|
310511
|
7.8 |
HIGH
Local
|
adobe
|
illustrator
|
Illustrator versions 28.7.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of th…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-47450
|
2024-11-14 23:26 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310512
|
7.8 |
HIGH
Local
|
adobe
|
illustrator
|
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-45114
|
2024-11-14 23:26 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310513
|
5.5 |
MEDIUM
Local
|
adobe
|
illustrator
|
Illustrator versions 28.7.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47457
|
2024-11-14 23:25 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310514
|
5.5 |
MEDIUM
Local
|
adobe
|
illustrator
|
Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass …
|
CWE-125
Out-of-bounds Read
|
CVE-2024-47456
|
2024-11-14 23:25 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310515
|
5.5 |
MEDIUM
Local
|
adobe
|
bridge
|
Bridge versions 13.0.9, 14.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47458
|
2024-11-14 23:24 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310516
|
7.5 |
HIGH
Network
|
gaizhenbiao
|
chuanhuchatgpt
|
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service (DOS) attack. When uploading a file, if an attacker appends a large number of characters to the end of a …
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-7807
|
2024-11-14 23:15 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310517
|
8.1 |
HIGH
Network
|
lunary
|
lunary
|
In version 1.3.2 of lunary-ai/lunary, an Insecure Direct Object Reference (IDOR) vulnerability exists. A user can view or delete external users by manipulating the 'id' parameter in the request URL. …
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-7474
|
2024-11-14 23:15 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310518
|
5.9 |
MEDIUM
Network
|
mudler
|
localai
|
mudler/localai version 2.17.1 is vulnerable to a Timing Attack. This type of side-channel attack allows an attacker to compromise the cryptosystem by analyzing the time taken to execute cryptographic…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-7010
|
2024-11-14 23:15 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310519
|
5.5 |
MEDIUM
Local
|
adobe
|
bridge
|
Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypa…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-45147
|
2024-11-14 22:58 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310520
|
6.8 |
MEDIUM
Adjacent
|
zyxel
|
gs1900-8_firmware
gs1900-8hp_firmware
gs1900-10hp_firmware
gs1900-16_firmware
gs1900-24_firmware
gs1900-24e_firmware
gs1900-24ep_firmware
gs1900-24hpv2_firmware
gs1900-48_firm…
|
A post-authentication command injection vulnerability in the CGI program in the Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier could allow an authenticated, LAN-based attacker wi…
|
CWE-78
OS Command
|
CVE-2024-8881
|
2024-11-14 22:51 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
