Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-47684 |
|
Vulnerability in linux (CVE-2024-47684)
vulnerability in linux (CVE-2024-47684). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-47685 |
|
Vulnerability in c (CVE-2024-47685)
vulnerability in c (CVE-2024-47685). Confidential information can be exposed externally.
|
| CVE-2024-47705 |
|
Vulnerability in linux (CVE-2024-47705)
vulnerability in linux (CVE-2024-47705). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-47697 |
|
Out-of-Bounds Write in debian (CVE-2024-47697)
out-of-bounds write in debian (CVE-2024-47697). Successful exploitation can lead to full system takeover.
|
| CVE-2024-47696 |
|
Use-After-Free in c (CVE-2024-47696)
vulnerability in c (CVE-2024-47696). Successful exploitation can lead to full system takeover.
|
| CVE-2024-40711 KEV |
|
[KEV] Unsafe Deserialization in Veeam backup-replication (CVE-2024-40711)
vulnerability in Veeam backup-replication (CVE-2024-40711). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9143 |
|
Out-of-Bounds Read in CVE-2024-9143 (CVE-2024-9143)
vulnerability in CVE-2024-9143 (CVE-2024-9143). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-46605 |
|
Cross-Site Scripting (XSS) in piwigo (CVE-2024-46605)
cross-site scripting in piwigo (CVE-2024-46605). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-46606 |
|
Cross-Site Scripting (XSS) in piwigo (CVE-2024-46606)
cross-site scripting in piwigo (CVE-2024-46606). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-49195 |
|
Out-of-Bounds Write in trustedfirmware (CVE-2024-49195)
out-of-bounds write in trustedfirmware (CVE-2024-49195). Successful exploitation can lead to full system takeover.
|
| CVE-2024-21262 |
|
Authorization Flaw in c (CVE-2024-21262)
vulnerability in c (CVE-2024-21262). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-35584 |
|
SQL Injection in sqli (CVE-2024-35584)
SQL injection in sqli (CVE-2024-35584). Successful exploitation can lead to full system takeover.
|
| CVE-2023-31493 |
|
Code Injection in zoneminder (CVE-2023-31493)
code injection in zoneminder (CVE-2023-31493). Confidential information can be exposed externally.
|
| CVE-2024-9680 KEV |
|
[KEV] Use-After-Free in Mozilla firefox (CVE-2024-9680)
vulnerability in Mozilla firefox (CVE-2024-9680). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-30088 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-30088)
vulnerability in Microsoft windows (CVE-2024-30088). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-28987 KEV |
|
[KEV] Vulnerability in Solarwinds web-help-desk (CVE-2024-28987)
vulnerability in Solarwinds web-help-desk (CVE-2024-28987). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-50780 |
|
Vulnerability in apache (CVE-2023-50780)
vulnerability in apache (CVE-2023-50780). Successful exploitation can lead to full system takeover.
|
| CVE-2024-48774 |
|
Vulnerability in CVE-2024-48774 (CVE-2024-48774)
vulnerability in CVE-2024-48774 (CVE-2024-48774). Confidential information can be exposed externally.
|
| CVE-2024-48772 |
|
Authorization Flaw in c (CVE-2024-48772)
vulnerability in c (CVE-2024-48772). Confidential information can be exposed externally.
|
| CVE-2024-48778 |
|
Authorization Flaw in CVE-2024-48778 (CVE-2024-48778)
vulnerability in CVE-2024-48778 (CVE-2024-48778). Confidential information can be exposed externally.
|
| CVE-2024-48784 |
|
Authorization Flaw in CVE-2024-48784 (CVE-2024-48784)
vulnerability in CVE-2024-48784 (CVE-2024-48784). Successful exploitation can lead to full system takeover.
|
| CVE-2024-48786 |
|
Authorization Flaw in CVE-2024-48786 (CVE-2024-48786)
vulnerability in CVE-2024-48786 (CVE-2024-48786). Confidential information can be exposed externally.
|
| CVE-2024-48787 |
|
Authorization Flaw in CVE-2024-48787 (CVE-2024-48787)
vulnerability in CVE-2024-48787 (CVE-2024-48787). Confidential information can be exposed externally.
|
| CVE-2024-48769 |
|
Authorization Flaw in CVE-2024-48769 (CVE-2024-48769)
vulnerability in CVE-2024-48769 (CVE-2024-48769). Confidential information can be exposed externally.
