671
|
7.8 |
HIGH
Local
|
siemens
|
jt2go
|
A vulnerability has been identified in JT2Go (All versions < V2406.0003). The affected application contains a stack-based buffer overflow vulnerability that could be triggered while parsing specially…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-41902
|
2024-10-23 23:16 |
2024-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
672
|
9.8 |
CRITICAL
Network
code-projects
|
pharmacy_management_system
|
A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /add_new_invoice.php. The manipulation of …
Update
|
CWE-89
SQL Injection
|
CVE-2024-10196
|
2024-10-23 23:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
673
|
4.8 |
MEDIUM
Network
|
code-projects
|
pharmacy_management_system
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /manage_supplier.php of the component Man…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-10197
|
2024-10-23 23:14 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
674
|
7.8 |
HIGH
Local
|
intel
|
system_usage_report
|
Incorrect default permissions in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may allow privillaged user to potentially enable escalation of privilege via local access.
Update
|
NVD-CWE-noinfo
|
CVE-2023-40154
|
2024-10-23 23:07 |
2024-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
675
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix use-after-free in bpf_uprobe_multi_link_attach()
If bpf_link_prime() fails, bpf_uprobe_multi_link_attach() goes to the
e…
New
|
CWE-416
Use After Free
|
CVE-2024-47675
|
2024-10-23 22:39 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
676
|
8.8 |
HIGH
Network
|
linuxfoundation
|
onnx
|
A vulnerability in the `download_model_with_test_data` function of the onnx/onnx framework, version 1.16.0, allows for arbitrary file overwrite due to inadequate prevention of path traversal attacks …
Update
|
CWE-22
Path Traversal
|
CVE-2024-5187
|
2024-10-23 22:36 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
677
|
3.1 |
LOW
Network
|
ibm
|
cics_transaction_gateway
|
IBM CICS Transaction Gateway for Multiplatforms 9.2 and 9.3 could disclose sensitive path information to an attacker that could reveal through debugging or error messages.
Update
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2023-50311
|
2024-10-23 20:15 |
2024-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
678
|
8.8 |
HIGH
Network
|
-
|
-
|
An unautheticated remote attacker could send specifically crafted packets to a affected device. If an authenticated user then views that data in a specific page of the web-based management a buffer o…
Update
|
CWE-120
Classic Buffer Overflow
|
CVE-2015-10123
|
2024-10-23 19:15 |
2024-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
679
|
- |
|
-
|
-
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
New
|
-
|
CVE-2022-48993
|
2024-10-23 18:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
680
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The Qi Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.0 via private templates. This makes it possible for authenti…
New
|
CWE-200
Information Exposure
|
CVE-2024-9530
|
2024-10-23 17:15 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|