Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2024-43049 Memory corruption while invoking IOCTL calls from user space to set generic private command inside WLAN driver. | 7.8 | HIGH | — | 0 |
| CVE-2024-43050 Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver. | 7.8 | HIGH | — | 0 |
| CVE-2006-3724 Unspecified vulnerability in JD Edwards HTML Server for Oracle OneWorld Tools EnterpriseOne Tools 8.95 and 8.96 has unknown impact and attack vectors, aka Oracle Vuln# JDE01. | N/A | NONE | — | 0 |
| CVE-2024-43052 Memory corruption while processing API calls to NPU with invalid input. | 7.8 | HIGH | — | 0 |
| CVE-2024-43053 Memory corruption while invoking IOCTL calls from user space to read WLAN target diagnostic information. | 7.8 | HIGH | — | 0 |
| CVE-2024-12015 The 'Project Manager' WordPress Plugin is affected by an authenticated SQL injection vulnerability in the 'orderby' parameter in the '/pm/v2/activites' route. | 7.7 | HIGH | — | 0 |
| CVE-2024-52452 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in eduNEXT Open edX LMS allows Reflected XSS.This issue affects Open edX LMS: from n/a through 2.6.1. | 7.1 | HIGH | — | 0 |
| CVE-2024-46907 In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an authenticated low-privileged user (at least Report Viewer permissions required) to achieve privilege escalati... | 8.8 | HIGH | — | 0 |
| CVE-2024-46908 In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an authenticated low-privileged user (at least Report Viewer permissions required) to achieve privilege escala... | 8.8 | HIGH | — | 0 |
| CVE-2024-46909 In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage this vulnerability to execute code in the context of the service account. | 9.8 | CRITICAL | — | 0 |
| CVE-2024-52732 Incorrect access control in wms-Warehouse management system-zeqp v2.20.9.1 due to the token value of the zeqp system being reused. | 9.1 | CRITICAL | — | 0 |
| CVE-2024-8785 In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage NmAPI.exe to create or change an existing registry value in registry path HKEY_LOCAL_MACHINE\SOFTWAR... | 9.8 | CRITICAL | — | 0 |
| CVE-2024-53981 python-multipart is a streaming multipart parser for Python. When parsing form data, python-multipart skips line breaks (CR \r or LF \n) in front of the first boundary and any tailing bytes after the ... | 7.5 | HIGH | — | 0 |
| CVE-2024-53984 Nanopb is a small code-size Protocol Buffers implementation. When the compile time option PB_ENABLE_MALLOC is enabled, the message contains at least one field with FT_POINTER field type, custom strea... | 4.3 | MEDIUM | — | 0 |
| CVE-2024-49763 PlexRipper is a cross-platform media downloader for Plex. PlexRipper’s open CORS policy allows attackers to gain sensitive information from PlexRipper by getting the user to access the attacker’s doma... | N/A | NONE | — | 0 |
| CVE-2024-53259 quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IP_PMTUDISC_DO, the kernel would then ret... | 6.5 | MEDIUM | — | 0 |
| CVE-2024-53992 unzip-bot is a Telegram bot to extract various types of archives. Users could exploit unsanitized inputs to inject malicious commands that are executed through subprocess.Popen with shell=True. Attack... | N/A | NONE | — | 0 |
| CVE-2024-53990 The AsyncHttpClient (AHC) library allows Java applications to easily execute HTTP requests and asynchronously process HTTP responses. When making any HTTP request, the automatically enabled and self-m... | N/A | NONE | — | 0 |
| CVE-2024-53484 Ever Traduora 0.20.0 and below is vulnerable to Privilege Escalation due to the use of a hard-coded JWT signing key. | 8.8 | HIGH | — | 0 |
| CVE-2024-53617 A Cross Site Scripting vulnerability in LibrePhotos before commit 32237 allows attackers to takeover any account via uploading an HTML file on behalf of the admin user using IDOR in file upload. | 4.8 | MEDIUM | — | 0 |
| CVE-2024-5890 ServiceNow has addressed an HTML injection vulnerability that was identified in the Now Platform. This vulnerability could potentially enable an unauthenticated user to modify a web page or redirect u... | 4.3 | MEDIUM | — | 0 |
| CVE-2018-9380 In l2c_lcc_proc_pdu of l2c_fcr.cc, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges n... | 8.8 | HIGH | — | 0 |
| CVE-2018-9381 In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution priv... | 7.5 | HIGH | — | 0 |
| CVE-2018-9376 In rpc_msg_handler and related handlers of drivers/misc/mediatek/eccci/port_rpc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of priv... | 6.7 | MEDIUM | — | 0 |
| CVE-2018-9413 In handle_notification_response of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges n... | 8.8 | HIGH | — | 0 |
| CVE-2018-9414 In gattServerSendResponseNative of com_android_bluetooth_gatt.cpp, there is a possible out of bounds stack write due to a missing bounds check. This could lead to local escalation of privilege with Us... | 7.8 | HIGH | — | 0 |
