|
313371
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
|
-
|
CVE-2024-40616
|
2024-10-15 00:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313372
|
6.5 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. A low-privileged attacke…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45132
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313373
|
5.4 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged at…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45131
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313374
|
5.4 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged at…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45128
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313375
|
- |
|
-
|
-
|
** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Security IP Camera D8801 due to usage of insecure Real-Time Streaming Protocol (RTSP) version for live video streaming. A remote atta…
|
CWE-862
Missing Authorization
|
CVE-2024-47790
|
2024-10-14 20:15 |
2024-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313376
|
- |
|
-
|
-
|
** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Security IP Camera D8801 due to usage of weak authentication scheme of the HTTP header protocol where authorization tag contain a Base…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2024-47789
|
2024-10-14 20:15 |
2024-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313377
|
- |
|
-
|
-
|
Local File Inclusion vulnerability in pretix Widget WordPress plugin pretix-widget on Windows allows PHP Local File Inclusion. This issue affects pretix Widget WordPress plugin: from 1.0.0 through 1.…
|
-
|
CVE-2024-9575
|
2024-10-14 17:15 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313378
|
7.5 |
HIGH
Network
|
haproxy
|
haproxy
|
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding (h2_send loop) under a certain set of conditions, as expl…
|
NVD-CWE-noinfo
|
CVE-2024-45506
|
2024-10-14 12:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313379
|
4.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a…
|
NVD-CWE-noinfo
|
CVE-2024-45149
|
2024-10-12 07:12 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313380
|
2.7 |
LOW
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An admin attacker …
|
NVD-CWE-noinfo
|
CVE-2024-45135
|
2024-10-12 07:12 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
