|
314411
|
5.9 |
MEDIUM
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 8.5 and 9.0 could allow an attacker with access to the network to conduct spoofing attacks. An attacker could exploit this vulnerability using a certificate issued b…
|
NVD-CWE-Other
|
CVE-2023-50315
|
2024-09-11 22:38 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314412
|
4.7 |
MEDIUM
Network
|
qnap
|
qts
quts_hero
|
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands …
|
CWE-78
CWE-77
OS Command
Command Injection
|
CVE-2024-21903
|
2024-09-11 22:36 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314413
|
8.8 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a net…
|
CWE-78
OS Command
|
CVE-2024-21898
|
2024-09-11 22:35 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314414
|
5.4 |
MEDIUM
Network
|
qnap
|
qts
quts_hero
|
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to inject malicious code…
|
CWE-79
Cross-site Scripting
|
CVE-2024-21897
|
2024-09-11 22:34 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314415
|
6.5 |
MEDIUM
Network
|
qnap
|
qts
quts_hero
|
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to launch a denial-of-service (DoS) atta…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-51368
|
2024-09-11 22:33 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314416
|
6.5 |
MEDIUM
Network
|
qnap
|
qts
quts_hero
|
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to read the contents of unexpected files and expos…
|
CWE-22
Path Traversal
|
CVE-2023-51366
|
2024-09-11 22:32 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314417
|
4.8 |
MEDIUM
Network
|
qnap
|
qts
quts_hero
|
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to inject malic…
|
CWE-79
Cross-site Scripting
|
CVE-2023-50366
|
2024-09-11 22:31 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314418
|
8.8 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute code via a …
|
CWE-120
CWE-121
Classic Buffer Overflow
Stack-based Buffer Overflow
|
CVE-2023-51367
|
2024-09-11 22:27 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314419
|
6.5 |
MEDIUM
Network
|
zoom
|
workplace
workplace_desktop
workplace_virtual_desktop_infrastructure
rooms
|
Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2024-39818
|
2024-09-11 22:27 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314420
|
6.5 |
MEDIUM
Network
|
terminalfour
|
terminalfour
|
A Server-Side Request Forgery (SSRF) vulnerability in Terminalfour before 8.3.19 allows authenticated users to use specific features to access internal services including sensitive information on the…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-22217
|
2024-09-11 22:19 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
