CVE Alert: CVE-2024-41592
Vulnerability Summary: CVE-2024-41592 DrayTek Vigor3910 devices through 4.3.2.6 have a stack-based overflow when processing query string parameters because GetCGI mishandles...
CVE
CVE Alert: CVE-2024-41586
Vulnerability Summary: CVE-2024-41586 A stack-based Buffer Overflow vulnerability in DrayTek Vigor310 devices through 4.3.2.6 allows a remote attacker to execute...
CVE Alert: CVE-2024-41583
Vulnerability Summary: CVE-2024-41583 DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to stored Cross Site Scripting (XSS) by authenticated users due...
CVE Alert: CVE-2024-41589
Vulnerability Summary: CVE-2024-41589 DrayTek Vigor310 devices through 4.3.2.6 use unencrypted HTTP for authentication requests. Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2024-41584
Vulnerability Summary: CVE-2024-41584 DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to reflected XSS by authenticated users, caused by missing validation...
CVE Alert: CVE-2024-43699
Vulnerability Summary: CVE-2024-43699 Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script AM_RegReport.aspx. An unauthenticated attacker may...
CVE Alert: CVE-2024-9266
Vulnerability Summary: CVE-2024-9266 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the...
CVE Alert: CVE-2024-41925
Vulnerability Summary: CVE-2024-41925 The web service for ONS-S8 - Spectra Aggregation Switch includes functions which do not properly validate user...
CVE Alert: CVE-2024-45367
Vulnerability Summary: CVE-2024-45367 The web server for ONS-S8 - Spectra Aggregation Switch includes an incomplete authentication process, which can lead...
CVE Alert: CVE-2024-42417
Vulnerability Summary: CVE-2024-42417 Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx. An authenticated attacker may...
CVE Alert: CVE-2024-33210
Vulnerability Summary: CVE-2024-33210 A cross-site scripting (XSS) vulnerability has been identified in Flatpress 1.3. This vulnerability allows an attacker to...
CVE Alert: CVE-2024-47806
Vulnerability Summary: CVE-2024-47806 Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a_1de8 and earlier does not check the `aud` (Audience) claim of an...
CVE Alert: CVE-2024-47807
Vulnerability Summary: CVE-2024-47807 Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a_1de8 and earlier does not check the `iss` (Issuer) claim of an...
CVE Alert: CVE-2024-47612
Vulnerability Summary: CVE-2024-47612 DataDump is a MediaWiki extension that provides dumps of wikis. Several interface messages are unescaped (more specifically,...
CVE Alert: CVE-2024-47611
Vulnerability Summary: CVE-2024-47611 XZ Utils provide a general-purpose data-compression library plus command-line tools. When built for native Windows (MinGW-w64 or...
CVE Alert: CVE-2024-20432
Vulnerability Summary: CVE-2024-20432 A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC) could...
CVE Alert: CVE-2024-20438
Vulnerability Summary: CVE-2024-20438 A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low-privileged, remote attacker...
CVE Alert: CVE-2024-20365
Vulnerability Summary: CVE-2024-20365 A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco UCS...
CVE Alert: CVE-2024-9423
Vulnerability Summary: CVE-2024-9423 Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw...
CVE Alert: CVE-2024-20441
Vulnerability Summary: CVE-2024-20441 A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote...
CVE Alert: CVE-2024-20449
Vulnerability Summary: CVE-2024-20449 A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, remote attacker with low...
CVE Alert: CVE-2024-20393
Vulnerability Summary: CVE-2024-20393 A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual...
CVE Alert: CVE-2024-20444
Vulnerability Summary: CVE-2024-20444 A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could...
CVE Alert: CVE-2024-20448
Vulnerability Summary: CVE-2024-20448 A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco Data Center Network Manager...
