Cisco IOS XR Software security bypass | CVE-2023-20190
NAME__________Cisco IOS XR Software security bypassPlatforms Affected:Cisco IOS XR 7.4 Cisco IOS XR 7.5 Cisco IOS XR software 7.9 Cisco...
CVE
Cisco IOS XR code execution | CVE-2023-20236
NAME__________Cisco IOS XR code executionPlatforms Affected:Cisco IOS XR software 7.9 Cisco IOS XR 7.10Risk Level:6.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco IOS XR could...
WP User Control Plugin for WordPress security bypass | CVE-2023-4915
NAME__________WP User Control Plugin for WordPress security bypassPlatforms Affected:WordPress WP User Control Plugin for WordPress 1.5.3Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________WP User...
Cisco IOS XR Software denial of service | CVE-2023-20233
NAME__________Cisco IOS XR Software denial of servicePlatforms Affected:Cisco IOS XR 7.4 Cisco IOS XR 7.5 Cisco IOS XR software 7.9...
Daily Vulnerability Trends: Thu Sep 14 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-4039 A failure in the -fstack-protector feature in GCC-based toolchains that target...
Samsung Exynos Mobile Processor and Wearable Processor denial of service | CVE-2023-37377
NAME__________Samsung Exynos Mobile Processor and Wearable Processor denial of servicePlatforms Affected:Samsung Exynos Mobile Processor Samsung Exynos Wearable ProcessorRisk Level:2Exploitability:UnprovenConsequences:Denial of...
Apple iOS and iPadOS code execution | CVE-2023-41990
NAME__________Apple iOS and iPadOS code executionPlatforms Affected:Apple iOS 16.2 Apple iPadOS 16.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple iOS and iPadOS could allow...
Argo CD denial of service | CVE-2023-40584
NAME__________Argo CD denial of servicePlatforms Affected:Argo Project Argo CD 2.6.13 Argo Project Argo CD 2.7.11 Argo Project Argo CD 2.8.0...
Cockpit CMS file upload | CVE-2023-41564
NAME__________Cockpit CMS file uploadPlatforms Affected:Cockpit-HQ Cockpit 2.6.3Risk Level:5.3Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Cockpit CMS could allow a remote attacker to upload arbitrary files,...
Simple Download Counter plugin for WordPress cross-site scripting | CVE-2023-4838
NAME__________Simple Download Counter plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Simple Download Counter Plugin for WordPress 1.6Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Download...
Apple macOS Monterey information disclosure | CVE-2023-40440
NAME__________Apple macOS Monterey information disclosurePlatforms Affected:Apple macOS Monterey 12.6.7Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple macOS Monterey could allow a remote attacker to...
NVIDIA BlueField Data Processing Unit privilege escalation | CVE-2023-25519
NAME__________NVIDIA BlueField Data Processing Unit privilege escalationPlatforms Affected:NVIDIA BlueField Data Processing UnitRisk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________NVIDIA BlueField Data Processing Unit could...
Adobe Experience Manager cross-site scripting | CVE-2023-38215
NAME__________Adobe Experience Manager cross-site scriptingPlatforms Affected:Adobe Experience Manager Cloud Service (CS) Adobe Experience Manager 6.5.18.0Risk Level:5.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Adobe Experience Manager...
Samsung Exynos Mobile Processor, Automotive Processor, and Modem denial of service | CVE-2023-37368
NAME__________Samsung Exynos Mobile Processor, Automotive Processor, and Modem denial of servicePlatforms Affected:Samsung Exynos Mobile Processor Samsung Automotive Processor Samsung ModemRisk...
Microsoft Visual Studio privilege escalation | CVE-2023-36759
NAME__________Microsoft Visual Studio privilege escalationPlatforms Affected:Microsoft Visual Studio 2019 16.11 Microsoft Visual Studio 2022 17.2 Microsoft Visual Studio 2022 17.4...
Apple macOS Big Sur information disclosure | CVE-2023-40442
NAME__________Apple macOS Big Sur information disclosurePlatforms Affected:Apple macOS Big Sur 11.7.8Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple macOS Big Sur could allow a...
Siemens QMS Automotive security bypass | CVE-2023-40728
NAME__________Siemens QMS Automotive security bypassPlatforms Affected:Siemens QMS AutomotiveRisk Level:7.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Siemens QMS Automotive could allow a local attacker to bypass...
Crow response splitting | CVE-2023-26142
NAME__________Crow response splittingPlatforms Affected:Crow Crow 1.0+5Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Crow is vulnerable to HTTP response splitting attacks, caused by a CRLF...
Blood Bank & Donor Management cross-site scripting | CVE-2023-41575
NAME__________Blood Bank & Donor Management cross-site scriptingPlatforms Affected:PHPGurukul Blood Bank & Donor Management 2.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Blood Bank & Donor...
SAP NetWeaver information disclosure | CVE-2023-41367
NAME__________SAP NetWeaver information disclosurePlatforms Affected:SAP NetWeaver 7.50Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SAP NetWeaver could allow a remote attacker to obtain sensitive information,...
SAP BusinessObjects Business Intelligence Platform information disclosure | CVE-2023-37489
NAME__________SAP BusinessObjects Business Intelligence Platform information disclosurePlatforms Affected:SAP BusinessObjects Business Intelligence Platform 430Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SAP BusinessObjects Business Intelligence Platform...
Microsoft Windows Kernel privilege escalation | CVE-2023-38139
NAME__________Microsoft Windows Kernel privilege escalationPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows...
Google Chrome security bypass | CVE-2023-4905
NAME__________Google Chrome security bypassPlatforms Affected:Google Chrome 117.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security restrictions,...
Siemens QMS Automotive information disclosure | CVE-2023-40724
NAME__________Siemens QMS Automotive information disclosurePlatforms Affected:Siemens QMS AutomotiveRisk Level:7.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Siemens QMS Automotive could allow a local authenticated attacker to...
