|
309931
|
4.3 |
MEDIUM
Network
|
oracle
|
database_server
|
Vulnerability in the Oracle Database Core component of Oracle Database Server. Supported versions that are affected are 19.3-19.24, 21.3-21.15 and 23.4-23.5. Easily exploitable vulnerability allows…
|
NVD-CWE-noinfo
|
CVE-2024-21233
|
2024-10-31 22:35 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309932
|
3.7 |
LOW
Network
|
-
|
-
|
Vulnerability in Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability…
|
-
|
CVE-2024-21210
|
2024-10-31 22:35 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309933
|
3.7 |
LOW
Network
|
-
|
-
|
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java…
|
-
|
CVE-2024-21208
|
2024-10-31 22:35 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309934
|
3.3 |
LOW
Local
|
mongodb
|
mongo_crypt_v1.so
mongocryptd
|
A bug in query analysis of certain complex self-referential $lookup subpipelines may result in literal values in expressions for encrypted fields to be sent to the server as plaintext instead of ciph…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2024-8013
|
2024-10-31 22:33 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309935
|
9.8 |
CRITICAL
Network
|
codezips
|
hospital_appointment_system
|
A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment System 1.0. This affects an unknown part of the file /loginAction.php. The manipulation of the argument U…
|
CWE-89
SQL Injection
|
CVE-2024-10449
|
2024-10-31 21:47 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309936
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-843
Type Confusion
|
CVE-2024-10230
|
2024-10-31 17:35 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309937
|
8.8 |
HIGH
Network
|
projectworlds
|
online_time_table_generator
|
A vulnerability classified as critical was found in Project Worlds Online Time Table Generator 1.0. Affected by this vulnerability is an unknown functionality of the file /timetable/staff/staffdashbo…
|
CWE-89
SQL Injection
|
CVE-2024-10447
|
2024-10-31 10:23 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309938
|
5.3 |
MEDIUM
Network
|
cisco
|
adaptive_security_appliance_software
|
A vulnerability in the SSH server of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition for the SSH server o…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-20526
|
2024-10-31 10:08 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309939
|
6.5 |
MEDIUM
Network
|
libsndfile_project
|
libsndfile
|
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.
|
CWE-617
Reachable Assertion
|
CVE-2024-50613
|
2024-10-31 09:58 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309940
|
7.5 |
HIGH
Network
|
sun.net
|
ehdr_ctms
|
The eHRD CTMS from Sunnet has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to bypass authentication by satisfying specific conditions in order to access certain f…
|
CWE-288
Authentication Bypass Using an Alternate Path or Channel
|
CVE-2024-10438
|
2024-10-31 09:52 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
