Latest CVE Feed
-
7.8
HIGHCVE-2024-38245
Kernel Streaming Service Driver Elevation of Privilege Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +10 more products- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.0
HIGHCVE-2024-38246
Win32k Elevation of Privilege Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.8
HIGHCVE-2024-38247
Windows Graphics Component Elevation of Privilege Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +9 more products- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.0
HIGHCVE-2024-38248
Windows Storage Elevation of Privilege Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.8
HIGHCVE-2024-38249
Windows Graphics Component Elevation of Privilege Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +10 more products- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.8
HIGHCVE-2024-38250
Windows Graphics Component Elevation of Privilege Vulnerability... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 office windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 +12 more products- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.8
HIGHCVE-2024-43457
Windows Setup and Deployment Elevation of Privilege Vulnerability... Read more
Affected Products : windows_11_24h2- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.7
HIGH- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.8
HIGH- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
7.5
HIGHCVE-2024-43467
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
8.8
HIGHCVE-2024-43469
Azure CycleCloud Remote Code Execution Vulnerability... Read more
Affected Products : azure_cyclecloud- Published: Sep. 10, 2024
- Modified: Sep. 17, 2024
-
8.7
HIGHCVE-2024-6921
Cleartext Storage of Sensitive Information vulnerability in NAC Telecommunication Systems Inc. NACPremium allows Retrieve Embedded Sensitive Data.This issue affects NACPremium: through 01082024.... Read more
Affected Products : nacpremium- Published: Sep. 02, 2024
- Modified: Sep. 17, 2024
-
6.1
MEDIUMCVE-2024-6920
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NAC Telecommunication Systems Inc. NACPremium allows Stored XSS.This issue affects NACPremium: through 01082024.... Read more
Affected Products : nacpremium- Published: Sep. 02, 2024
- Modified: Sep. 17, 2024
-
9.8
CRITICALCVE-2024-6919
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NAC Telecommunication Systems Inc. NACPremium allows Blind SQL Injection.This issue affects NACPremium: through 01082024.... Read more
Affected Products : nacpremium- Published: Sep. 02, 2024
- Modified: Sep. 17, 2024
-
7.2
HIGHCVE-2024-38878
A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions). Affected devices allow authenticated users to export diagnostics data. The corres... Read more
Affected Products : omnivise_t3000_application_server- Published: Aug. 02, 2024
- Modified: Sep. 17, 2024
-
9.8
CRITICALCVE-2024-7314
anji-plus AJ-Report is affected by an authentication bypass vulnerability. A remote and unauthenticated attacker can append ";swagger-ui" to HTTP requests to bypass authentication and execute arbitrary Java on the victim server.... Read more
Affected Products : report- Published: Aug. 02, 2024
- Modified: Sep. 17, 2024
-
5.9
MEDIUMCVE-2024-39626
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in 5 Star Plugins Pretty Simple Popup Builder allows Stored XSS.This issue affects Pretty Simple Popup Builder: from n/a through 1.0.7.... Read more
Affected Products : pretty_simple_popup_builder- Published: Aug. 01, 2024
- Modified: Sep. 17, 2024
-
8.5
HIGHCVE-2024-38876
A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 Domain Controller R9.2 (All versions), Omnivise T3000 Product Data Management (PDM) R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), O... Read more
- Published: Aug. 02, 2024
- Modified: Sep. 17, 2024
-
9.8
CRITICALCVE-2024-46451
TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the setWiFiAclRules function via the desc parameter.... Read more
- Published: Sep. 16, 2024
- Modified: Sep. 17, 2024
-
7.5
HIGHCVE-2024-46424
TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the UploadCustomModule function, which allows attackers to cause a Denial of Service (DoS) via the File parameter.... Read more
- Published: Sep. 16, 2024
- Modified: Sep. 17, 2024