381
|
- |
|
-
|
-
|
Passing invalid data could have led to invalid wasm values being created, such as arbitrary integers turning into pointer values. This vulnerability affects Firefox < 124.
Update
|
-
|
CVE-2024-2606
|
2024-10-31 00:35 |
2024-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
382
|
6.5 |
MEDIUM
Adjacent
|
janusintl
|
noke_standard_smart_padlock_firmware noke_hd_smart_padlock_firmware noke_hd\+_smart_padlock_firmware
|
Nokelock Smart padlock O1 Version 5.3.0 is vulnerable to Insecure Permissions. By sending a request, you can add any device and set the device password in the Nokelock app.
Update
|
CWE-862
Missing Authorization
|
CVE-2022-36228
|
2024-10-31 00:35 |
2023-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
383
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An issue was discovered in set_con2fb_map in drivers/video/fbdev/core/fbcon.c in the Linux kernel before 6.2.12. Because an assignment occurs only for the first vc, the fbcon_registered_fb and fbcon_…
Update
|
NVD-CWE-noinfo
|
CVE-2023-38409
|
2024-10-31 00:35 |
2023-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
384
|
8.8 |
HIGH
Network
|
hitachienergy
|
microscada_x_sys600 microscada_pro_sys600
|
The MicroSCADA Pro/X SYS600 product allows an authenticated user input to control or influence paths or file names
that are used in filesystem operations. If exploited the vulnerability allows the at…
Update
|
CWE-22
Path Traversal
|
CVE-2024-3980
|
2024-10-31 00:33 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
385
|
8.2 |
HIGH
Local
|
hitachienergy
|
microscada_x_sys600
|
An attacker with local access to machine where MicroSCADA X
SYS600 is installed, could enable the session logging supporting the product and try to exploit a session hijacking of an already establish…
Update
|
CWE-294
Authentication Bypass by Capture-replay
|
CVE-2024-3982
|
2024-10-31 00:32 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
386
|
8.8 |
HIGH
Network
|
hitachienergy
|
microscada_x_sys600 microscada_pro_sys600
|
A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to suc…
Update
|
NVD-CWE-Other
|
CVE-2024-4872
|
2024-10-31 00:31 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
387
|
4.3 |
MEDIUM
Network
|
hitachienergy
|
microscada_x_sys600
|
An HTTP parameter may contain a URL value and could cause
the web application to redirect the request to the specified URL.
By modifying the URL value to a malicious site, an attacker may
successfull…
Update
|
CWE-601
Open Redirect
|
CVE-2024-7941
|
2024-10-31 00:29 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
388
|
- |
|
-
|
-
|
Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Greenshift – …
New
|
-
|
CVE-2024-50419
|
2024-10-31 00:15 |
2024-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
389
|
- |
|
-
|
-
|
A denial of service may be caused to a single peripheral device in a BLE network when multiple central
devices continuously connect and disconnect to the peripheral. A hard reset is required to reco…
Update
|
-
|
CVE-2024-6657
|
2024-10-31 00:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
390
|
4.6 |
MEDIUM
Network
|
dell
|
e-lab_navigator
|
Dell Mobility - E-Lab Navigator, version(s) 3.1.9, 3.2.0, contain(s) an Authorization Bypass Through User-Controlled Key vulnerability. An unauthenticated attacker with local access could potentially…
Update
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-22455
|
2024-10-31 00:15 |
2024-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|