|
314231
|
9.8 |
CRITICAL
Network
|
openhab
|
openhab
|
openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. Prior to version 4.2.1, CometVisu's file system endpoints don't require authenti…
|
CWE-22
Path Traversal
|
CVE-2024-42469
|
2024-09-13 01:02 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314232
|
7.5 |
HIGH
Network
|
openhab
|
openhab
|
openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. CometVisuServlet in versions prior to 4.2.1 is susceptible to an unauthenticated…
|
CWE-22
Path Traversal
|
CVE-2024-42468
|
2024-09-13 01:01 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314233
|
6.1 |
MEDIUM
Network
|
hyperview
|
geoportal_toolkit
|
HyperView Geoportal Toolkit in versions lower than 8.5.0 is vulnerable to Reflected Cross-Site Scripting (XSS). An unauthenticated attacker might trick somebody into using a crafted URL, which will c…
|
CWE-79
Cross-site Scripting
|
CVE-2024-6450
|
2024-09-13 00:42 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314234
|
- |
|
data_general
sgi
sun
hp
debian
ibm
bsdi
|
dg_ux
irix
sunos
hp-ux
debian_linux
solaris
aix
bsd_os
|
Buffer overflow in xlock program allows local users to execute commands as root.
|
NVD-CWE-Other
|
CVE-1999-0038
|
2024-09-13 00:35 |
1997-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314235
|
6.5 |
MEDIUM
Network
|
hyperview
|
geoportal_toolkit
|
HyperView Geoportal Toolkit in versions lower than 8.5.0 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters.
An unauthenticated remote attac…
|
NVD-CWE-Other
|
CVE-2024-6449
|
2024-09-13 00:32 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314236
|
- |
|
-
|
-
|
ESP-NOW Component provides a connectionless Wi-Fi communication protocol. An Out-of-Bound (OOB) vulnerability was discovered in the implementation of the ESP-NOW group type message because there is n…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-42484
|
2024-09-13 00:18 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314237
|
7.5 |
HIGH
Network
|
microfocus
|
netiq_access_manager
|
Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account impersonation in specific scenario. This issue affects NetIQ Access Manager before 5.0.4.1 and before …
|
CWE-269
Improper Privilege Management
|
CVE-2024-4555
|
2024-09-13 00:13 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314238
|
7.5 |
HIGH
Network
|
microfocus
|
netiq_access_manager
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in OpenText NetIQ Access Manager allows access the sensitive information. This issue affects NetIQ Access …
|
CWE-22
Path Traversal
|
CVE-2024-4556
|
2024-09-13 00:09 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314239
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix potential NULL dereference
Fix potential NULL dereference, in the case when "man", the resource manager
might be …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-52908
|
2024-09-12 23:54 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314240
|
7.8 |
HIGH
Local
|
beckhoff
|
ipc_diagnostics_package
twincat\/bsd
|
The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local authentication bypass by a low privileged attacker.
|
NVD-CWE-Other
|
CVE-2024-41173
|
2024-09-12 23:52 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
