Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2023-35690 In RGXDestroyHWRTData of rgxta3d.c, there is a possible arbitrary code execution due to an uncaught exception. This could lead to local escalation of privilege in the kernel with no additional execut... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-45569 Memory corruption while parsing the ML IE due to invalid frame content. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-1576 SQL Injection vulnerability in MegaBIP software allows attacker to obtain site administrator privileges, including access to the administration panel and the ability to change the administrator passwo... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-1577 Remote Code Execution vulnerability in MegaBIP software allows to execute arbitrary code on the server without requiring authentication by savingΒ crafted by the attacker PHP code to one of the website... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-1659 Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the server (including a PHP code file) without an authentication.Β This issue affects MegaBIP software vers... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-40078 In a2dp_vendor_opus_decoder_decode_packet of a2dp_vendor_opus_decoder.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to paired device escalation of privileg... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-35343 Certain Anpviz products allow unauthenticated users to download arbitrary files from the device's filesystem via a HTTP GET request to the /playback/ URI. This affects IPC-D250, IPC-D260, IPC-B850, IP... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-36575 A Prototype Pollution issue in getsetprop 1.1.0 allows an attacker to execute arbitrary code via global.accessor. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-40082 In modify_for_next_stage of fdt.rs, there is a possible way to render KASLR ineffective due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution pr... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-37036 CWE-787: Out-of-bounds Write vulnerability exists that could result in an authentication bypass when sending a malformed POST request and particular configuration parameters are set. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-5168 Improper access control vulnerability in Prodys' Quantum Audio codec affecting versions 2.3.4t and below. This vulnerability could allow an unauthenticated user to bypass authentication entirely and e... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-35563 CDG-Server-V5.6.2.126.139 and earlier was discovered to contain a SQL injection vulnerability via the permissionId parameter in CDGTempPermissions. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-35361 MTab Bookmark v1.9.5 has an SQL injection vulnerability in /LinkStore/getIcon. An attacker can execute arbitrary SQL statements through this vulnerability without requiring any user rights. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-38294 ALCASAR before 3.6.1 allows email_registration_back.php remote code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-24294 A Prototype Pollution issue in Blackprint @blackprint/engine v.0.9.0 allows an attacker to execute arbitrary code via the _utils.setDeepProperty function of engine.min.js. | 9.8 | CRITICAL | β | 0 |
| CVE-2026-31608 In the Linux kernel, the following vulnerability has been resolved: smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() smb_direct_flush_send_list() already ... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-36081 Westermo EDW-100 devices through 2024-05-03 allow an unauthenticated user to download a configuration file containing a cleartext password. NOTE: this is a serial-to-Ethernet converter that should not... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-36080 Westermo EDW-100 devices through 2024-05-03 have a hidden root user account with a hardcoded password that cannot be changed. NOTE: this is a serial-to-Ethernet converter that should not be placed at ... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-38295 ALCASAR before 3.6.1 allows still_connected.php remote code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2018-14839 LG N1A1 NAS 3718.510 is affected by: Remote Command Execution. The impact is: execute arbitrary code (remote). The attack vector is: HTTP POST with parameters. | 9.8 | CRITICAL | KEV | 0 |
| CVE-2024-34919 An arbitrary file upload vulnerability in the component \modstudent\controller.php of Pisay Online E-Learning System using PHP/MySQL v1.0 allows attackers to execute arbitrary code via uploading a cra... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-1393 An unauthenticated remote attacker can use hard-coded credentials to gain full administration privileges on the affected product. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-21508 Versions of the package mysql2 before 3.9.4 are vulnerable to Remote Code Execution (RCE) via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-33567 Improper Privilege Management vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager allows Privilege Escalation.This issue affects Barcode Scanner with Inventory & Order Manager:... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-32511 Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce allows Privilege Escalation.This issue affects Simple Registration for WooCommerce: from n/a through 1.5.6... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-31290 Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege Escalation.This issue affects Demo My WordPress: from n/a through 1.0.9.1. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-4146 In lunary-ai/lunary version v1.2.13, an incorrect authorization vulnerability exists that allows unauthorized users to access and manipulate projects within an organization they should not have access... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-19301 A vulnerability in the vae_admin_rule database table of vaeThink v1.0.1 allows attackers to execute arbitrary code via a crafted payload in the condition parameter. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-33527 In MB connect line mbDIALUP versions <= 3.9R0.0 a remote attacker can send a specifically crafted HTTP request to the service running with NT AUTHORITY\SYSTEM that will not correctly validate the inpu... | 9.8 | CRITICAL | β | 0 |
| CVE-2020-19302 An arbitrary file upload vulnerability in the avatar upload function of vaeThink v1.0.1 allows attackers to open a webshell via changing uploaded file suffixes to ".php". | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37232 A stack overflow vulnerability occurs in Atomicparsley 20210124.204813.840499f through APar_read64() in src/util.cpp due to the lack of buffer size of uint32_buffer while reading more bytes in APar_re... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37165 A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the H... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-27952 Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37160 A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware valida... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-22388 There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37161 A buffer overflow issue was discovered in the HMI3 Control Panel contained within the Swisslog Healthcare Nexus Panel, operated by released versions of software before Nexus Software 7.2.5.7. A buffer... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37162 A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. If an attacker sends a malforme... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37163 An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus operated by released versions of software before Nexus Software 7.2.5.7. The device has two user account... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37164 A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. In the tcpTxThread function, th... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37167 An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using th... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-1609 Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Ex... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37832 A SQL injection vulnerability exists in version 3.0.2 of Hotel Druid when SQLite is being used as the application database. A malicious attacker can issue SQL commands to the SQLite database through t... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-1610 Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Ex... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-22387 There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to remotely execute commands. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-29971 If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission. *This bug only affects F... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37595 In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input checks for a FILECONTENTS_RANGE File Contents Request PDU. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37594 In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input checks for a FILECONTENTS_SIZE File Contents Request PDU. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-37843 The resolution SAML SSO apps for Atlassian products allow a remote attacker to login to a user account when only the username is known (i.e., no other authentication is provided). The fixed versions a... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-32810 crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more t... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-22389 There is a Permission Control Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed. | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.