|
309281
|
4.3 |
MEDIUM
Network
|
reedos
|
aim-star
|
This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper validation of the ‘mode’ parameter in the API endpoint used during the registration process. An authenticated remote attacke…
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2024-45789
|
2024-09-19 04:55 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309282
|
7.8 |
HIGH
Local
|
schneider-electric
|
vijeo_designer_embedded_in_ecostruxure_machine_expert
vijeo_designer
|
CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized
access, loss of confidentiality, integrity and availability of the workstation when non-admin
authenticated u…
|
NVD-CWE-noinfo
|
CVE-2024-8306
|
2024-09-19 04:51 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309283
|
6.7 |
MEDIUM
Local
|
dell
|
latitude_5290_2-in-1_firmware
precision_3420_tower_firmware
precision_3620_firmware
wyse_7040_thin_client_firmware
precision_7720_firmware
precision_7520_firmware
precision_5530_2-i…
|
Dell BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading …
|
NVD-CWE-noinfo
|
CVE-2024-38483
|
2024-09-19 04:19 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309284
|
7.8 |
HIGH
Local
|
adobe
|
audition
|
Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of thi…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-39378
|
2024-09-19 04:16 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309285
|
5.5 |
MEDIUM
Local
|
adobe
|
audition
|
Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to by…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-41868
|
2024-09-19 04:13 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309286
|
6.1 |
MEDIUM
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file categories.php. The manip…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8708
|
2024-09-19 04:11 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309287
|
6.5 |
MEDIUM
Network
|
microsoft
|
edge
|
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-38222
|
2024-09-19 04:01 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309288
|
7.3 |
HIGH
Local
|
cisco
|
meraki_systems_manager
|
A vulnerability in Cisco Meraki Systems Manager (SM) Agent for Windows could allow an authenticated, local attacker to execute arbitrary code with elevated privileges.
This vulnerability is …
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-20430
|
2024-09-19 03:56 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309289
|
8.8 |
HIGH
Network
|
owasp
|
defectdojo
|
An issue in OWASP DefectDojo before v.1.5.3.1 allows a remote attacker to escalate privileges via the user permissions component.
|
NVD-CWE-Other
|
CVE-2023-48171
|
2024-09-19 03:54 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309290
|
7.5 |
HIGH
Network
|
i-doit
|
i-doit
|
SQL injection vulnerability in idoit pro version 28. This vulnerability could allow an attacker to send a specially crafted query to the ID parameter in /var/www/html/src/classes/modules/api/model/cm…
|
CWE-89
SQL Injection
|
CVE-2024-8749
|
2024-09-19 03:53 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
