|
314941
|
5.4 |
MEDIUM
Network
|
wordpress
|
wordpress
|
WordPress Core, in versions up to 6.0.2, is vulnerable to Authenticated Stored Cross-Site Scripting that can be exploited by users with access to the WordPress post and page editor, typically consist…
|
CWE-79
Cross-site Scripting
|
CVE-2022-4973
|
2024-10-31 00:58 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314942
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ublk: don't allow user copy for unprivileged device
UBLK_F_USER_COPY requires userspace to call write() on ublk char
device for f…
|
NVD-CWE-noinfo
|
CVE-2024-50080
|
2024-10-31 00:54 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314943
|
9.1 |
CRITICAL
Network
|
siemens
|
intermesh_7177_hybrid_2.0_subscriber
intermesh_7707_fire_subscriber_firmware
|
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All versions < V7.2.12 only if the IP interface is enabled (which…
|
NVD-CWE-noinfo
|
CVE-2024-47903
|
2024-10-31 00:54 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314944
|
9.8 |
CRITICAL
Network
|
siemens
|
intermesh_7177_hybrid_2.0_subscriber
intermesh_7707_fire_subscriber_firmware
|
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All versions < V7.2.12 only if the IP interface is enabled (which…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2024-47902
|
2024-10-31 00:48 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314945
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
blk-mq: setup queue ->tag_set before initializing hctx
Commit 7b815817aa58 ("blk-mq: add helper for checking if one CPU is mapped…
|
NVD-CWE-noinfo
|
CVE-2024-50081
|
2024-10-31 00:45 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314946
|
7.8 |
HIGH
Local
|
siemens
|
intermesh_7177_hybrid_2.0_subscriber
intermesh_7707_fire_subscriber_firmware
|
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All versions < V7.2.12 only if the IP interface is enabled (which…
|
NVD-CWE-noinfo
|
CVE-2024-47904
|
2024-10-31 00:39 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314947
|
9.8 |
CRITICAL
Network
|
siemens
|
intermesh_7177_hybrid_2.0_subscriber
intermesh_7707_fire_subscriber_firmware
|
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All versions < V7.2.12 only if the IP interface is enabled (which…
|
CWE-78
OS Command
|
CVE-2024-47901
|
2024-10-31 00:39 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314948
|
6.5 |
MEDIUM
Network
|
apple
|
macos
iphone_os
watchos
visionos
tvos
ipad_os
|
The issue was addressed with improved bounds checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Ventura 13.7.1, macOS Sonoma 14.7.1, watchOS 11.1,…
|
NVD-CWE-noinfo
|
CVE-2024-44297
|
2024-10-31 00:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314949
|
- |
|
-
|
-
|
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to …
|
-
|
CVE-2024-44280
|
2024-10-31 00:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314950
|
- |
|
-
|
-
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a file may lead to disclosure of user information.
|
-
|
CVE-2024-44279
|
2024-10-31 00:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
