|
306551
|
9.8 |
CRITICAL
Network
|
microsoft
|
.net
visual_studio_2022
|
.NET and Visual Studio Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43498
|
2024-11-20 05:01 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306552
|
7.5 |
HIGH
Network
|
microsoft
|
.net
visual_studio_2022
|
.NET and Visual Studio Denial of Service Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43499
|
2024-11-20 04:59 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306553
|
6.7 |
MEDIUM
Local
|
intel
|
server_board_m70klp2sb_firmware
|
Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-284
Improper Access Control
|
CVE-2024-39609
|
2024-11-20 04:58 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306554
|
6.7 |
MEDIUM
Local
|
intel
|
m10jnp2sb_firmware
|
Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access.
|
NVD-CWE-noinfo
|
CVE-2024-41167
|
2024-11-20 04:45 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306555
|
8.1 |
HIGH
Network
|
apereo
|
central_authentication_service
|
A vulnerability was found in Apereo CAS 6.6 and classified as problematic. Affected by this issue is some unknown functionality of the file /login?service. The manipulation leads to session expiratio…
|
CWE-613
Insufficient Session Expiration
|
CVE-2024-11208
|
2024-11-20 04:38 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306556
|
- |
|
-
|
-
|
PyMOL 2.5.0 contains a vulnerability in its "Run Script" function, which allows the execution of arbitrary Python code embedded within .PYM files. Attackers can craft a malicious .PYM file containing…
|
-
|
CVE-2024-50636
|
2024-11-20 04:35 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306557
|
- |
|
-
|
-
|
SuperScan v4.1 was discovered to contain a buffer overflow via the Hostname/IP parameter.
|
-
|
CVE-2024-25254
|
2024-11-20 04:35 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306558
|
9.8 |
CRITICAL
Network
|
synology
|
photos
beephotos
|
Improper neutralization of special elements used in a command ('Command Injection') vulnerability in Task Manager component in Synology BeePhotos before 1.0.2-10026 and 1.1.0-10053 and Synology Photo…
|
CWE-77
Command Injection
|
CVE-2024-10443
|
2024-11-20 04:15 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306559
|
9.8 |
CRITICAL
Network
|
apereo
|
central_authentication_service
|
A vulnerability was found in Apereo CAS 6.6. It has been classified as critical. This affects an unknown part of the file /login?service of the component 2FA. The manipulation leads to improper authe…
|
CWE-287
Improper Authentication
|
CVE-2024-11209
|
2024-11-20 04:14 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306560
|
9.8 |
CRITICAL
Network
|
dataprom
|
personnel_attendance_control_systems_\/_access_control_security_systems
|
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS) allows Traffic Injection.This issue affects Personne…
|
CWE-346
Origin Validation Error
|
CVE-2024-10534
|
2024-11-20 04:08 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
