1391
|
- |
|
-
|
-
|
A heap-based buffer over-read vulnerability was found in the X.org server's ProcAppleDRICreatePixmap() function. This issue occurs when byte-swapped length values are used in replies, potentially lea…
|
-
|
CVE-2024-31082
|
2024-11-13 22:15 |
2024-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1392
|
5.4 |
MEDIUM
Network
|
umbraco
|
umbraco_cms
|
A vulnerability was found in Umbraco CMS 12.3.6. It has been classified as problematic. Affected is an unknown function of the file /Umbraco/preview/frame?id{} of the component Dashboard. The manipul…
|
CWE-79 CWE-94
Cross-site Scripting Code Injection
|
CVE-2024-10761
|
2024-11-13 20:15 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1393
|
- |
|
-
|
-
|
An issue was discovered in BSC Smart Contract 0x0506e571aba3dd4c9d71bed479a4e6d40d95c833. Attackers are able to perform state manipulation attacks by borrowing a large amount of money and then using …
|
-
|
CVE-2024-44445
|
2024-11-13 17:35 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1394
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of ser…
|
CWE-22
Path Traversal
|
CVE-2024-9676
|
2024-11-13 17:15 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1395
|
4.4 |
MEDIUM
Local
|
-
|
-
|
A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to…
|
CWE-22
Path Traversal
|
CVE-2024-9675
|
2024-11-13 17:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1396
|
- |
|
-
|
-
|
CWE-400: An Uncontrolled Resource Consumption vulnerability exists that could cause the device to become
unresponsive resulting in communication loss when a large amount of IGMP packets is present in…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2024-9409
|
2024-11-13 14:15 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1397
|
- |
|
-
|
-
|
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could
cause a potential arbitrary code execution after a successful Man-In-The-Middle attack…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-8938
|
2024-11-13 14:15 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1398
|
- |
|
-
|
-
|
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could
cause a potential arbitrary code execution after a successful Man-In-The Middle attack…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-8937
|
2024-11-13 14:15 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1399
|
- |
|
-
|
-
|
CWE-20: Improper Input Validation vulnerability exists that could lead to loss of confidentiality of controller memory
after a successful Man-In-The-Middle attack followed by sending a crafted Modbus…
|
CWE-20
Improper Input Validation
|
CVE-2024-8936
|
2024-11-13 14:15 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1400
|
9.8 |
CRITICAL
Network
-
|
-
|
The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_tmp_uploaded_file() function in all versions up to…
|
CWE-22
Path Traversal
|
CVE-2024-11150
|
2024-11-13 14:15 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|