|
313101
|
9.9 |
CRITICAL
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout when brute force attack is performed on API based login. This issue may lead to user account compromise…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2021-22530
|
2024-09-14 02:15 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313102
|
7.8 |
HIGH
Local
|
adobe
|
photoshop
|
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitatio…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-45108
|
2024-09-14 02:00 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313103
|
7.8 |
HIGH
Local
|
adobe
|
photoshop
|
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitatio…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-43760
|
2024-09-14 02:00 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313104
|
7.8 |
HIGH
Local
|
adobe
|
photoshop
|
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Explo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-43756
|
2024-09-14 02:00 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313105
|
7.8 |
HIGH
Local
|
adobe
|
photoshop
|
Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitatio…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-45109
|
2024-09-14 01:59 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313106
|
9.8 |
CRITICAL
Network
|
adobe
|
coldfusion
|
ColdFusion versions 2023.9, 2021.15 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. An …
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-41874
|
2024-09-14 01:57 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313107
|
7.5 |
HIGH
Network
|
adobe
|
coldfusion
|
ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An attacker could exploit this vulnerability to gai…
|
CWE-287
Improper Authentication
|
CVE-2024-45113
|
2024-09-14 01:56 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313108
|
- |
|
-
|
-
|
Titan SFTP and Titan MFT Server 2.0.25.2426 and earlier have a vulnerability a vulnerability where sensitive information, including passwords, is exposed in clear text within the JSON response when c…
|
-
|
CVE-2024-44685
|
2024-09-14 01:37 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313109
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
perf/aux: Fix AUX buffer serialization
Ole reported that event->mmap_mutex is strictly insufficient to
serialize the AUX buffer, …
|
-
|
CVE-2024-46713
|
2024-09-14 01:37 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313110
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
memcg_write_event_control(): fix a user-triggerable oops
we are *not* guaranteed that anything past the terminating NUL
is mapped…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-45021
|
2024-09-14 01:36 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
