|
313431
|
5.5 |
MEDIUM
Local
|
adobe
|
indesign
|
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerabi…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-34127
|
2024-09-17 02:48 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313432
|
8.8 |
HIGH
Network
|
mindsdb
|
mindsdb
|
An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server. For databases crea…
|
CWE-94
Code Injection
|
CVE-2024-45851
|
2024-09-17 02:36 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313433
|
8.8 |
HIGH
Network
|
mindsdb
|
mindsdb
|
An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server. For databases crea…
|
CWE-94
Code Injection
|
CVE-2024-45850
|
2024-09-17 02:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313434
|
8.8 |
HIGH
Network
|
mindsdb
|
mindsdb
|
An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of the MindsDB platform, when the Microsoft SharePoint integration is installed on the server. For databases crea…
|
CWE-94
Code Injection
|
CVE-2024-45849
|
2024-09-17 02:34 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313435
|
8.8 |
HIGH
Network
|
mindsdb
|
mindsdb
|
An arbitrary code execution vulnerability exists in versions 23.12.4.0 up to 24.7.4.1 of the MindsDB platform, when the ChromaDB integration is installed on the server. If a specially crafted ‘INSERT…
|
CWE-94
Code Injection
|
CVE-2024-45848
|
2024-09-17 02:33 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313436
|
8.8 |
HIGH
Network
|
mindsdb
|
mindsdb
|
An arbitrary code execution vulnerability exists in versions 23.11.4.2 up to 24.7.4.1 of the MindsDB platform, when one of several integrations is installed on the server. If a specially crafted ‘UPD…
|
CWE-94
Code Injection
|
CVE-2024-45847
|
2024-09-17 02:31 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313437
|
8.8 |
HIGH
Network
|
mindsdb
|
mindsdb
|
An arbitrary code execution vulnerability exists in versions 23.10.3.0 up to 24.7.4.1 of the MindsDB platform, when the Weaviate integration is installed on the server. If a specially crafted ‘SELECT…
|
CWE-94
Code Injection
|
CVE-2024-45846
|
2024-09-17 02:30 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313438
|
5.4 |
MEDIUM
Network
|
rocket.chat
|
rocket.chat
|
The Electron desktop application of Rocket.Chat through 6.3.4 allows stored XSS via links in an uploaded file, related to failure to use a separate browser upon encountering third-party external acti…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45621
|
2024-09-17 02:28 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313439
|
5.4 |
MEDIUM
Network
|
elabftw
|
elabftw
|
eLabFTW is an open source electronic lab notebook for research labs. By uploading specially crafted files, a regular user can create a circumstance where a visitor's browser runs arbitrary JavaScript…
|
CWE-79
Cross-site Scripting
|
CVE-2024-28100
|
2024-09-17 02:28 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313440
|
- |
|
-
|
-
|
Improper finite state machines (FSMs) in hardware logic in some Intel(R) Processors may allow an privileged user to potentially enable a denial of service via local access.
|
CWE-1245
|
CVE-2024-24968
|
2024-09-17 02:16 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
