4.3

CVSS3.1

CVE-2024-23597 -

Cross-site request forgery (CSRF) vulnerability exists in TvRock 0.9t8a. If a logged-in user of TVRock accesses a specially crafted page, unintended operations may be performed. Note that the developer was unreachable, therefore, users should consider stop using TvRock 0.9t8a.

πŸ“… Published: May 1, 2024, 1 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.4

CVSS3.1

CVE-2024-28775 - IBM WebSphere Automation cross-site scripting

IBM WebSphere Automation 1.7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 285648.

πŸ“… Published: May 1, 2024, 12:55 p.m. πŸ”„ Last Modified: April 11, 2025, 2:09 p.m.

5.9

CVSS3.1

CVE-2024-31413 -

Free of pointer not at start of buffer vulnerability exists in CX-One CX-One CXONE-AL[][]D-V4 (The version which was installed with a DVD ver. 4.61.1 or lower, and was updated through CX-One V4 auto update in January 2024 or prior) and Sysmac Studio SYSMAC-SE2[][][] (The version which was installed…

πŸ“… Published: May 1, 2024, 12:54 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-31412 -

Out-of-bounds read vulnerability exists in CX-Programmer included in CX-One CXONE-AL[][]D-V4 Ver. 9.81 or lower. Opening a specially crafted project file may lead to information disclosure and/or the product being crashed.

πŸ“… Published: May 1, 2024, 12:52 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.3

CVSS3.1

CVE-2024-4368 -

Use after free in Dawn in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: May 1, 2024, 12:50 p.m. πŸ”„ Last Modified: March 13, 2025, 8:15 p.m.

8.8

CVSS3.1

CVE-2024-4331 -

Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: May 1, 2024, 12:50 p.m. πŸ”„ Last Modified: Feb. 13, 2025, 5:53 p.m.

7.5

CVSS3.1

CVE-2024-4060 -

Use after free in Dawn in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: May 1, 2024, 12:49 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 6:16 p.m.

6.5

CVSS3.1

CVE-2024-4059 -

Out of bounds read in V8 API in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to leak cross-site data via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: May 1, 2024, 12:49 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 6:16 p.m.

9

CVSS3.1

CVE-2024-4058 -

Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

πŸ“… Published: May 1, 2024, 12:49 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 6:16 p.m.

5.9

CVSS3.1

CVE-2022-38386 - IBM Cloud Pak for Security information disclosure

IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite for Software 1.10.12.0 through 1.10.19.0 does not set the SameSite attribute for sensitive cookies which could allow an attacker to obtain sensitive information using man-in-the-middle techniques. IBM X-Force ID: 23…

πŸ“… Published: May 1, 2024, 12:48 p.m. πŸ”„ Last Modified: Aug. 13, 2025, 1:10 p.m.
Total resulsts: 349182
Page 10098 of 34,919
Β« previous page Β» next page
Filters