|
315171
|
7.5 |
HIGH
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a null eContent fie…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-45239
|
2024-08-28 00:49 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315172
|
9.8 |
CRITICAL
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a resource certificate containing a Key Usage exten…
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-45237
|
2024-08-28 00:48 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315173
|
7.5 |
HIGH
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a signed object containing an empty signedAttribute…
|
NVD-CWE-noinfo
|
CVE-2024-45236
|
2024-08-28 00:48 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315174
|
7.5 |
HIGH
Network
|
nicmx
|
fort-validator
|
An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) an ROA or a Manifest containing a signedAttrs encod…
|
NVD-CWE-noinfo
|
CVE-2024-45234
|
2024-08-28 00:45 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315175
|
6.1 |
MEDIUM
Network
|
jkev
|
record_management_system
|
A vulnerability, which was classified as problematic, was found in SourceCodester Record Management System 1.0. This affects an unknown part of the file sort1_user.php. The manipulation of the argume…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8136
|
2024-08-28 00:43 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315176
|
9.8 |
CRITICAL
Network
|
gotribe
|
gotribe
|
A vulnerability classified as critical has been found in Go-Tribe gotribe up to cd3ccd32cd77852c9ea73f986eaf8c301cfb6310. Affected is the function Sign of the file pkg/token/token.go. The manipulatio…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-8135
|
2024-08-28 00:41 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315177
|
6.5 |
MEDIUM
Local
|
catonetworks
|
cato_client
|
A vulnerability in Cato Networks SDP Client on Windows allows the insertion of sensitive information into the log file, which can lead to an account takeover. However, the attack requires bypassing p…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2024-6977
|
2024-08-28 00:41 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315178
|
8.8 |
HIGH
Local
|
catonetworks
|
cato_client
|
Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file.
This issue affects SDP Client before 5.10.34.
|
CWE-426
Untrusted Search Path
|
CVE-2024-6975
|
2024-08-28 00:40 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315179
|
9.8 |
CRITICAL
Network
|
dlink
|
dns-1550-04_firmware
dns-1200-05_firmware
dns-1100-4_firmware
dns-726-4_firmware
dns-345_firmware
dns-343_firmware
dns-340l_firmware
dnr-326_firmware
dns-327l_firmware
dns-…
|
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, …
|
CWE-78
OS Command
|
CVE-2024-8134
|
2024-08-28 00:39 |
2024-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315180
|
7.8 |
HIGH
Local
|
catonetworks
|
cato_client
|
Cato Networks Windows SDP Client Local Privilege Escalation via self-upgradeThis issue affects SDP Client: before 5.10.34.
|
CWE-426
CWE-276
Untrusted Search Path
Incorrect Default Permissions
|
CVE-2024-6974
|
2024-08-28 00:36 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
