Latest CVE Feed
-
6.5
MEDIUMCVE-2024-51562
The NVMe driver function nvme_opc_get_log_page is vulnerable to a buffer over-read from a guest-controlled value.... Read more
Affected Products : freebsd- Published: Nov. 12, 2024
- Modified: Nov. 26, 2024
-
9.9
CRITICALCVE-2024-50386
Account users in Apache CloudStack by default are allowed to register templates to be downloaded directly to the primary storage for deploying instances. Due to missing validation checks for KVM-compatible templates in CloudStack 4.0.0 through 4.18.2.4 an... Read more
Affected Products : cloudstack- Published: Nov. 12, 2024
- Modified: Feb. 04, 2025
-
7.5
HIGHCVE-2024-45289
The fetch(3) library uses environment variables for passing certain information, including the revocation file pathname. The environment variable name used by fetch(1) to pass the filename to the library was incorrect, in effect ignoring the option. Fet... Read more
Affected Products : freebsd- Published: Nov. 12, 2024
- Modified: Jan. 10, 2025
-
7.2
HIGHCVE-2024-42442
APTIOV contains a vulnerability in the BIOS where a user or attacker may cause an improper restriction of operations within the bounds of a memory buffer over the network. A successful exploitation of this vulnerability may lead to code execution outside ... Read more
Affected Products :- Published: Nov. 12, 2024
- Modified: Nov. 12, 2024
-
5.3
MEDIUMCVE-2024-39281
The command ctl_persistent_reserve_out allows the caller to specify an arbitrary size which will be passed to the kernel's memory allocator.... Read more
Affected Products : freebsd- Published: Nov. 12, 2024
- Modified: Jan. 10, 2025
-
7.8
HIGHCVE-2024-37365
A remote code execution vulnerability exists in the affected product. The vulnerability allows users to save projects within the public directory allowing anyone with local access to modify and/or delete files. Additionally, a malicious user could potenti... Read more
Affected Products : factorytalk_view- Published: Nov. 12, 2024
- Modified: Nov. 12, 2024
-
5.2
MEDIUMCVE-2024-33660
An exploit is possible where an actor with physical access can manipulate SPI flash without being detected.... Read more
Affected Products : aptio_v- Published: Nov. 12, 2024
- Modified: Nov. 12, 2024
-
4.4
MEDIUMCVE-2024-33658
APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Restriction of Operations within the Bounds of a Memory Buffer by local. Successful exploitation of this vulnerability may lead to privilege escalation and potentially arbitra... Read more
Affected Products : aptio_v- Published: Nov. 12, 2024
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2024-2315
APTIOV contains a vulnerability in BIOS where may cause Improper Access Control by a local attacker. Successful exploitation of this vulnerability may lead to unexpected SPI flash modifications and BIOS boot kit launches, also impacting the availability.... Read more
Affected Products : aptio_v- Published: Nov. 12, 2024
- Modified: Nov. 21, 2024
-
5.1
MEDIUMCVE-2024-11130
A vulnerability was found in ZZCMS up to 2023. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/msg.php. The manipulation of the argument keyword leads to cross site scripting. The attack may be lau... Read more
Affected Products : zzcms- Published: Nov. 12, 2024
- Modified: Nov. 15, 2024
-
8.8
HIGHCVE-2024-11127
A vulnerability was found in code-projects Job Recruitment up to 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin.php. The manipulation of the argument userid leads to sql injection. The a... Read more
Affected Products : job_recruitment- Published: Nov. 12, 2024
- Modified: Nov. 15, 2024
-
3.1
LOWCVE-2024-11126
