|
255941
|
5.3 |
MEDIUM
Network
|
dlink
|
dns-320_firmware
|
A vulnerability, which was classified as problematic, was found in D-Link DNS-320 2.02b01. This affects an unknown part of the file /cgi-bin/discovery.cgi of the component Web Management Interface. T…
|
NVD-CWE-noinfo
|
CVE-2024-8461
|
2024-09-13 02:17 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255942
|
5.5 |
MEDIUM
Local
|
acronis
|
snap_deploy
|
Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-34018
|
2024-09-13 02:17 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255943
|
7.3 |
HIGH
Local
|
acronis
|
snap_deploy
|
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-34017
|
2024-09-13 02:16 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255944
|
- |
|
-
|
-
|
An improper authorization flaw exists in the Ansible Automation Controller. This flaw allows an attacker using the k8S API server to send an HTTP request with a service account token mounted via `aut…
|
CWE-285
Improper Authorization
|
CVE-2024-6840
|
2024-09-13 02:15 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255945
|
8.8 |
HIGH
Network
|
phpgurukul
|
job_portal
|
File upload restriction bypass vulnerability in PHPGurukul Job Portal 1.0, the exploitation of which could allow an authenticated user to execute an RCE via webshell.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8463
|
2024-09-13 02:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255946
|
4.7 |
MEDIUM
Physics
|
arm
|
trusted_firmware-m
|
An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.
|
NVD-CWE-Other
|
CVE-2023-51712
|
2024-09-13 02:11 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255947
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tcp: add sanity tests to TCP_QUEUE_SEQ
Qingyu Li reported a syzkaller bug where the repro
changes RCV SEQ _after_ restoring data …
|
NVD-CWE-noinfo
|
CVE-2021-4442
|
2024-09-13 01:58 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255948
|
5.9 |
MEDIUM
Network
|
identityautomation
|
rapididentity
|
RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive authentication attempts and allows a remote attacker to cause a denial of service via the username parame…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2024-45589
|
2024-09-13 01:54 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255949
|
7.5 |
HIGH
Network
|
mediavine
|
create
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mediavine Create by Mediavine.This issue affects Create by Mediavine: from n/a through 1.9.8.
|
NVD-CWE-noinfo
|
CVE-2024-43264
|
2024-09-13 01:50 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255950
|
6.1 |
MEDIUM
Network
|
linuxos
|
shakal-ng
|
A vulnerability, which was classified as problematic, was found in LinuxOSsk Shakal-NG up to 1.3.3. Affected is an unknown function of the file comments/views.py. The manipulation of the argument nex…
|
CWE-601
Open Redirect
|
CVE-2024-8412
|
2024-09-13 01:47 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
