Microsoft ODBC Driver for SQL Server code execution | CVE-2023-32025
NAME__________Microsoft ODBC Driver for SQL Server code executionPlatforms Affected:Microsoft ODBC Driver 18 for SQL Server Microsoft ODBC Driver 17 for...
Vulnerabilities
Ashlar-Vellum Cobalt buffer overflow | CVE-2023-35710
NAME__________Ashlar-Vellum Cobalt buffer overflowPlatforms Affected:Ashlar-Vellum CobaltRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Ashlar-Vellum Cobalt is vulnerable to a stack-based buffer overflow, caused by improper...
Ashlar-Vellum Cobalt code execution | CVE-2023-34311
NAME__________Ashlar-Vellum Cobalt code executionPlatforms Affected:Ashlar-Vellum CobaltRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Ashlar-Vellum Cobalt could allow a remote attacker to execute arbitrary code on...
Fortinet FortiOS and FortiProxy denial of service | CVE-2023-33306
NAME__________Fortinet FortiOS and FortiProxy denial of servicePlatforms Affected:Fortinet FortiOS 7.0.0 Fortinet FortiProxy 7.0.0 Fortinet FortiOS 7.2.0 Fortinet FortiProxy 7.2.0 Fortinet...
snappy-java denial of service | CVE-2023-34454
NAME__________snappy-java denial of servicePlatforms Affected:snappy-java snappy-java 1.1.10.0Risk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________snappy-java is vulnerable to a denial of service,...
Microsoft ODBC and OLE DB code execution | CVE-2023-29349
NAME__________Microsoft ODBC and OLE DB code executionPlatforms Affected:Microsoft ODBC Driver 18 for SQL Server Microsoft ODBC Driver 17 for SQL...
Ashlar-Vellum Cobalt buffer overflow | CVE-2023-35709
NAME__________Ashlar-Vellum Cobalt buffer overflowPlatforms Affected:Ashlar-Vellum CobaltRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Ashlar-Vellum Cobalt is vulnerable to a heap-based buffer overflow, caused by improper...
MStore API plugin for WordPress cross-site request forgery | CVE-2023-3200
NAME__________MStore API plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress MStore API Plugin for WordPress 3.9.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________MStore API plugin...
MStore API plugin for WordPress cross-site request forgery | CVE-2023-3198
NAME__________MStore API plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress MStore API Plugin for WordPress 3.9.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________MStore API plugin...
Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients privilege escalation | CVE-2023-34121
NAME__________Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients privilege escalationPlatforms Affected:Zoom Zoom for Windows clients 5.13.2 Zoom Zoom...
MStore API plugin for WordPress cross-site request forgery | CVE-2023-3201
NAME__________MStore API plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress MStore API Plugin for WordPress 3.9.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________MStore API plugin...
MStore API plugin for WordPress cross-site request forgery | CVE-2023-3203
NAME__________MStore API plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress MStore API Plugin for WordPress 3.9.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________MStore API plugin...
Contiki-NG buffer overflow | CVE-2023-34101
NAME__________Contiki-NG buffer overflowPlatforms Affected:Contiki-NG Contiki-NG 4.8Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Contiki-NG is vulnerable to a stack-based buffer overflow, caused by improper bounds...
Jenkins Team Concert Plugin information disclosure |
NAME__________Jenkins Team Concert Plugin information disclosurePlatforms Affected:Jenkins Team Concert Plugin 2.4.1Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Team Concert could allow a remote...
Jenkins AWS CodeCommit Trigger Plugin information disclosure | CVE-2023-35147
NAME__________Jenkins AWS CodeCommit Trigger Plugin information disclosurePlatforms Affected:Jenkins AWS CodeCommit Trigger Plugin 3.0.12Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins AWS CodeCommit Trigger Plugin...
Office Hours module for Drupal cross-site scripting |
NAME__________Office Hours module for Drupal cross-site scriptingPlatforms Affected:Drupal Office Hours module for Drupal 8.x-1.5Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Office Hours module for...
Grav code execution | CVE-2023-34252
NAME__________Grav code executionPlatforms Affected:Grav Grav 1.7.40Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Grav could allow a remote authenticated attacker to execute arbitrary code on...
Jenkins Dimensions Plugin information disclosure | CVE-2023-32262
NAME__________Jenkins Dimensions Plugin information disclosurePlatforms Affected:Jenkins Dimensions Plugin 0.9.3Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins Dimensions Plugin could allow a remote authenticated attacker...
Grav code execution | CVE-2023-34253
NAME__________Grav code executionPlatforms Affected:Grav Grav 1.7.40Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Grav could allow a remote authenticated attacker to execute arbitrary code on...
Jenkins Digital.ai App Management Publisher Plugin security bypass | CVE-2023-35149
NAME__________Jenkins Digital.ai App Management Publisher Plugin security bypassPlatforms Affected:Jenkins Digital.ai App Management Publisher Plugin 2.6Risk Level:4.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins Digital.ai App...
Jenkins Digital.ai App Management Publisher Plugin cross-site request forgery | CVE-2023-35148
NAME__________Jenkins Digital.ai App Management Publisher Plugin cross-site request forgeryPlatforms Affected:Jenkins Digital.ai App Management Publisher Plugin 2.6Risk Level:4.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Digital.ai...
Grav code execution | CVE-2023-34448
NAME__________Grav code executionPlatforms Affected:Grav Grav 1.7.40Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Grav could allow a remote authenticated attacker to execute arbitrary code on...
Palo Alto Networks GlobalProtect App for Windows privilege escalation | CVE-2023-0009
NAME__________Palo Alto Networks GlobalProtect App for Windows privilege escalationPlatforms Affected:Palo Alto Networks GlobalProtect app for Windows 5.2 Palo Alto Networks...
Jenkins Dimensions Plugin information disclosure | CVE-2023-32261
NAME__________Jenkins Dimensions Plugin information disclosurePlatforms Affected:Jenkins Dimensions Plugin 0.9.3Risk Level:4.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Dimensions Plugin could allow a remote authenticated attacker...