|
| CVE-2024-48768 |
|
Vulnerability in CVE-2024-48768 (CVE-2024-48768)
vulnerability in CVE-2024-48768 (CVE-2024-48768). Confidential information can be exposed externally.
|
| CVE-2024-48771 |
|
Vulnerability in CVE-2024-48771 (CVE-2024-48771)
vulnerability in CVE-2024-48771 (CVE-2024-48771). Confidential information can be exposed externally.
|
| CVE-2024-48773 |
|
Vulnerability in CVE-2024-48773 (CVE-2024-48773)
vulnerability in CVE-2024-48773 (CVE-2024-48773). Confidential information can be exposed externally.
|
| CVE-2024-48775 |
|
Vulnerability in CVE-2024-48775 (CVE-2024-48775)
vulnerability in CVE-2024-48775 (CVE-2024-48775). Confidential information can be exposed externally.
|
| CVE-2024-48776 |
|
Vulnerability in CVE-2024-48776 (CVE-2024-48776)
vulnerability in CVE-2024-48776 (CVE-2024-48776). Confidential information can be exposed externally.
|
| CVE-2024-48777 |
|
Vulnerability in CVE-2024-48777 (CVE-2024-48777)
vulnerability in CVE-2024-48777 (CVE-2024-48777). Confidential information can be exposed externally.
|
| CVE-2024-44807 |
|
Vulnerability in CVE-2024-44807 (CVE-2024-44807)
vulnerability in CVE-2024-44807 (CVE-2024-44807). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-46532 |
|
SQL Injection in sqli (CVE-2024-46532)
SQL injection in sqli (CVE-2024-46532). Successful exploitation can lead to full system takeover.
|
| CVE-2024-46088 |
|
Unrestricted File Upload in CVE-2024-46088 (CVE-2024-46088)
vulnerability in CVE-2024-46088 (CVE-2024-46088). Successful exploitation can lead to full system takeover.
|
| CVE-2024-4658 |
|
SQL Injection in sqli (CVE-2024-4658)
SQL injection in sqli (CVE-2024-4658). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-9286 |
|
SQL Injection in sqli (CVE-2024-9286)
SQL injection in sqli (CVE-2024-9286). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-47660 |
|
Vulnerability in linux (CVE-2024-47660)
vulnerability in linux (CVE-2024-47660). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-9675 |
|
Path Traversal in buildah-project (CVE-2024-9675)
path traversal in buildah-project (CVE-2024-9675). Successful exploitation can lead to full system takeover. Exploitable via ``RUN``.
|
| CVE-2024-9379 KEV |
|
[KEV] SQL Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379)
SQL injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9380 KEV |
|
[KEV] Command Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380)
command injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-23113 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2024-23113)
vulnerability in Fortinet multiple-products (CVE-2024-23113). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43590 |
|
Visual C++ Redistributable Installer Elevation of Privilege Vulnerability
Visual C++ Redistributable Installer Elevation of Privilege Vulnerability
|
| CVE-2024-43572 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-43572)
vulnerability in Microsoft windows (CVE-2024-43572). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43573 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Microsoft windows (CVE-2024-43573)
cross-site scripting in Microsoft windows (CVE-2024-43573). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43047 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2024-43047)
vulnerability in Qualcomm multiple-chipsets (CVE-2024-43047). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-45874 |
|
Code Injection in CVE-2024-45874 (CVE-2024-45874)
code injection in CVE-2024-45874 (CVE-2024-45874). Successful exploitation can lead to full system takeover.
|
| CVE-2024-45873 |
|
Code Injection in CVE-2024-45873 (CVE-2024-45873)
code injection in CVE-2024-45873 (CVE-2024-45873). Successful exploitation can lead to full system takeover.
|
| CVE-2024-42831 |
|
Cross-Site Scripting (XSS) in CVE-2024-42831 (CVE-2024-42831)
cross-site scripting in CVE-2024-42831 (CVE-2024-42831). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-28709 |
|
Cross-Site Scripting (XSS) in limesurvey (CVE-2024-28709)
cross-site scripting in limesurvey (CVE-2024-28709). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-28710 |
|
Cross-Site Scripting (XSS) in limesurvey (CVE-2024-28710)
cross-site scripting in limesurvey (CVE-2024-28710). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45932 |
|
Cross-Site Scripting (XSS) in webkul (CVE-2024-45932)
cross-site scripting in webkul (CVE-2024-45932). Risk of unauthorized operations or information disclosure.
|