Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2024-48073

    sunniwell HT3300 before 1.0.0.B022.2 is vulnerable to Insecure Permissions. The /usr/local/bin/update program, which is responsible for updating the software in the HT3300 device, is given the execution mode of sudo NOPASSWD. This program is vulnerable to... Read more

    Affected Products :
    • Published: Nov. 08, 2024
    • Modified: Nov. 18, 2024

  • 5.5

    MEDIUM
    CVE-2024-35425

    vmir e8117 was discovered to contain a segmentation violation via the function_prepare_parse function at /src/vmir_function.c.... Read more

    Affected Products : vmir
    • Published: Nov. 08, 2024
    • Modified: Jun. 05, 2025

  • 5.5

    MEDIUM
    CVE-2024-35424

    vmir e8117 was discovered to contain a segmentation violation via the import_function function at /src/vmir_wasm_parser.c.... Read more

    Affected Products : vmir
    • Published: Nov. 08, 2024
    • Modified: Jun. 05, 2025

  • 7.8

    HIGH
    CVE-2024-35423

    vmir e8117 was discovered to contain a heap buffer overflow via the wasm_parse_section_functions function at /src/vmir_wasm_parser.c.... Read more

    Affected Products : vmir
    • Published: Nov. 08, 2024
    • Modified: Jun. 05, 2025

  • 7.8

    HIGH
    CVE-2024-35422

    vmir e8117 was discovered to contain a heap buffer overflow via the wasm_call function at /src/vmir_wasm_parser.c.... Read more

    Affected Products : vmir
    • Published: Nov. 08, 2024
    • Modified: Jun. 05, 2025

  • 5.5

    MEDIUM
    CVE-2024-35421

    vmir e8117 was discovered to contain a segmentation violation via the wasm_parse_block function at /src/vmir_wasm_parser.c.... Read more

    Affected Products : vmir
    • Published: Nov. 08, 2024
    • Modified: Jun. 05, 2025

  • 6.2

    MEDIUM
    CVE-2024-35420

    wac commit 385e1 was discovered to contain a heap overflow.... Read more

    Affected Products : wac
    • Published: Nov. 08, 2024
    • Modified: Jun. 17, 2025

  • 5.5

    MEDIUM
    CVE-2024-35419

    wac commit 385e1 was discovered to contain a heap overflow via the load_module function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.... Read more

    Affected Products : wac
    • Published: Nov. 08, 2024
    • Modified: Jun. 17, 2025

  • 6.2

    MEDIUM
    CVE-2024-35418

    wac commit 385e1 was discovered to contain a heap overflow via the setup_call function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.... Read more

    Affected Products : wac
    • Published: Nov. 08, 2024
    • Modified: Jun. 17, 2025

  • 6.2

    MEDIUM
    CVE-2024-35410

    wac commit 385e1 was discovered to contain a heap overflow via the interpret function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.... Read more

    Affected Products : wac
    • Published: Nov. 08, 2024
    • Modified: Jun. 17, 2025

  • 7.5

    HIGH
    CVE-2024-27532

    wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) 06df58f is vulnerable to NULL Pointer Dereference in function `block_type_get_result_types.... Read more

    Affected Products :
    • Published: Nov. 08, 2024
    • Modified: Nov. 19, 2024

  • 8.4

    HIGH
    CVE-2024-27530

    wasm3 139076a contains a Use-After-Free in ForEachModule.... Read more

    Affected Products : wasm3
    • Published: Nov. 08, 2024
    • Modified: Jun. 24, 2025

  • 8.4

    HIGH
    CVE-2024-27529

    wasm3 139076a contains memory leaks in Read_utf8.... Read more

    Affected Products : wasm3
    • Published: Nov. 08, 2024
    • Modified: Jun. 24, 2025

  • 8.4

    HIGH
    CVE-2024-27528

    wasm3 139076a suffers from Invalid Memory Read, leading to DoS and potential Code Execution.... Read more

    Affected Products : wasm3
    • Published: Nov. 08, 2024
    • Modified: Jun. 24, 2025

  • 7.5

    HIGH
    CVE-2024-27527

    wasm3 139076a is vulnerable to Denial of Service (DoS).... Read more

    Affected Products : wasm3
    • Published: Nov. 08, 2024
    • Modified: Jun. 24, 2025

  • 7.4

    HIGH
    CVE-2024-11026

    A vulnerability was found in Intelligent Apps Freenow App 12.10.0 on Android. It has been rated as problematic. Affected by this issue is some unknown functionality of the file ch/qos/logback/core/net/ssl/SSL.java of the component Keystore Handler. The ma... Read more

    Affected Products : android freenow
    • Published: Nov. 08, 2024
    • Modified: Nov. 23, 2024

  • 4.7

    MEDIUM
    CVE-2024-51157

    07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component http://erp.07fly.net:80/oa/OaSchedule/add.html.... Read more

    Affected Products : 07flycms
    • Published: Nov. 08, 2024
    • Modified: Apr. 18, 2025

  • 8.8

    HIGH
    CVE-2024-50809

    The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the execution of system commands... Read more

    Affected Products :
    • Published: Nov. 08, 2024
    • Modified: Nov. 18, 2024

  • 8.8

    HIGH
    CVE-2024-50808

    SeaCms 13.1 is vulnerable to code injection in the notification module of the member message notification module in the backend user module, due to unsafe handling of the "notify" variable in admin_notify.php.... Read more

    Affected Products : seacms
    • Published: Nov. 08, 2024
    • Modified: Mar. 28, 2025

  • 4.3

    MEDIUM
    CVE-2024-21994

    StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9 are susceptible to a Denial of Service (DoS) vulnerability. Successful exploit by an authenticated attacker could lead to a service crash.... Read more

    Affected Products : storagegrid
    • Published: Nov. 08, 2024
    • Modified: Nov. 12, 2024
Showing 20 of 293625 Results