CVE

CVE Alert: CVE-2023-29121

November 6, 2024

Vulnerability Summary: CVE-2023-29121 Waybox Enel TCF Agent service could be used to get administrator’s privileges over the Waybox system. Affected...

CVE Alert: CVE-2023-29122

November 6, 2024

Vulnerability Summary: CVE-2023-29122 Under certain conditions, access to service libraries is granted to account they should not have access to....

CVE Alert: CVE-2024-51739

November 6, 2024

Vulnerability Summary: CVE-2024-51739 Combodo iTop is a simple, web based IT Service Management tool. Unauthenticated user can perform users enumeration,...

CVE Alert: CVE-2024-49377

November 6, 2024

Vulnerability Summary: CVE-2024-49377 OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.10.2...

CVE Alert: CVE-2024-9579

November 6, 2024

Vulnerability Summary: CVE-2024-9579 A potential vulnerability was discovered in certain Poly video conferencing devices. The firmware flaw does not properly...

CVE Alert: CVE-2024-49772

November 6, 2024

Vulnerability Summary: CVE-2024-49772 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. In SuiteCRM versions 7.14.4, poor input...

CVE Alert: CVE-2024-0134

November 6, 2024

Vulnerability Summary: CVE-2024-0134 NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted...

CVE Alert: CVE-2024-50332

November 6, 2024

Vulnerability Summary: CVE-2024-50332 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Insufficient input value validation causes Blind...

CVE Alert: CVE-2024-51493

November 6, 2024

Vulnerability Summary: CVE-2024-51493 OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.10.2...

CVE Alert: CVE-2024-49773

November 6, 2024

Vulnerability Summary: CVE-2024-49773 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Poor input validation in export allows...

CVE Alert: CVE-2024-50333

November 6, 2024

Vulnerability Summary: CVE-2024-50333 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. User input is not validated and...

CVE Alert: CVE-2024-49774

November 6, 2024

Vulnerability Summary: CVE-2024-49774 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. SuiteCRM relies on the blacklist of...

CVE Alert: CVE-2024-47462

November 6, 2024

Vulnerability Summary: CVE-2024-47462 An arbitrary file creation vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. Successful exploitation...

CVE Alert: CVE-2024-51740

November 6, 2024

Vulnerability Summary: CVE-2024-51740 Combodo iTop is a simple, web based IT Service Management tool. This vulnerability can be used to...

CVE Alert: CVE-2024-50335

November 6, 2024

Vulnerability Summary: CVE-2024-50335 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. The "Publish Key" field in SuiteCRM's...

CVE Alert: CVE-2024-10084

November 6, 2024

Vulnerability Summary: CVE-2024-10084 The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic Information Disclosure...

CVE Alert: CVE-2024-7995

November 6, 2024

Vulnerability Summary: CVE-2024-7995 A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due...

CVE Alert: CVE-2024-42509

November 6, 2024

Vulnerability Summary: CVE-2024-42509 Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending...

CVE Alert: CVE-2024-47463

November 6, 2024

Vulnerability Summary: CVE-2024-47463 An arbitrary file creation vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. Successful exploitation...

CVE Alert: CVE-2024-47464

November 6, 2024

Vulnerability Summary: CVE-2024-47464 An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful exploitation of this vulnerability allows...

CVE Alert: CVE-2024-47461

November 6, 2024

Vulnerability Summary: CVE-2024-47461 An authenticated command injection vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. A successful...

CVE Alert: CVE-2024-47460

November 6, 2024

Vulnerability Summary: CVE-2024-47460 Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending...

CVE Alert: CVE-2024-51665

November 5, 2024

Vulnerability Summary: CVE-2024-51665 Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor allows Server Side Request Forgery.This...

CVE Alert: CVE-2024-51582

November 5, 2024

Vulnerability Summary: CVE-2024-51582 Path Traversal: '.../...//' vulnerability in ThimPress WP Hotel Booking allows PHP Local File Inclusion.This issue affects WP...

CVE

CVE Alert: CVE-2023-29121

CVE Alert: CVE-2023-29122

CVE Alert: CVE-2024-51739

CVE Alert: CVE-2024-49377

CVE Alert: CVE-2024-9579

CVE Alert: CVE-2024-49772

CVE Alert: CVE-2024-0134

CVE Alert: CVE-2024-50332

CVE Alert: CVE-2024-51493

CVE Alert: CVE-2024-49773

CVE Alert: CVE-2024-50333

CVE Alert: CVE-2024-49774

CVE Alert: CVE-2024-47462

CVE Alert: CVE-2024-51740

CVE Alert: CVE-2024-50335

CVE Alert: CVE-2024-10084

CVE Alert: CVE-2024-7995

CVE Alert: CVE-2024-42509

CVE Alert: CVE-2024-47463

CVE Alert: CVE-2024-47464

CVE Alert: CVE-2024-47461

CVE Alert: CVE-2024-47460

CVE Alert: CVE-2024-51665

CVE Alert: CVE-2024-51582

[PLAY] – Ransomware Victim: Specialty Bolt And Screw

[PLAY] – Ransomware Victim: Trace3

[PLAY] – Ransomware Victim: Bendheim

CISA: Foreign Threat Actor Conducting Large-Scale Spearphishing Campaign with RDP Attachments

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

You may have missed