Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-28325 |
|
Vulnerability in CVE-2024-28325 (CVE-2024-28325)
vulnerability in CVE-2024-28325 (CVE-2024-28325). Data can be tampered with by attackers.
|
| CVE-2024-28328 |
|
Command Injection in CVE-2024-28328 (CVE-2024-28328)
command injection in CVE-2024-28328 (CVE-2024-28328). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26925 |
|
Vulnerability in linux (CVE-2024-26925)
vulnerability in linux (CVE-2024-26925). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26923 |
|
Vulnerability in linux (CVE-2024-26923)
vulnerability in linux (CVE-2024-26923). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-20359 KEV |
|
[KEV] Code Injection in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20359)
code injection in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20359). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-4040 KEV |
|
[KEV] Vulnerability in crushftp (CVE-2024-4040)
vulnerability in crushftp (CVE-2024-4040). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-20353 KEV |
|
[KEV] Vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20353)
vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20353). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-28699 |
|
Code Injection in CVE-2024-28699 (CVE-2024-28699)
code injection in CVE-2024-28699 (CVE-2024-28699). Successful exploitation can lead to full system takeover.
|
| CVE-2024-28722 |
|
Cross-Site Scripting (XSS) in CVE-2024-28722 (CVE-2024-28722)
cross-site scripting in CVE-2024-28722 (CVE-2024-28722). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-32206 |
|
Cross-Site Scripting (XSS) in wuzhicms (CVE-2024-32206)
cross-site scripting in wuzhicms (CVE-2024-32206). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-32409 |
|
An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script.
An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script.
|
| CVE-2024-2961 |
|
Out-of-Bounds Write in c (CVE-2024-2961)
out-of-bounds write in c (CVE-2024-2961). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-32161 |
|
jizhiCMS 2.5 suffers from a File upload vulnerability.
jizhiCMS 2.5 suffers from a File upload vulnerability.
|
| CVE-2024-26889 |
|
Vulnerability in linux (CVE-2024-26889)
vulnerability in linux (CVE-2024-26889). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26884 |
|
Buffer Overflow in linux (CVE-2024-26884)
vulnerability in linux (CVE-2024-26884). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26898 |
|
Use-After-Free in dos (CVE-2024-26898)
vulnerability in dos (CVE-2024-26898). Successful exploitation can lead to full system takeover. Exploitable via ``skbtxq``.
|
| CVE-2024-26907 |
|
Use-After-Free in c (CVE-2024-26907)
vulnerability in c (CVE-2024-26907). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26895 |
|
Use-After-Free in csharp (CVE-2024-26895)
vulnerability in csharp (CVE-2024-26895). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26878 |
|
Vulnerability in linux (CVE-2024-26878)
vulnerability in linux (CVE-2024-26878). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26903 |
|
Vulnerability in linux (CVE-2024-26903)
vulnerability in linux (CVE-2024-26903). Risk of unauthorized operations or information disclosure. Exploitable via ``HCI_CMD``.
|
| CVE-2024-26880 |
|
Vulnerability in c (CVE-2024-26880)
vulnerability in c (CVE-2024-26880). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26897 |
|
Vulnerability in linux (CVE-2024-26897)
vulnerability in linux (CVE-2024-26897). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26901 |
|
Vulnerability in c (CVE-2024-26901)
vulnerability in c (CVE-2024-26901). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26885 |
|
Buffer Overflow in linux (CVE-2024-26885)
vulnerability in linux (CVE-2024-26885). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26883 |
|
Buffer Overflow in debian (CVE-2024-26883)
vulnerability in debian (CVE-2024-26883). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26855 |
|
Vulnerability in linux (CVE-2024-26855)
vulnerability in linux (CVE-2024-26855). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26861 |
|
Vulnerability in c (CVE-2024-26861)
vulnerability in c (CVE-2024-26861). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26859 |
|
Vulnerability in linux (CVE-2024-26859)
vulnerability in linux (CVE-2024-26859). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26851 |
|
Out-of-Bounds Write in c (CVE-2024-26851)
out-of-bounds write in c (CVE-2024-26851). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26863 |
|
Vulnerability in c (CVE-2024-26863)
vulnerability in c (CVE-2024-26863). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26852 |
|
Use-After-Free in c (CVE-2024-26852)
vulnerability in c (CVE-2024-26852). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26875 |
|
Use-After-Free in c (CVE-2024-26875)
vulnerability in c (CVE-2024-26875). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26872 |
|
Use-After-Free in linux (CVE-2024-26872)
vulnerability in linux (CVE-2024-26872). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26886 |
|
Use-After-Free in linux (CVE-2024-26886)
vulnerability in linux (CVE-2024-26886). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26894 |
|
Vulnerability in linux (CVE-2024-26894)
vulnerability in linux (CVE-2024-26894). Confidential information can be exposed externally.
|
| CVE-2024-3400 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2024-3400)
vulnerability in Palo alto networks palo-alto-networks (CVE-2024-3400). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-51142 |
|
Information Disclosure in zkteco (CVE-2023-51142)
vulnerability in zkteco (CVE-2023-51142). Confidential information can be exposed externally.
|
| CVE-2024-3272 KEV |
|
[KEV] Vulnerability in D-link multiple-nas-devices (CVE-2024-3272)
vulnerability in D-link multiple-nas-devices (CVE-2024-3272). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-3273 KEV |
|
[KEV] Command Injection in D-link multiple-nas-devices (CVE-2024-3273)
command injection in D-link multiple-nas-devices (CVE-2024-3273). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-23077 |
|
Vulnerability in jfree (CVE-2024-23077)
vulnerability in jfree (CVE-2024-23077). Confidential information can be exposed externally.
|
| CVE-2023-52070 |
|
Out-of-Bounds Read in jfree (CVE-2023-52070)
vulnerability in jfree (CVE-2023-52070). Successful exploitation can lead to full system takeover.
|
| CVE-2021-47211 |
|
Vulnerability in linux (CVE-2021-47211)
vulnerability in linux (CVE-2021-47211). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-3566 |
|
Command Injection in node (CVE-2024-3566)
command injection in node (CVE-2024-3566). Successful exploitation can lead to full system takeover. Exploitable via ``cmd.exe``. Mitigation: upgrade to `18.19.0` or later.
|
| CVE-2024-26816 |
|
Vulnerability in linux (CVE-2024-26816)
vulnerability in linux (CVE-2024-26816). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-23083 |
|
Vulnerability in CVE-2024-23083 (CVE-2024-23083)
vulnerability in CVE-2024-23083 (CVE-2024-23083). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-23080 |
|
Vulnerability in CVE-2024-23080 (CVE-2024-23080)
vulnerability in CVE-2024-23080 (CVE-2024-23080). Confidential information can be exposed externally.
|
| CVE-2024-23076 |
|
Vulnerability in jfree (CVE-2024-23076)
vulnerability in jfree (CVE-2024-23076). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-26257 |
|
Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
|
| CVE-2024-22949 |
|
Out-of-Bounds Read in jfree (CVE-2024-22949)
vulnerability in jfree (CVE-2024-22949). Confidential information can be exposed externally.
|
| CVE-2024-23079 |
|
Vulnerability in CVE-2024-23079 (CVE-2024-23079)
vulnerability in CVE-2024-23079 (CVE-2024-23079). Risk of unauthorized operations or information disclosure.
|