A vulnerability was found in Digistar AG-30 Plus 2.6b. It has been classified as problematic. Affected is an unknown function of the component Login Page. The manipulation leads to improper restriction of excessive authentication attempts. The complexity ... Read more
Affected Products :- Published: Nov. 12, 2024
- Modified: Nov. 12, 2024
-
6.9
MEDIUMCVE-2024-11125
A vulnerability was found in GetSimpleCMS 3.3.16 and classified as problematic. This issue affects some unknown processing of the file /admin/profile.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The expl... Read more
Affected Products : getsimplecms- Published: Nov. 12, 2024
- Modified: Nov. 15, 2024
-
7.2
HIGHCVE-2024-11124
A vulnerability has been found in TimGeyssens UIOMatic 5 and classified as critical. This vulnerability affects unknown code of the file /src/UIOMatic/wwwroot/backoffice/resources/uioMaticObject.r. The manipulation leads to sql injection. The attack can b... Read more
Affected Products : ui-o-matic- Published: Nov. 12, 2024
- Modified: Nov. 15, 2024
-
8.6
HIGHCVE-2024-50572
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M8... Read more
Affected Products : scalance_s615_firmware scalance_m804pb_firmware scalance_m826-2_firmware scalance_m874-2_firmware scalance_m874-3_firmware scalance_m876-3_firmware scalance_m876-4_firmware ruggedcom_rm1224_lte\(4g\)_eu_firmware ruggedcom_rm1224_lte\(4g\)_nam_firmware scalance_m812-1_adsl-router_firmware +52 more products- Published: Nov. 12, 2024
- Modified: Feb. 11, 2025
-
6.1
MEDIUMCVE-2024-50561
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M8... Read more
Affected Products : scalance_s615_firmware scalance_m804pb_firmware scalance_m826-2_firmware scalance_m874-2_firmware scalance_m874-3_firmware scalance_m876-3_firmware scalance_m876-4_firmware ruggedcom_rm1224_lte\(4g\)_eu_firmware ruggedcom_rm1224_lte\(4g\)_nam_firmware scalance_m812-1_adsl-router_firmware +52 more products- Published: Nov. 12, 2024
- Modified: Feb. 11, 2025
-
4.3
MEDIUMCVE-2024-50560
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M8... Read more
Affected Products : scalance_s615_firmware scalance_m804pb_firmware scalance_m826-2_firmware scalance_m874-2_firmware scalance_m874-3_firmware scalance_m876-3_firmware scalance_m876-4_firmware ruggedcom_rm1224_lte\(4g\)_eu_firmware ruggedcom_rm1224_lte\(4g\)_nam_firmware scalance_m812-1_adsl-router_firmware +52 more products- Published: Nov. 12, 2024
- Modified: Feb. 11, 2025
-
5.1
MEDIUMCVE-2024-50559
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M8... Read more
Affected Products : scalance_s615_firmware scalance_m804pb_firmware scalance_m826-2_firmware scalance_m874-2_firmware scalance_m874-3_firmware scalance_m876-3_firmware scalance_m876-4_firmware ruggedcom_rm1224_lte\(4g\)_eu_firmware ruggedcom_rm1224_lte\(4g\)_nam_firmware scalance_m812-1_adsl-router_firmware +48 more products- Published: Nov. 12, 2024
- Modified: Nov. 13, 2024
-
5.3
MEDIUMCVE-2024-50558
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M8... Read more
Affected Products : scalance_s615_firmware scalance_m804pb_firmware scalance_m826-2_firmware scalance_m874-2_firmware scalance_m874-3_firmware scalance_m876-3_firmware scalance_m876-4_firmware ruggedcom_rm1224_lte\(4g\)_eu_firmware ruggedcom_rm1224_lte\(4g\)_nam_firmware scalance_m812-1_adsl-router_firmware +48 more products- Published: Nov. 12, 2024
- Modified: Nov. 13, 2024
-
9.8
CRITICALCVE-2024-50557
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M8... Read more
Affected Products : scalance_s615_firmware scalance_m804pb_firmware scalance_m826-2_firmware scalance_m874-2_firmware scalance_m874-3_firmware scalance_m876-3_firmware scalance_m876-4_firmware ruggedcom_rm1224_lte\(4g\)_eu_firmware ruggedcom_rm1224_lte\(4g\)_nam_firmware scalance_m812-1_adsl-router_firmware +48 more products- Published: Nov. 12, 2024
- Modified: Nov. 13, 2024