|
2391
|
5.4 |
MEDIUM
Network
|
adobe
|
experience_manager
|
Adobe Experience Manager versions 6.5.21 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by an attacker to execute arbitrary code in the conte…
|
CWE-79
Cross-site Scripting
|
CVE-2024-52822
|
2024-12-18 23:35 |
2024-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2392
|
5.4 |
MEDIUM
Network
|
adobe
|
experience_manager
|
Adobe Experience Manager versions 6.5.21 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by an attacker to execute arbitrary code in the conte…
|
CWE-79
Cross-site Scripting
|
CVE-2024-52838
|
2024-12-18 23:34 |
2024-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2393
|
5.4 |
MEDIUM
Network
|
adobe
|
experience_manager
|
Adobe Experience Manager versions 6.5.21 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability that could be exploited by an attacker to execute arbitrary code in the conte…
|
CWE-79
Cross-site Scripting
|
CVE-2024-52837
|
2024-12-18 23:34 |
2024-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2394
|
- |
|
-
|
-
|
Incorrect Implementation of Authentication Algorithm in Apache Kafka's SCRAM implementation.
Issue Summary:
Apache Kafka's implementation of the Salted Challenge Response Authentication Mechanism (S…
|
CWE-303
Incorrect Implementation of Authentication Algorithm
|
CVE-2024-56128
|
2024-12-18 23:15 |
2024-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2395
|
6.5 |
MEDIUM
Network
|
apple
|
watchos
ipados
tvos
safari
visionos
iphone_os
macos
|
The issue was addressed with improved checks. This issue is fixed in watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, Safari 18.2, iOS 18.2 and iPadOS 18.2. Processing maliciously crafted w…
|
NVD-CWE-noinfo
|
CVE-2024-54502
|
2024-12-18 23:13 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2396
|
8.6 |
HIGH
Local
|
apple
|
watchos
ipados
tvos
iphone_os
macos
|
The issue was addressed with improved checks. This issue is fixed in watchOS 11.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An app may be ab…
|
NVD-CWE-noinfo
|
CVE-2024-54514
|
2024-12-18 23:05 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2397
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
A logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15.2. A malicious app may be able to access arbitrary files.
|
NVD-CWE-noinfo
|
CVE-2024-54524
|
2024-12-18 22:59 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2398
|
5.5 |
MEDIUM
Local
|
fabulatech
|
usb_over_network
|
A vulnerability classified as problematic has been found in FabulaTech USB over Network 6.0.6.1. Affected is the function 0x22040C in the library ftusbbus2.sys of the component IOCT Handler. The mani…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-12653
|
2024-12-18 22:53 |
2024-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2399
|
5.5 |
MEDIUM
Local
|
fabulatech
|
usb_over_network
|
A vulnerability classified as problematic was found in FabulaTech USB over Network 6.0.6.1. Affected by this vulnerability is the function 0x220408 in the library ftusbbus2.sys of the component IOCT …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-12654
|
2024-12-18 22:42 |
2024-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2400
|
9.8 |
CRITICAL
Network
telerik
|
ui_for_wpf
|
In Progress Telerik UI for WPF versions prior to 2024 Q4 (2024.4.1213), a code execution attack is possible through an insecure deserialization vulnerability.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-10095
|
2024-12-18 21:59 |
2024-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
