Latest CVE Feed
-
6.5
CVSS31CVE-2024-9379
SQL injection in the admin web console of Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to run arbitrary SQL statements.... Read more
Affected Products :- Actively Exploited
- Published: Oct. 08, 2024
- Modified: Oct. 10, 2024
-
7.2
CVSS31CVE-2024-9380
An OS command injection vulnerability in the admin web console of Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to obtain remote code execution.... Read more
Affected Products :- Actively Exploited
- Published: Oct. 08, 2024
- Modified: Oct. 10, 2024
-
7.8
CVSS31CVE-2024-43572
Microsoft Management Console Remote Code Execution Vulnerability... Read more
Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +7 more products- Actively Exploited
- Published: Oct. 08, 2024
- Modified: Oct. 09, 2024
-
6.5
CVSS31CVE-2024-43573
Windows MSHTML Platform Spoofing Vulnerability... Read more
Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 windows_10_1507 +4 more products- Actively Exploited
- Published: Oct. 08, 2024
- Modified: Oct. 09, 2024