|
317741
|
6.5 |
MEDIUM
Adjacent
|
microsoft
|
windows_server_2022_23h2
windows_10_1809
windows_11_21h2
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_22h2
windows_server_2019
|
Windows Mobile Broadband Driver Denial of Service Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43558
|
2024-10-17 22:31 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317742
|
6.5 |
MEDIUM
Adjacent
|
microsoft
|
windows_server_2022_23h2
windows_10_1809
windows_11_21h2
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_22h2
windows_server_2019
|
Windows Mobile Broadband Driver Denial of Service Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43557
|
2024-10-17 22:31 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317743
|
4.9 |
MEDIUM
Network
|
splunk
|
splunk
|
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes sensitive HTTP parameters to the `_internal` index. This exposure could happen if you configure the Splun…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2024-45738
|
2024-10-17 22:17 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317744
|
4.9 |
MEDIUM
Network
|
splunk
|
splunk
|
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes plaintext passwords for local native authentication Splunk users. This exposure could happen when you con…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2024-45739
|
2024-10-17 22:16 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317745
|
5.4 |
MEDIUM
Network
|
splunk
|
splunk
splunk_cloud_platform
|
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403, a low-privileged user that does not hold the "admin" or "power" Splunk roles could craft a malic…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45740
|
2024-10-17 22:14 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317746
|
5.4 |
MEDIUM
Network
|
splunk
|
splunk_cloud_platform
splunk
|
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.108 and 9.1.2312.205, a low-privileged user that does not hold the "admin" or "power" Splunk role…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45741
|
2024-10-17 22:12 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317747
|
8.0 |
HIGH
Network
|
splunk
|
splunk
|
In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could write a file to the Windows system root dir…
|
CWE-22
Path Traversal
|
CVE-2024-45731
|
2024-10-17 22:09 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317748
|
6.5 |
MEDIUM
Network
|
splunk
|
splunk
splunk_cloud_platform
|
In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud Platform versions below 9.2.2403.103, 9.1.2312.200, 9.1.2312.110 and 9.1.2308.208, a low-privileged user th…
|
CWE-862
Missing Authorization
|
CVE-2024-45732
|
2024-10-17 22:03 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317749
|
6.5 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to reveal firewall usernames, passwords, and API keys generated using thos…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2024-9466
|
2024-10-17 15:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317750
|
6.5 |
MEDIUM
Network
|
paloaltonetworks
|
expedition
|
An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames, clear…
|
CWE-78
OS Command
|
CVE-2024-9464
|
2024-10-17 15:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
