|
308871
|
- |
|
-
|
-
|
In the TP-Link RE365 V1_180213, there is a buffer overflow vulnerability due to the lack of length verification for the USER_AGENT field in /usr/bin/httpd. Attackers who successfully exploit this vul…
|
-
|
CVE-2024-42815
|
2024-10-25 05:35 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308872
|
- |
|
-
|
-
|
In onForegroundServiceButtonClicked of FooterActionsViewModel.kt, there is a possible way to disable the active VPN app from the lockscreen due to an insecure default value. This could lead to local …
|
-
|
CVE-2024-34734
|
2024-10-25 05:35 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308873
|
7.5 |
HIGH
Network
|
tenda
|
fh1206_firmware
|
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the PPPOEPassword parameter in the fromAdvSetWan function. This vulnerability allows attackers to cause a Denial of Service (D…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-42986
|
2024-10-25 05:35 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308874
|
7.5 |
HIGH
Network
|
tenda
|
fh1206_firmware
|
Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-42977
|
2024-10-25 05:35 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308875
|
9.8 |
CRITICAL
Network
|
totolink
|
n350rt_firmware
|
Incorrect access control in TOTOLINK N350RT V9.3.5u.6139_B20201216 allows attackers to obtain the apmib configuration file, which contains the username and the password, via a crafted request to /cgi…
|
NVD-CWE-noinfo
|
CVE-2024-42966
|
2024-10-25 05:35 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308876
|
- |
|
-
|
-
|
Micro-Star International Z-series motherboards (Z590, Z490, and Z790) and B-series motherboards (B760, B560, B660, and B460) with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was disc…
|
-
|
CVE-2024-36877
|
2024-10-25 05:35 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308877
|
- |
|
-
|
-
|
In certain Sonos products before S1 Release 11.12 and S2 release 15.9, the mt_7615.ko wireless driver does not properly validate an information element during negotiation of a WPA2 four-way handshake…
|
-
|
CVE-2023-50809
|
2024-10-25 05:35 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308878
|
5.3 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
An Incorrect Access Control vulnerability was found in /smsa/view_students.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view STUDENT d…
|
NVD-CWE-Other
|
CVE-2024-41250
|
2024-10-25 05:35 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308879
|
6.5 |
MEDIUM
Network
|
lopalopa
|
responsive_school_management_system
|
An Incorrect Access Control vulnerability was found in /smsa/admin_teacher_register_approval.php and /smsa/admin_teacher_register_approval_submit.php in Kashipara Responsive School Management System …
|
NVD-CWE-Other
|
CVE-2024-41251
|
2024-10-25 05:35 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308880
|
9.8 |
CRITICAL
Network
|
ivanti
|
endpoint_manager_mobile
|
An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating sys…
|
CWE-287
Improper Authentication
|
CVE-2024-36130
|
2024-10-25 05:35 |
2024-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
