIGH
Network
|
microsoft
|
power_bi_report_server
|
Power BI Report Server Spoofing Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-43481
|
2024-10-17 06:34 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
65
|
6.1 |
MEDIUM
Network
|
sap
|
netweaver_business_client_for_html
|
SAP NWBC for HTML - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758, SAP_BASIS 700, SAP_BASIS 701, SAP_BASIS 702, SAP_BASIS 731, does not sufficiently encode user-controlled input…
Update
|
-
|
CVE-2024-22128
|
2024-10-17 06:30 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
66
|
5.4 |
MEDIUM
Network
|
sap
|
crm_-_webclient_ui
|
Print preview option in SAP CRM WebClient UI - versions S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, S4FND 108, WEBCUIF 700, WEBCUIF 701, WEBCUIF 730, WEBCUIF 731, WEBCUIF 746, W…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-22130
|
2024-10-17 06:29 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
67
|
7.2 |
HIGH
Network
|
sap
|
abap_platform
|
In SAP ABA (Application Basis) - versions 700, 701, 702, 731, 740, 750, 751, 752, 75C, 75I, an attacker authenticated as a user with a remote execution authorization can use a vulnerable interface. T…
Update
|
CWE-94
Code Injection
|
CVE-2024-22131
|
2024-10-17 06:28 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
68
|
6.3 |
MEDIUM
Network
|
sap
|
ides_ecc
|
SAP IDES ECC-systems contain code that permits the execution of arbitrary program code of user's choice.An attacker can therefore control the behaviour of the system by executing malicious code which…
Update
|
CWE-78
OS Command
|
CVE-2024-22132
|
2024-10-17 06:21 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
69
|
6.3 |
MEDIUM
Network
|
sap
|
bank_account_management
|
SAP Bank Account Management (BAM) allows an authenticated user with restricted access to use functions which can result in escalation of privileges with low impact on confidentiality, integrity and a…
Update
|
CWE-862
Missing Authorization
|
CVE-2024-24739
|
2024-10-17 06:20 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
70
|
4.1 |
MEDIUM
Network
|
sap
|
crm_-_webclient_ui
|
SAP CRM WebClient UI - version S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, WEBCUIF 701, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently …
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-24742
|
2024-10-17 06:18 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|