|
312501
|
- |
|
-
|
-
|
An issue in Vypor Attack API System v.1.0 allows a remote attacker to execute arbitrary code via the user GET parameter.
|
-
|
CVE-2024-44808
|
2024-09-5 21:53 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312502
|
- |
|
-
|
-
|
The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not validate access on some REST routes, allowing for an unauthenticated user to purge error and chat logs
|
-
|
CVE-2024-6846
|
2024-09-5 15:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312503
|
- |
|
-
|
-
|
The ctl_request_sense function could expose up to three bytes of the kernel heap to userspace.
Malicious software running in a guest VM that exposes virtio_scsi can exploit the vulnerabilities to ac…
|
-
|
CVE-2024-43110
|
2024-09-5 14:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312504
|
- |
|
-
|
-
|
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by userspace, allowing an arbitrary write to a limited amount of kernel help memory.
Malicious software runni…
|
-
|
CVE-2024-42416
|
2024-09-5 14:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312505
|
6.1 |
MEDIUM
Network
|
zoneminder
|
zoneminder
|
ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the montagereview via the displayinterval, speed, and scale pa…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43359
|
2024-09-5 06:43 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312506
|
9.8 |
CRITICAL
Network
|
zoneminder
|
zoneminder
|
ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder is affected by a time-based SQL Injection vulnerability. This vulnerability is fixed in 1.36.34 and 1.37.6…
|
CWE-89
SQL Injection
|
CVE-2024-43360
|
2024-09-5 06:42 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312507
|
6.1 |
MEDIUM
Network
|
zoneminder
|
zoneminder
|
ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the filter view via the filter[Id]. This vulnerability is fixe…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43358
|
2024-09-5 06:41 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312508
|
6.5 |
MEDIUM
Network
|
zoom
|
rooms_controller
rooms
meeting_software_development_kit
workplace_virtual_desktop_infrastructure
workplace_desktop
workplace
|
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-42437
|
2024-09-5 06:39 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312509
|
6.5 |
MEDIUM
Network
|
zoom
|
rooms_controller
rooms
meeting_software_development_kit
workplace_virtual_desktop_infrastructure
workplace_desktop
workplace
|
Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-42436
|
2024-09-5 06:38 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312510
|
4.9 |
MEDIUM
Network
|
zoom
|
rooms_controller
rooms
meeting_software_development_kit
workplace_virtual_desktop_infrastructure
workplace_desktop
workplace
|
Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access.
|
NVD-CWE-noinfo
|
CVE-2024-42435
|
2024-09-5 06:36 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
