Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.5

HIGH

CVE-2024-47522

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, invalid ALPN in TLS/QUIC traffic when JA4 matching/logging is enabled can lead to Suricata aborting with a panic....

Affected Products : suricata
Published: Oct. 16, 2024

Modified: Oct. 22, 2024
7.5

HIGH

CVE-2024-47188

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" leads to byte-range tracking having predictable hash table ...

Affected Products : suricata
Published: Oct. 16, 2024

Modified: Oct. 22, 2024
7.5

HIGH

CVE-2024-47187

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" leads to datasets having predictable hash table behavior. T...

Affected Products : suricata
Published: Oct. 16, 2024

Modified: Oct. 22, 2024
5.3

MEDIUM

CVE-2024-45796

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, a logic error during fragment reassembly can lead to failed reassembly for valid traffic. An attacker could craft...

Affected Products : suricata
Published: Oct. 16, 2024

Modified: Oct. 22, 2024
7.5

HIGH

CVE-2024-45795

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, rules using datasets with the non-functional / unimplemented "unset" option can trigger an assertion during traff...

Affected Products : suricata
Published: Oct. 16, 2024

Modified: Oct. 22, 2024
9.0

CRITICAL

CVE-2024-38124

Windows Netlogon Elevation of Privilege Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2 +1 more products
Published: Oct. 08, 2024

Modified: Oct. 22, 2024
7.5

HIGH

CVE-2024-38129

Windows Kerberos Elevation of Privilege Vulnerability...

Affected Products : windows_server_2022_23h2 windows_server_23h2
Published: Oct. 08, 2024

Modified: Oct. 22, 2024
7.5

HIGH

CVE-2024-38149

BranchCache Denial of Service Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +9 more products
Published: Oct. 08, 2024

Modified: Oct. 22, 2024
7.5

HIGH

CVE-2024-38262

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2 +1 more products
Published: Oct. 08, 2024

Modified: Oct. 22, 2024
8.8

HIGH

CVE-2024-38179

Azure Stack Hyperconverged Infrastructure (HCI) Elevation of Privilege Vulnerability...

Affected Products : azure_stack_hci azure_stack_hci_os_23h2 azure_stack_hci_os_22h2
Published: Oct. 08, 2024

Modified: Oct. 22, 2024
7.2

HIGH

CVE-2024-10162

A vulnerability has been found in PHPGurukul Boat Booking System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/edit-subadmin.php of the component Edit Subdomain Details Page. The manipulation of the argument sa...

Affected Products : boat_booking_system
Published: Oct. 20, 2024

Modified: Oct. 21, 2024
8.8

HIGH

CVE-2024-10161

A vulnerability, which was classified as critical, was found in PHPGurukul Boat Booking System 1.0. This affects an unknown part of the file change-image.php of the component Update Boat Image Page. The manipulation of the argument image leads to unrestri...

Affected Products : boat_booking_system
Published: Oct. 20, 2024

Modified: Oct. 21, 2024
9.8

CRITICAL

CVE-2024-10165

A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file deletecustcom.php. The manipulation of the argument id leads to sql injection. The ...

Affected Products : sales_management_system
Published: Oct. 20, 2024

Modified: Oct. 21, 2024
9.8

CRITICAL

CVE-2024-10166

A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file checkuser.php. The manipulation of the argument name leads to sql injection. The attack may ...

Affected Products : sales_management_system
Published: Oct. 20, 2024

Modified: Oct. 21, 2024
9.8

CRITICAL

CVE-2024-10167

A vulnerability classified as critical has been found in Codezips Sales Management System 1.0. This affects an unknown part of the file deletecustind.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack re...

Affected Products : sales_management_system
Published: Oct. 20, 2024

Modified: Oct. 21, 2024
9.8

CRITICAL

CVE-2024-10170

A vulnerability, which was classified as critical, has been found in code-projects Hospital Management System 1.0. This issue affects some unknown processing of the file get_doctor.php. The manipulation of the argument specilizationid leads to sql injecti...

Affected Products : hospital_management_system hospital_management_system
Published: Oct. 20, 2024

Modified: Oct. 21, 2024
5.8

MEDIUM

CVE-2024-10171

A vulnerability, which was classified as critical, was found in code-projects Blood Bank System up to 1.0. Affected is an unknown function of the file /admin/massage.php. The manipulation of the argument bid leads to sql injection. It is possible to launc...

Affected Products : blood_bank_system blood_bank_system
Published: Oct. 20, 2024

Modified: Oct. 21, 2024
7.4

HIGH

CVE-2024-43456

Windows Remote Desktop Services Tampering Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2
Published: Oct. 08, 2024

Modified: Oct. 21, 2024
7.8

HIGH

CVE-2024-43504

Microsoft Excel Remote Code Execution Vulnerability...

Affected Products : office 365_apps excel office_long_term_servicing_channel excel_2016 office_2024 office_2021 office_2019
Published: Oct. 08, 2024

Modified: Oct. 21, 2024
5.4

MEDIUM

CVE-2024-47793

Stored cross-site scripting vulnerability exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. When accessing the edit screen containing custom columns (column type: images or files), an arbitrary script may be executed on the web browser o...

Affected Products : exment
Published: Oct. 18, 2024

Modified: Oct. 21, 2024

Showing 20 of 291520 Results

Latest CVE Feed

7.5

7.5

7.5

5.3

7.5

9.0

7.5

7.5

7.5

8.8

7.2

8.8

9.8

9.8

9.8

9.8

5.8

7.4

7.8

5.4

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable