|
281
|
- |
|
-
|
-
|
A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.
New
|
-
|
CVE-2024-48112
|
2024-10-31 23:35 |
2024-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282
|
- |
|
-
|
-
|
Use after free in WebRTC in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
New
|
-
|
CVE-2024-10488
|
2024-10-31 23:35 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283
|
- |
|
-
|
-
|
Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)
New
|
-
|
CVE-2024-10487
|
2024-10-31 23:35 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284
|
5.5 |
MEDIUM
Local
|
cisco
|
ata_191_firmware
ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform Analog Telephone Adapter firmware could allow an authenticated, local attacker with low privileges to view …
Update
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2024-20462
|
2024-10-31 23:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285
|
8.8 |
HIGH
Network
|
cisco
|
ata_191_firmware
ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an authenticated, remote attacker with low privileges to run commands as an…
Update
|
NVD-CWE-Other
|
CVE-2024-20420
|
2024-10-31 23:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286
|
6.1 |
MEDIUM
Network
|
cisco
|
ata_191_firmware
ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to conduct a reflected cross-site scrip…
Update
|
NVD-CWE-Other
|
CVE-2024-20460
|
2024-10-31 23:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287
|
6.5 |
MEDIUM
Network
|
cisco
|
ata_191_firmware
ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to conduct a cross-site request forgery…
Update
|
CWE-352
Origin Validation Error
|
CVE-2024-20421
|
2024-10-31 23:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288
|
- |
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to obtain sensitive information from an affected device.
…
Update
|
-
|
CVE-2024-20466
|
2024-10-31 23:35 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289
|
- |
|
-
|
-
|
Lack of stack protection exploit mechanisms in ASP Secure OS Trusted Execution Environment (TEE) may allow a privileged attacker with access to AMD signing
keys to c006Frrupt the return address, caus…
New
|
-
|
CVE-2021-46746
|
2024-10-31 23:35 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290
|
- |
|
-
|
-
|
In affected versions of Octopus Server under certain conditions, a user with specific role assignments can access restricted project artifacts.
Update
|
-
|
CVE-2024-4811
|
2024-10-31 23:35 |
2024-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
