|
306671
|
- |
|
-
|
-
|
A SQL Injection vulnerability in ESAFENET CDG 5 and earlier allows an attacker to execute arbitrary code via the id parameter of the dataSearch.jsp page.
|
-
|
CVE-2024-48343
|
2024-10-30 04:35 |
2024-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306672
|
- |
|
-
|
-
|
Cross Site Scripting vulnerability in Sentry v.6.0.9 allows a remote attacker to execute arbitrary code via the z parameter.
|
-
|
CVE-2024-48743
|
2024-10-30 04:35 |
2024-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306673
|
- |
|
-
|
-
|
BTS is affected by information disclosure vulnerability where mobile network operator personnel connected over BTS Web Element Manager, regardless of the access privileges, having a possibility to re…
|
-
|
CVE-2023-25189
|
2024-10-30 04:35 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306674
|
- |
|
-
|
-
|
An insufficient bounds check in PMFW (Power Management Firmware) may allow an attacker to utilize a malicious VF (virtualization function) to send a malformed message, potentially resulting in a deni…
|
-
|
CVE-2023-20513
|
2024-10-30 04:35 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306675
|
- |
|
-
|
-
|
A vulnerability has been found in Telestream Sentry 6.0.9 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /?page=reports of the component Reports…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10276
|
2024-10-30 03:15 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306676
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
afs: Fix the setting of the server responding flag
In afs_wait_for_operation(), we set transcribe the call responded flag to
the …
|
NVD-CWE-noinfo
|
CVE-2024-49999
|
2024-10-30 03:03 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306677
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: gso: fix tcp fraglist segmentation after pull from frag_list
Detect tcp gso fraglist skbs with corrupted geometry (see below…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49979
|
2024-10-30 03:02 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306678
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
gso: fix udp gso fraglist segmentation after pull from frag_list
Detect gso fraglist skbs with corrupted geometry (see below) and…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49978
|
2024-10-30 03:01 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306679
|
5.8 |
MEDIUM
Network
|
cisco
|
firepower_threat_defense_software
adaptive_security_appliance_software
|
A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote a…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2024-20481
|
2024-10-30 02:47 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306680
|
9.6 |
CRITICAL
Network
|
apple
|
ipados
iphone_os
|
A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1. A remote attacker may be able to break out of Web Content sandbox.
|
NVD-CWE-noinfo
|
CVE-2024-40867
|
2024-10-30 02:41 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
