|
313521
|
8.6 |
HIGH
Network
|
vonets
|
var1200-h_firmware
var1200-l_firmware
var600-h_firmware
vap11ac_firmware
vap11g-500s_firmware
vbg1200_firmware
vap11s-5g_firmware
vap11s_firmware
var11n-300_firmware
vap11g…
|
Improper access control vulnerability affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9
and prior, enables an unauthenticated remote attacker t…
|
CWE-284
Improper Access Control
|
CVE-2024-29082
|
2024-08-21 02:11 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313522
|
9.8 |
CRITICAL
Network
|
vonets
|
var1200-h_firmware
var1200-l_firmware
var600-h_firmware
vap11ac_firmware
vap11g-500s_firmware
vbg1200_firmware
vap11s-5g_firmware
vap11s_firmware
var11n-300_firmware
vap11g…
|
Use of hard-coded credentials vulnerability affecting Vonets industrial wifi bridge relays and WiFi bridge repeaters, software versions
3.3.23.6.9 and prior, enables an unauthenticated remote attack…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-41161
|
2024-08-21 02:09 |
2024-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313523
|
5.5 |
MEDIUM
Local
|
huawei
|
emui
harmonyos
|
Access permission verification vulnerability in the Contacts module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2024-42032
|
2024-08-21 01:58 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313524
|
7.5 |
HIGH
Network
|
huawei
|
emui
harmonyos
|
Access permission verification vulnerability in the Settings module.
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2024-42031
|
2024-08-21 01:57 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313525
|
6.2 |
MEDIUM
Local
|
huawei
|
harmonyos
emui
|
Access permission verification vulnerability in the content sharing pop-up module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2024-42030
|
2024-08-21 01:55 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313526
|
9.8 |
CRITICAL
Network
|
vonets
|
var1200-h_firmware
var1200-l_firmware
var600-h_firmware
vap11ac_firmware
vap11g-500s_firmware
vbg1200_firmware
vap11s-5g_firmware
vap11s_firmware
var11n-300_firmware
vap11g…
|
An improper authentication vulnerability affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software versions
3.3.23.6.9 and prior enables an unauthenticated remote a…
|
CWE-425
Direct Request ('Forced Browsing')
|
CVE-2024-42001
|
2024-08-21 01:37 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313527
|
- |
|
-
|
-
|
A Cross-Site Request Forgery (CSRF) in the component categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
|
-
|
CVE-2024-42586
|
2024-08-21 01:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313528
|
- |
|
-
|
-
|
A Cross-Site Request Forgery (CSRF) in the component delete_media.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
|
-
|
CVE-2024-42585
|
2024-08-21 01:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313529
|
- |
|
-
|
-
|
A Cross-Site Request Forgery (CSRF) in the component edit_categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
|
-
|
CVE-2024-42576
|
2024-08-21 01:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313530
|
- |
|
-
|
-
|
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at paidclass.php.
|
-
|
CVE-2024-42569
|
2024-08-21 01:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
