Microsoft Windows Message Queuing denial of service | CVE-2023-32044
NAME__________Microsoft Windows Message Queuing denial of servicePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32...
Vulnerabilities
Microsoft Windows Connected User Experiences and Telemetry privilege escalation | CVE-2023-35320
NAME__________Microsoft Windows Connected User Experiences and Telemetry privilege escalationPlatforms Affected:Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows 10...
Microsoft Windows Store Install Service privilege escalation | CVE-2023-35347
NAME__________Microsoft Windows Store Install Service privilege escalationPlatforms Affected:Microsoft Windows Server 2022 Microsoft Windows Server (Server Core installation) 2022 Microsoft Windows...
SAP S/4HANA security bypass | CVE-2023-35870
NAME__________SAP S/4HANA security bypassPlatforms Affected:SAP S/4HANA 104 SAP S/4HANA 105 SAP S/4HANA 106 SAP S/4HANA 107Risk Level:6.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________SAP S/4HANA...
Microsoft Windows DNS Server code execution | CVE-2023-35345
NAME__________Microsoft Windows DNS Server code executionPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft...
ELECOM wireless LAN routers and wireless LAN repeaters information disclosure | CVE-2023-37563
NAME__________ELECOM wireless LAN routers and wireless LAN repeaters information disclosurePlatforms Affected:ELECOM WRC-1167GHBK-S 1.03 ELECOM WRC-1167GEBK-S 1.03 ELECOM WRC-1167FEBK-S 1.04 ELECOM...
Microsoft Windows OLE Automation information disclosure | CVE-2023-32042
NAME__________Microsoft Windows OLE Automation information disclosurePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft...
SAP NetWeaver AS ABAP and ABAP Platform security bypass | CVE-2023-35874
NAME__________SAP NetWeaver AS ABAP and ABAP Platform security bypassPlatforms Affected:SAP NetWeaver AS ABAP Platform KRNL64NUC 7.22 SAP NetWeaver AS ABAP...
Mobile Pack plugin for WordPress cross-site request forgery | CVE-2023-37391
NAME__________Mobile Pack plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Mobile Pack Plugin for WordPress 3.4.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mobile Pack plugin...
Microsoft Windows Remote Procedure Call Runtime denial of service | CVE-2023-35314
NAME__________Microsoft Windows Remote Procedure Call Runtime denial of servicePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows...
Siemens RUGGEDCOM ROX devices man-in-the-middle | CVE-2023-36749
NAME__________Siemens RUGGEDCOM ROX devices man-in-the-middlePlatforms Affected:Siemens RUGGEDCOM ROX MX5000 2.14.0 Siemens RUGGEDCOM ROX RX1400 2.14.0 Siemens RUGGEDCOM ROX RX1500 2.14.0...
Adobe InDesign information disclosure | CVE-2023-29309
NAME__________Adobe InDesign information disclosurePlatforms Affected:Adobe InDesign ID18.3 Adobe InDesign ID17.4.1Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Adobe InDesign could allow a remote attacker to...
Microsoft Windows PostScript and PCL6 Class Printer Driver information disclosure | CVE-2023-35324
NAME__________Microsoft Windows PostScript and PCL6 Class Printer Driver information disclosurePlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft...
Microsoft Windows Remote Desktop security bypass | CVE-2023-35352
NAME__________Microsoft Windows Remote Desktop security bypassPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2019 Microsoft...
Microsoft Office Graphics code execution | CVE-2023-33149
NAME__________Microsoft Office Graphics code executionPlatforms Affected:Microsoft Office 2013 SP1 x32 Microsoft Office 2013 SP1 x64 Microsoft Office 2016 x32 Microsoft...
Mozilla Firefox denial of service | CVE-2023-3600
NAME__________Mozilla Firefox denial of servicePlatforms Affected:Mozilla Firefox 115.0.1 Mozilla Firefox ESR 115.0.1Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mozilla Firefox is vulnerable to...
Microsoft Windows Pragmatic General Multicast (PGM) code execution | CVE-2023-35297
NAME__________Microsoft Windows Pragmatic General Multicast (PGM) code executionPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10...
yt-dlp information disclosure | CVE-2023-35934
NAME__________yt-dlp information disclosurePlatforms Affected:yt-dlp yt-dlpRisk Level:6.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________yt-dlp could allow a remote attacker to obtain sensitive information. By sending a...
Drogon response splitting | CVE-2023-26138
NAME__________Drogon response splittingPlatforms Affected:Drogon Drogon 1.8.4 Drogon Drogon 1.8.3 Drogon Drogon 1.8.2 Drogon Drogon 1.8.1 Drogon Drogon 1.8.0Risk Level:7.2Exploitability:UnprovenConsequences:Data Manipulation...
Sourcecodester Shopping Website SQL injection | CVE-2023-3534
NAME__________Sourcecodester Shopping Website SQL injectionPlatforms Affected:Sourcecodester Shopping Website 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Sourcecodester Shopping Website is vulnerable to SQL injection. A...
Novu open redirect | CVE-2023-35948
NAME__________Novu open redirectPlatforms Affected:Novu Novu 0.15Risk Level:5.4Exploitability:UnprovenConsequences:Other DESCRIPTION__________Novu could allow a remote attacker to conduct phishing attacks, caused by an...
Metersphere code execution | CVE-2023-35937
NAME__________Metersphere code executionPlatforms Affected:metersphere metersphere 2.10.1 LTSRisk Level:6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Metersphere could allow a remote authenticated attacker to execute arbitrary code...
ThinuTech ThinuCMS cross-site scripting | CVE-2023-3542
NAME__________ThinuTech ThinuCMS cross-site scriptingPlatforms Affected:ThinuTech ThinuCMS 1.5Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ThinuTech ThinuCMS is vulnerable to cross-site scripting, caused by improper validation...
Samsung Mobile directory traversal | CVE-2023-30678
NAME__________Samsung Mobile directory traversalPlatforms Affected:Samsung mobile devicesRisk Level:5.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Samsung Mobile could allow a local attacker to traverse directories on...