| CVE-2024-49581 Restricted Views backed objects (OSV1) could be bypassed under specific circumstances due to a software bug, this could have allowed users that didn't have permission to see such objects to view them ... | 6.5 | MEDIUM | — | 0 |
| CVE-2018-9418 In handle_app_cur_val_response of dtif_rc.cc, there is a possible stack buffer overflow due to a missing bounds check. This could lead to remote code execution with no additional execution privileges ... | 9.8 | CRITICAL | — | 0 |
| CVE-2024-53375 An Authenticated Remote Code Execution (RCE) vulnerability affects the TP-Link Archer router series. A vulnerability exists in the "tmp_get_sites" function of the HomeShield functionality provided by ... | 8.0 | HIGH | — | 0 |
| CVE-2018-9423 In ihevcd_parse_slice_header of ihevcd_parse_slice_header.c there is a possible out of bound read due to missing bounds check. This could lead to denial of service with no additional execution privile... | 6.5 | MEDIUM | — | 0 |
| CVE-2018-9426 In RsaKeyPairGenerator::getNumberOfIterations of RSAKeyPairGenerator.java, an incorrect implementation could cause weak RSA key pairs being generated. This could lead to crypto vulnerability with no ... | 7.5 | HIGH | — | 0 |
| CVE-2018-9429 In buildImageItemsIfPossible of ItemTable.cpp there is a possible out of bound read due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed.... | 6.5 | MEDIUM | — | 0 |
| CVE-2018-9430 In prop2cfg of btif_storage.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User ... | 9.8 | CRITICAL | — | 0 |
| CVE-2018-9431 In OSUInfo of OSUInfo.java, there is a possible escalation of privilege due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges neede... | 7.8 | HIGH | — | 0 |
| CVE-2018-9435 In gatt_process_error_rsp of gatt_cl.cc, there is a possible out of bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges ne... | 5.5 | MEDIUM | — | 0 |
| CVE-2018-9441 In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileg... | 5.5 | MEDIUM | — | 0 |
| CVE-2018-9449 In process_service_search_attr_rsp of sdp_discovery.cc, there is a possible out of bound read due to a missing bounds check. This could lead to local information disclosure with no additional executio... | 5.5 | MEDIUM | — | 0 |
| CVE-2024-45068 Authentication credentials leakage vulnerability in Hitachi Ops Center Common Services within Hitachi Ops Center OVA. This issue affects Hitachi Ops Center Common Services: from 10.9.3-00 before 11.... | 7.1 | HIGH | — | 0 |
| CVE-2024-9694 The CMSMasters Elementor Addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple widgets in all versions up to, and including, 1.14.7 due to insufficient input sanitizatio... | 6.4 | MEDIUM | — | 0 |
| CVE-2024-49412 Improper input validation in Settings prior to SMR Dec-2024 Release 1 allows local attackers to broadcast signal for discovering Bluetooth on Galaxy Watch. | 5.5 | MEDIUM | — | 0 |
| CVE-2024-49418 Insufficient verification of url authenticity in GamingHub prior to version 6.1.03.4 in Korea, 7.1.02.4 in Global allows remote attackers to enable JavaScript in its webview. | 6.5 | MEDIUM | — | 0 |
| CVE-2024-49419 Insufficient verification of url authenticity in GamingHub prior to version 6.1.03.4 in Korea, 7.1.02.4 in Global allows remote attackers to load an arbitrary URL in its webview. | 4.3 | MEDIUM | — | 0 |
| CVE-2024-49420 Improper handling of responses in GamingHub prior to version 6.1.04.6 in Korea, 7.1.03.7 in Global allows remote attackers to launch arbitrary activity. | 7.5 | HIGH | — | 0 |
| CVE-2024-25035 IBM Cognos Controller 11.0.0 and 11.0.1 exposes server details that could allow an attacker to obtain information of the application environment to conduct further attacks. | 5.3 | MEDIUM | — | 0 |
| CVE-2024-11461 The Form Data Collector plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 2.2.3 due to insufficient input sanitization... | 6.1 | MEDIUM | — | 0 |
| CVE-2024-11707 The My auctions allegro plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 3.6.17 due to insufficient input sanitizatio... | 6.1 | MEDIUM | — | 0 |
| CVE-2024-11732 The BP Profile Shortcodes Extra plugin for WordPress is vulnerable to time-based SQL Injection via the ‘tab’ parameter in all versions up to, and including, 2.6.0 due to insufficient escaping on the u... | 6.5 | MEDIUM | — | 0 |
| CVE-2024-11805 The Quick License Manager – WooCommerce Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'submit_qlm_products' parameter in all versions up to, and including, 2.4.17... | 6.1 | MEDIUM | — | 0 |
| CVE-2024-11866 The BMLT Tabbed Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bmlt_tabbed_map' shortcode in all versions up to, and including, 1.1.8 due to insufficient input... | 6.4 | MEDIUM | — | 0 |
| CVE-2024-11325 The AWeber Forms by Optin Cat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and in... | 5.2 | MEDIUM | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.