Apple visionOS spoofing | CVE-2024-23262
NAME__________Apple visionOS spoofingPlatforms Affected:Apple iPadOS 16.7.5 Apple iOS 16.7.5 Apple visionOS 1.0 Apple macOS Sonoma 14.3 Apple macOS Ventura 13.6.4...
CVE
Apple macOS Monterey denial of service | CVE-2024-23201
NAME__________Apple macOS Monterey denial of servicePlatforms Affected:Apple macOS Monterey 12.7.3Risk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Apple macOS Monterey is vulnerable to a...
ImageSharp security bypass | CVE-2024-27929
NAME__________ImageSharp security bypassPlatforms Affected:Six Labors ImageSharp 3.1.2 Six Labors ImageSharp 2.1.6Risk Level:7.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________ImageSharp could allow a remote attacker to...
Deno spoofing | CVE-2024-27936
NAME__________Deno spoofingPlatforms Affected:Deno Deno 1.32.1 Deno Deno 1.40.5Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Deno could allow a remote attacker to conduct spoofing attacks,...
HPE Aruba ArubaOS Wi-Fi Controllers denial of service | CVE-2024-25614
NAME__________HPE Aruba ArubaOS Wi-Fi Controllers denial of servicePlatforms Affected:Aruba Networks ArubaOS 10.5.0.1 Aruba Networks ArubaOS 10.4.0.3 Aruba Networks ArubaOS 8.11.2.0...
Deno weak security | CVE-2024-27935
NAME__________Deno weak securityPlatforms Affected:Deno Deno 1.35.1 Deno Deno 1.36.2Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Deno could provide weaker than expected security, caused by...
Deno directory traversal | CVE-2024-27931
NAME__________Deno directory traversalPlatforms Affected:Deno Deno 1.41.0Risk Level:5.8Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Deno could allow a remote attacker to traverse directories on the system,...
HPE Aruba ArubaOS Wi-Fi Controllers command execution | CVE-2024-25613
NAME__________HPE Aruba ArubaOS Wi-Fi Controllers command executionPlatforms Affected:Aruba Networks ArubaOS 10.5.0.1 Aruba Networks ArubaOS 10.4.0.3 Aruba Networks ArubaOS 8.11.2.0 Aruba...
CasaOS-UserService file upload | CVE-2024-24765
NAME__________CasaOS-UserService file uploadPlatforms Affected:IceWhale CasaOS-UserService 0.4.4.3 IceWhale CasaOS-UserService 0.4.6 IceWhale CasaOS-UserService 0.4.5Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CasaOS-UserService could allow a remote attacker...
BROTHER printers and scanners security bypass | CVE-2024-22475
NAME__________BROTHER printers and scanners security bypassPlatforms Affected:Brother MFC-9970CDW Brother MFC-J4410DW J Brother MFC-J4410DW K Brother MFC-J6973CDW Brother MFC-J4420DW Brother MFC-8710DW...
BROTHER printers and scanners security bypass | CVE-2024-21824
NAME__________BROTHER printers and scanners security bypassPlatforms Affected:Brother MFC-9970CDW Brother MFC-J4410DW J Brother MFC-J4410DW K Brother MFC-J6973CDW Brother MFC-J4420DW Brother MFC-8710DW...
HPE Aruba ArubaOS Wi-Fi Controllers command execution | CVE-2024-25611
NAME__________HPE Aruba ArubaOS Wi-Fi Controllers command executionPlatforms Affected:Aruba Networks ArubaOS 10.5.0.1 Aruba Networks ArubaOS 10.4.0.3 Aruba Networks ArubaOS 8.11.2.0 Aruba...
VMware ESXi code execution | CVE-2024-22254
NAME__________VMware ESXi code executionPlatforms Affected:VMware ESXi 7.0 VMware Cloud Foundation 4.0 VMware ESXi 8.0 VMware Cloud Foundation 5.0Risk Level:7.9Exploitability:UnprovenConsequences:Gain Access...
HPE Aruba ArubaOS Wi-Fi Controllers denial of service | CVE-2024-25615
NAME__________HPE Aruba ArubaOS Wi-Fi Controllers denial of servicePlatforms Affected:Aruba Networks ArubaOS 10.5.0.1 Aruba Networks ArubaOS 10.4.0.3 Aruba Networks ArubaOS 8.11.2.0...
RSSHub cross-site scripting | CVE-2024-27926
NAME__________RSSHub cross-site scriptingPlatforms Affected:RSSHub RSSHubRisk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________RSSHub is vulnerable to cross-site scripting, caused by improper validation of user-supplied input....
Jenkins docker-build-step Plugin cross-site request forgery | CVE-2024-2215
NAME__________Jenkins docker-build-step Plugin cross-site request forgeryPlatforms Affected:Jenkins docker-build-step Plugin 2.11Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins docker-build-step Plugin is vulnerable to cross-site request...
HPE Aruba ArubaOS Wi-Fi Controllers command execution | CVE-2024-25612
NAME__________HPE Aruba ArubaOS Wi-Fi Controllers command executionPlatforms Affected:Aruba Networks ArubaOS 10.5.0.1 Aruba Networks ArubaOS 10.4.0.3 Aruba Networks ArubaOS 8.11.2.0 Aruba...
RSSHub server-side request forgery | CVE-2024-27927
NAME__________RSSHub server-side request forgeryPlatforms Affected:RSSHub RSSHubRisk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________RSSHub is vulnerable to server-side request forgery, caused by a flaw in...
CasaOS-UserService information disclosure | CVE-2024-24766
NAME__________CasaOS-UserService information disclosurePlatforms Affected:IceWhale CasaOS-UserService 0.4.4.3 IceWhale CasaOS-UserService 0.4.6 IceWhale CasaOS-UserService 0.4.5Risk Level:6.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________CasaOS-UserService could allow a local attacker...
VMware ESXi, Workstation, and Fusion code execution | CVE-2024-22255
NAME__________VMware ESXi, Workstation, and Fusion code executionPlatforms Affected:VMware ESXi 7.0 VMware Cloud Foundation 4.0 VMware ESXi 8.0 VMware Fusion 13...
Deno weak security | CVE-2024-27932
NAME__________Deno weak securityPlatforms Affected:Deno Deno 1.8.0 Deno Deno 1.40.3Risk Level:4.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Deno could provide weaker than expected security, caused by...
HPE Aruba ArubaOS Wi-Fi Controllers information disclosure | CVE-2024-25616
NAME__________HPE Aruba ArubaOS Wi-Fi Controllers information disclosurePlatforms Affected:Aruba Networks ArubaOS 10.5.0.1 Aruba Networks ArubaOS 10.4.0.3 Aruba Networks ArubaOS 8.11.2.0 Aruba...
Cisco AppDynamics Controller cross-site scripting | CVE-2024-20346
NAME__________Cisco AppDynamics Controller cross-site scriptingPlatforms Affected:Cisco AppDynamics ControllerRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco AppDynamics Controller is vulnerable to cross-site scripting, caused by...
Jenkins MQ Notifier Plugin information disclosure | CVE-2024-28154
NAME__________Jenkins MQ Notifier Plugin information disclosurePlatforms Affected:Jenkins MQ Notifier Plugin 1.4.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins MQ Notifier Plugin could allow a...
