|
308481
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
|
-
|
CVE-2024-46503
|
2024-10-10 23:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308482
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2022
windows_server_2022_23h2
windows_11_24h2
windows_11_23h2
windows_11_22h2
windows_11_21h2
|
Microsoft Management Console Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-38259
|
2024-10-10 23:02 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308483
|
- |
|
-
|
-
|
A SQL injection vulnerability in login portal in AnteeoWMS before v4.7.34 allows unauthenticated attackers to execute arbitrary SQL commands via the username parameter and disclosure of some data in …
|
-
|
CVE-2024-44349
|
2024-10-10 22:15 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308484
|
8.8 |
HIGH
Network
|
dlink
|
dir-605l_firmware
|
A vulnerability was found in D-Link DIR-605L 2.13B01 BETA and classified as critical. This issue affects the function formEasySetupWizard/formEasySetupWizard2 of the file /goform/formEasySetupWizard.…
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-9549
|
2024-10-10 22:14 |
2024-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308485
|
7.5 |
HIGH
Network
|
draytek
|
vigor3910_firmware
|
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the ssidencrypt%d parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a craft…
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-46590
|
2024-10-10 22:14 |
2024-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308486
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An application may be able to read restricted memory.
|
NVD-CWE-noinfo
|
CVE-2024-27861
|
2024-10-10 22:13 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308487
|
6.5 |
MEDIUM
Network
|
zynith
|
zynith
|
Missing Authorization vulnerability in VIICTORY MEDIA LLC Z Y N I T H allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Z Y N I T H: from n/a through 7.4.9.
|
CWE-862
Missing Authorization
|
CVE-2024-43940
|
2024-10-10 22:11 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308488
|
6.5 |
MEDIUM
Network
|
zynith
|
zynith
|
Missing Authorization vulnerability in VIICTORY MEDIA LLC Z Y N I T H allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Z Y N I T H: from n/a through 7.4.9.
|
CWE-862
Missing Authorization
|
CVE-2024-43939
|
2024-10-10 22:09 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308489
|
9.8 |
CRITICAL
Network
|
woobewoo
|
product_table
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WBW Product Table PRO allows SQL Injection.This issue affects WBW Product Table PRO: from n/a…
|
CWE-89
SQL Injection
|
CVE-2024-43918
|
2024-10-10 22:01 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308490
|
- |
|
-
|
-
|
Use of implicit intent for sensitive communication in Sound Assistant prior to version 6.1.0.9 allows local attackers to get sensitive information.
|
-
|
CVE-2024-34670
|
2024-10-10 21:57 |
2024-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
