|
309831
|
8.8 |
HIGH
Network
|
hikvision
|
hikcentral_professional
|
There is a SQL injection vulnerability in some HikCentral Professional versions. This could allow an authenticated user to execute arbitrary SQL queries.
|
CWE-89
SQL Injection
|
CVE-2024-47487
|
2024-10-23 01:10 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309832
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_server_2019
|
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43611
|
2024-10-23 01:01 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309833
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fuse: use exclusive lock when FUSE_I_CACHE_IO_MODE is set
This may be a typo. The comment has said shared locks are
not allowed w…
|
CWE-667
Improper Locking
|
CVE-2024-47746
|
2024-10-23 01:00 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309834
|
6.8 |
MEDIUM
Network
|
bitdefender
|
total_security
|
A vulnerability has been identified in Bitdefender Safepay's handling of HTTPS connections. The issue arises when the product blocks a connection due to an untrusted server certificate but allows the…
|
CWE-295
Improper Certificate Validation
|
CVE-2023-6058
|
2024-10-23 01:00 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309835
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: mvm: set the cipher for secured NDP ranging
The cipher pointer is not set, but is derefereced trying to set its
co…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49857
|
2024-10-23 00:48 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309836
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KEYS: prevent NULL pointer dereference in find_asymmetric_key()
In find_asymmetric_key(), if all NULLs are passed in the id_{0,1,…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47743
|
2024-10-23 00:45 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309837
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KVM: Use dedicated mutex to protect kvm_usage_count to avoid deadlock
Use a dedicated mutex to guard kvm_usage_count to fix a pot…
|
CWE-667
Improper Locking
|
CVE-2024-47744
|
2024-10-23 00:44 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309838
|
4.8 |
MEDIUM
Network
|
code-projects
|
pharmacy_management
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /manage_medicine.php of t…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10199
|
2024-10-23 00:40 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309839
|
4.8 |
MEDIUM
Network
|
code-projects
|
pharmacy_management
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /manage_customer…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10198
|
2024-10-23 00:39 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309840
|
6.3 |
MEDIUM
Network
|
dell
|
secure_connect_gateway
|
Dell Secure Connect Gateway (SCG) 5.24 contains an Incorrect Default Permissions vulnerability. A local attacker with low privileges can access the file system and could potentially exploit this vuln…
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-47240
|
2024-10-23 00:28 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
