Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.1

MEDIUM

CVE-2024-21535

Versions of the package markdown-to-jsx before 7.4.0 are vulnerable to Cross-site Scripting (XSS) via the src property due to improper input sanitization. An attacker can execute arbitrary code by injecting a malicious iframe element in the markdown....

Affected Products : markdown-to-jsx
Published: Oct. 15, 2024

Modified: Oct. 17, 2024
8.8

HIGH

CVE-2024-9971

The specific query functionality in the FlowMaster BPM Plus from NewType does not properly restrict user input, allowing remote attackers with regular privileges to inject SQL commands to read, modify, or delete database contents....

Affected Products : flowmaster_bpm_plus
Published: Oct. 15, 2024

Modified: Oct. 17, 2024
8.8

HIGH

CVE-2024-9970

The FlowMaster BPM Plus system from NewType has a privilege escalation vulnerability. Remote attackers with regular privileges can elevate their privileges to administrator by tampering with a specific cookie....

Affected Products : flowmaster_bpm_plus
Published: Oct. 15, 2024

Modified: Oct. 17, 2024
7.8

HIGH

CVE-2024-43503

Microsoft SharePoint Elevation of Privilege Vulnerability...

Affected Products : sharepoint_server sharepoint_server_2016 sharepoint_server_2019
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.5

HIGH

CVE-2024-43506

BranchCache Denial of Service Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +9 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
5.5

MEDIUM

CVE-2024-43508

Windows Graphics Component Information Disclosure Vulnerability...

Affected Products : windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 windows_11_24h2
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.8

HIGH

CVE-2024-43509

Windows Graphics Component Elevation of Privilege Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +10 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.0

HIGH

CVE-2024-43511

Windows Kernel Elevation of Privilege Vulnerability...

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 windows_10_1507 +5 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.8

HIGH

CVE-2024-45710

SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability. This requires a low privilege account and local access to the affected node machine....

Affected Products : solarwinds_platform
Published: Oct. 16, 2024

Modified: Oct. 17, 2024
8.8

HIGH

CVE-2024-45711

SolarWinds Serv-U is vulnerable to a directory traversal vulnerability where remote code execution is possible depending on privileges given to the authenticated user. This issue requires a user to be authenticated and this is present when software env...

Affected Products : serv-u
Published: Oct. 16, 2024

Modified: Oct. 17, 2024
7.5

HIGH

CVE-2024-43512

Windows Standards-Based Storage Management Service Denial of Service Vulnerability...

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows windows_server_2012_r2
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
6.4

MEDIUM

CVE-2024-43513

BitLocker Security Feature Bypass Vulnerability...

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +7 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.8

HIGH

CVE-2024-43514

Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability...

Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +7 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.8

HIGH

CVE-2024-43516

Windows Secure Kernel Mode Elevation of Privilege Vulnerability...

Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 windows_10_1507 +5 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
8.8

HIGH

CVE-2024-43599

Remote Desktop Client Remote Code Execution Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +9 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
8.8

HIGH

CVE-2024-43517

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +10 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.5

HIGH

CVE-2024-43515

Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 +10 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
6.8

MEDIUM

CVE-2024-43523

Windows Mobile Broadband Driver Remote Code Execution Vulnerability...

Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_21h2 windows_11_22h2 windows windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 +1 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
6.8

MEDIUM

CVE-2024-43524

Windows Mobile Broadband Driver Remote Code Execution Vulnerability...

Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_21h2 windows_11_22h2 windows windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 +1 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024
7.5

HIGH

CVE-2024-43545

Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability...

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2 +1 more products
Published: Oct. 08, 2024

Modified: Oct. 17, 2024

Showing 20 of 291526 Results

Latest CVE Feed

6.1

8.8

8.8

7.8

7.5

5.5

7.8

7.0

7.8

8.8

7.5

6.4

7.8

7.8

8.8

8.8

7.5

6.8

6.8

7.5

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable