VMware ESXi, Workstation, and Fusion code execution | CVE-2024-22255
NAME__________VMware ESXi, Workstation, and Fusion code executionPlatforms Affected:VMware ESXi 7.0 VMware Cloud Foundation 4.0 VMware ESXi 8.0 VMware Fusion 13...
CVE
Deno weak security | CVE-2024-27932
NAME__________Deno weak securityPlatforms Affected:Deno Deno 1.8.0 Deno Deno 1.40.3Risk Level:4.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Deno could provide weaker than expected security, caused by...
HPE Aruba ArubaOS Wi-Fi Controllers information disclosure | CVE-2024-25616
NAME__________HPE Aruba ArubaOS Wi-Fi Controllers information disclosurePlatforms Affected:Aruba Networks ArubaOS 10.5.0.1 Aruba Networks ArubaOS 10.4.0.3 Aruba Networks ArubaOS 8.11.2.0 Aruba...
Cisco AppDynamics Controller cross-site scripting | CVE-2024-20346
NAME__________Cisco AppDynamics Controller cross-site scriptingPlatforms Affected:Cisco AppDynamics ControllerRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco AppDynamics Controller is vulnerable to cross-site scripting, caused by...
Jenkins MQ Notifier Plugin information disclosure | CVE-2024-28154
NAME__________Jenkins MQ Notifier Plugin information disclosurePlatforms Affected:Jenkins MQ Notifier Plugin 1.4.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins MQ Notifier Plugin could allow a...
Cisco AppDynamics Controller directory traversal | CVE-2024-20345
NAME__________Cisco AppDynamics Controller directory traversalPlatforms Affected:Cisco AppDynamics ControllerRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cisco AppDynamics Controller could allow a remote authenticated attacker to...
Jenkins AppSpider Plugin information disclosure | CVE-2024-28155
NAME__________Jenkins AppSpider Plugin information disclosurePlatforms Affected:Jenkins AppSpider Plugin 1.0.16Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins AppSpider Plugin could allow a remote authenticated attacker...
Toyoko Inn official App man-in-the-middle | CVE-2024-27440
NAME__________Toyoko Inn official App man-in-the-middlePlatforms Affected:Toyoko Inn Toyoko Inn official AppRisk Level:4.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Toyoko Inn official App is vulnerable to...
Cisco Small Business 100, 300, and 500 Series Wireless Access Points buffer overflow | CVE-2024-20336
NAME__________Cisco Small Business 100, 300, and 500 Series Wireless Access Points buffer overflowPlatforms Affected:Cisco Small Business 500 Series Wireless Access...
Thinkst Applied Research Canarytokens information disclosure | CVE-2024-28111
NAME__________Thinkst Applied Research Canarytokens information disclosurePlatforms Affected:Thinkst CanarytokensRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Thinkst Applied Research Canarytokens could allow a remote attacker to...
Apache InLong information disclosure | CVE-2024-26580
NAME__________Apache InLong information disclosurePlatforms Affected:Apache InLong 1.4.0 Apache InLong 1.5.0 Apache InLong 1.6.0 Apache InLong 1.7.0 Apache InLong 1.8.0 Apache...
Jenkins Subversion Partial Release Manager Plugin security bypass | CVE-2024-28159
NAME__________Jenkins Subversion Partial Release Manager Plugin security bypassPlatforms Affected:Jenkins Subversion Partial Release Manager Plugin 1.0.1Risk Level:4.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Jenkins Subversion Partial...
Jenkins Subversion Partial Release Manager Plugin cross-site request forgery | CVE-2024-28158
NAME__________Jenkins Subversion Partial Release Manager Plugin cross-site request forgeryPlatforms Affected:Jenkins Subversion Partial Release Manager Plugin 1.0.1Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Subversion...
Cisco Secure Client for Linux with ISE Posture Module privilege escalation | CVE-2024-20338
NAME__________Cisco Secure Client for Linux with ISE Posture Module privilege escalationPlatforms Affected:Cisco Secure Client for LinuxRisk Level:7.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Cisco Secure...
IBM DS8900F security bypass | CVE-2023-46172
NAME__________IBM DS8900F security bypassPlatforms Affected:IBM DS8900F 89.21.31.0 IBM DS8900F 89.21.19.0 IBM DS8900F 89.30.68.0 IBM DS8900F 89.32.40.0 IBM DS8900F 89.33.48.0Risk Level:5.6Exploitability:UnprovenConsequences:Bypass...
GitLab Community Edition and Enterprise Edition privilege escalation | CVE-2024-1299
NAME__________GitLab Community Edition and Enterprise Edition privilege escalationPlatforms Affected:GitLab Community Edition 16.9.1 GitLab Community Edition 16.8.3 GitLab Community Edition 16.7.6...
IBM DS8900F information disclosure | CVE-2023-46171
NAME__________IBM DS8900F information disclosurePlatforms Affected:IBM DS8900F 89.21.31.0 IBM DS8900F 89.21.19.0 IBM DS8900F 89.30.68.0 IBM DS8900F 89.32.40.0 IBM DS8900F 89.33.48.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain...
Netgear RAX30 buffer overflow | CVE-2023-48725
NAME__________Netgear RAX30 buffer overflowPlatforms Affected:NETGEAR RAX30 NETGEAR RAX29 NETGEAR RAX28Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Netgear RAX30 is vulnerable to a stack-based buffer...
IBM DS8900F file manipulation | CVE-2023-46169
NAME__________IBM DS8900F file manipulationPlatforms Affected:IBM DS8900F 89.21.31.0 IBM DS8900F 89.21.19.0 IBM DS8900F 89.30.68.0 IBM DS8900F 89.32.40.0 IBM DS8900F 89.33.48.0Risk Level:6.5Exploitability:UnprovenConsequences:File...
FUJIFILM Business Inovation Corp cross-site request forgery | CVE-2024-27974
NAME__________FUJIFILM Business Inovation Corp cross-site request forgeryPlatforms Affected:FUJIFILM Business Innovation Corp FUJIFILM Business Innovation CorpRisk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________FUJIFILM Business Inovation...
Cisco Small Business 100, 300, and 500 Series Wireless Access Points commmand execution | CVE-2024-20335
NAME__________Cisco Small Business 100, 300, and 500 Series Wireless Access Points commmand executionPlatforms Affected:Cisco Small Business 500 Series Wireless Access...
Jenkins docker-build-step Plugin security bypass | CVE-2024-2216
NAME__________Jenkins docker-build-step Plugin security bypassPlatforms Affected:Jenkins docker-build-step Plugin 2.11Risk Level:6.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins docker-build-step Plugin could allow a remote authenticated attacker...
GitLab Community Edition and Enterprise Edition security bypass | CVE-2024-0199
NAME__________GitLab Community Edition and Enterprise Edition security bypassPlatforms Affected:GitLab Community Edition 16.9.1 GitLab Community Edition 16.8.3 GitLab Community Edition 16.7.6...
Apple macOS Sonoma, iOS and iPadOS security bypass | CVE-2024-23277
NAME__________Apple macOS Sonoma, iOS and iPadOS security bypassPlatforms Affected:Apple iPadOS 17.3 Apple iOS 17.3 Apple macOS Sonoma 14.3Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information...
