|
291
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
thermal: intel: int340x: processor: Fix warning during module unload
The processor_thermal driver uses pcim_device_enable() to en…
New
|
-
|
CVE-2024-50093
|
2024-11-6 02:15 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/oa: Fix overflow in oa batch buffer
By default xe_bb_create_job() appends a MI_BATCH_BUFFER_END to batch
buffer, this is n…
New
|
-
|
CVE-2024-50090
|
2024-11-6 02:15 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293
|
- |
|
-
|
-
|
System logs could be accessed through web management application due to a lack of access control.
An attacker can obtain the following sensitive information:
• Wi-Fi access point credentials t…
New
|
-
|
CVE-2023-29114
|
2024-11-6 02:15 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294
|
7.8 |
HIGH
Local
|
okta
|
verify
|
The Okta Device Access features, provided by the Okta Verify agent for Windows, provides access to the OktaDeviceAccessPipe, which enables attackers in a compromised device to retrieve passwords asso…
Update
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-9191
|
2024-11-6 02:06 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295
|
8.8 |
HIGH
Network
|
esafenet
|
cdg
|
A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function docHistory of the file /com/esafenet/servlet/fileManagement/FileDirectoryService.java. The ma…
Update
|
CWE-89
SQL Injection
|
CVE-2024-10594
|
2024-11-6 02:05 |
2024-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296
|
5.4 |
MEDIUM
Network
|
webcraftplugins
|
image_map_pro
|
The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function with an arbitrary shortcode in versions up to, and including, 6.0.20 due to insuffi…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-9585
|
2024-11-6 02:05 |
2024-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297
|
9.8 |
CRITICAL
Network
esafenet
|
cdg
|
A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function deleteHook of the file /com/esafenet/servlet/policy/HookService.java. The manipulation of the…
Update
|
CWE-89
SQL Injection
|
CVE-2024-10660
|
2024-11-6 02:04 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
298
|
9.8 |
CRITICAL
Network
esafenet
|
cdg
|
A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is the function delSystemEncryptPolicy of the file /com/esafenet/servlet/document/CDGAuthor…
Update
|
CWE-89
SQL Injection
|
CVE-2024-10659
|
2024-11-6 02:04 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
299
|
5.4 |
MEDIUM
Network
|
webcraftplugins
|
image_map_pro
|
The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the AJAX functions in versions up to, and including, 6.…
Update
|
CWE-862
Missing Authorization
|
CVE-2024-9584
|
2024-11-6 02:04 |
2024-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300
|
3.5 |
LOW
Network
|
mattermost
|
mattermost
|
Mattermost versions 9.11.X <= 9.11.1, 9.5.x <= 9.5.9 icorrectly issues two sessions when using desktop SSO - one in the browser and one in desktop with incorrect settings.
Update
|
NVD-CWE-Other
|
CVE-2024-10214
|
2024-11-6 02:03 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
