Latest CVE Feed
-
8.8
HIGHCVE-2024-43519
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +10 more products- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
5.0
MEDIUMCVE-2024-43520
Windows Kernel Denial of Service Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +10 more products- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
7.5
HIGHCVE-2024-43521
Windows Hyper-V Denial of Service Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
7.0
HIGHCVE-2024-43522
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
6.8
MEDIUMCVE-2024-43525
Windows Mobile Broadband Driver Remote Code Execution Vulnerability... Read more
Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_21h2 windows_11_22h2 windows windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 +1 more products- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
6.8
MEDIUMCVE-2024-43526
Windows Mobile Broadband Driver Remote Code Execution Vulnerability... Read more
Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_21h2 windows_11_22h2 windows windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 +1 more products- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
9.8
CRITICALCVE-2024-48251
Wavelog 1.8.5 allows Activated_gridmap_model.php get_band_confirmed SQL injection via band, sat, propagation, or mode.... Read more
Affected Products : wavelog- Published: Oct. 14, 2024
- Modified: Oct. 17, 2024
-
6.5
MEDIUMCVE-2024-43538
Windows Mobile Broadband Driver Denial of Service Vulnerability... Read more
Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_21h2 windows_11_22h2 windows windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 +1 more products- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
7.5
HIGHCVE-2024-43567
Windows Hyper-V Denial of Service Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
7.4
HIGHCVE-2024-8918
The File Manager Pro plugin for WordPress is vulnerable to Limited JavaScript File Upload in all versions up to, and including, 8.3.9. This is due to a lack of proper checks on allowed file types. This makes it possible for unauthenticated attackers, with... Read more
- Published: Oct. 16, 2024
- Modified: Oct. 17, 2024
-
6.5
MEDIUMCVE-2024-43540
Windows Mobile Broadband Driver Denial of Service Vulnerability... Read more
Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_21h2 windows_11_22h2 windows windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 +1 more products- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
8.8
HIGHCVE-2024-8746
The File Manager Pro plugin for WordPress is vulnerable to arbitrary backup file downloads and uploads due to missing file type validation via the 'mk_file_folder_manager_shortcode' ajax action in all versions up to, and including, 8.3.9. This makes it po... Read more
- Published: Oct. 16, 2024
- Modified: Oct. 17, 2024
-
8.8
HIGHCVE-2024-8507
The File Manager Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 8.3.9. This is due to missing or incorrect nonce validation on the 'mk_file_folder_manager' ajax action. This makes it possible for... Read more
- Published: Oct. 16, 2024
- Modified: Oct. 17, 2024
-
7.8
HIGHCVE-2024-43527
Windows Kernel Elevation of Privilege Vulnerability... Read more
Affected Products : windows_11_24h2- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
7.8
HIGHCVE-2024-43505
Microsoft Office Visio Remote Code Execution Vulnerability... Read more
Affected Products : office 365_apps office_long_term_servicing_channel office_2024 office_2021 office_2019- Published: Oct. 08, 2024
- Modified: Oct. 17, 2024
-
8.2
HIGHCVE-2024-47491
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a network-based, unauthenticated attacker to cause Denial of Service (DoS). When a BGP UPDATE with ... Read more
- Published: Oct. 11, 2024
- Modified: Oct. 17, 2024
-
8.8
HIGHCVE-2024-47130
The goTenna Pro App allows unauthenticated attackers to remotely update the local public keys used for P2P and group messages. It is advised to update your app to the current release for enhanced encryption protocols.... Read more
Affected Products : gotenna_pro- Published: Sep. 26, 2024
- Modified: Oct. 17, 2024
-
5.3
MEDIUMCVE-2024-47129
The goTenna Pro App does not inject extra characters into broadcasted frames to obfuscate the length of messages. This makes it possible to tell the length of the payload regardless of the encryption used.... Read more
Affected Products : gotenna_pro- Published: Sep. 26, 2024
- Modified: Oct. 17, 2024
-
5.3
MEDIUMCVE-2024-47128
The goTenna Pro App encryption key name is always sent unencrypted when the key is shared over RF through a broadcast message. It is advised to share the encryption key via local QR for higher security operations.... Read more
Affected Products : gotenna_pro- Published: Sep. 26, 2024
- Modified: Oct. 17, 2024
-
6.5
MEDIUMCVE-2024-47127
In the goTenna Pro App there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This vulnerability can be exploited if the device is being u... Read more
Affected Products : gotenna_pro- Published: Sep. 26, 2024
- Modified: Oct. 17, 2024