|
312551
|
7.5 |
HIGH
Network
|
microfocus
|
netiq_privileged_access_manager
|
A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resource…
|
NVD-CWE-noinfo
|
CVE-2020-11846
|
2024-08-24 02:03 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312552
|
6.1 |
MEDIUM
Network
|
microfocus
|
netiq_self_service_password_reset
|
Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting (XSS). This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6
|
CWE-79
Cross-site Scripting
|
CVE-2020-11850
|
2024-08-24 02:02 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312553
|
7.5 |
HIGH
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, which causes the web int…
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2024-6329
|
2024-08-24 02:01 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312554
|
5.4 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1 before 17.1.4 and 17.2 before 17.2.2 that allowed bypassing the password re-entry requirement to approve a …
|
CWE-287
Improper Authentication
|
CVE-2024-4784
|
2024-08-24 01:59 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312555
|
7.5 |
HIGH
Network
|
dell
|
insightiq
|
Dell InsightIQ, Verion 5.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to in…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-28972
|
2024-08-24 01:59 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312556
|
7.8 |
HIGH
Local
|
autodesk
|
revit
|
A maliciously crafted DWG file, when parsed in Revit, can force a stack-based buffer overflow. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the curren…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-37008
|
2024-08-24 01:57 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312557
|
7.8 |
HIGH
Local
|
dell
|
repository_manager
|
Dell Repository Manager version 3.4.2 and earlier, contain a Local Privilege Escalation Vulnerability in Installation module. A local low privileged attacker may potentially exploit this vulnerabilit…
|
NVD-CWE-noinfo
|
CVE-2023-22576
|
2024-08-24 01:56 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312558
|
6.5 |
MEDIUM
Network
|
gitlab
|
gitlab
|
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions starting with 12.6 before 17.0.6, 17.1 prior to 17.1.4, and 17.2 prior to 17.2.2. It is possible for an …
|
NVD-CWE-noinfo
|
CVE-2024-4210
|
2024-08-24 01:56 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312559
|
8.0 |
HIGH
Adjacent
|
magnetforensics
|
axiom
|
Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forens…
|
CWE-78
OS Command
|
CVE-2024-7448
|
2024-08-24 01:54 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312560
|
7.8 |
HIGH
Local
|
windscribe
|
windscribe
|
Windscribe Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Windscribe. An attacker must fir…
|
CWE-22
Path Traversal
|
CVE-2024-6141
|
2024-08-24 01:53 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
