8.8

CVSS3.1

CVE-2020-8006 -

The server in Circontrol Raption through 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root. The ocpp1.5 and pwrstudio binaries on the charging station do not use a number of common exploitation mitigations. In particular…

📅 Published: April 12, 2024, midnight 🔄 Last Modified: Nov. 4, 2025, 7:15 p.m.

7.5

CVSS3.1

CVE-2024-2757 - PHP mb_encode_mimeheader runs endlessly for some inputs

In PHP 8.3.* before 8.3.5, function mb_encode_mimeheader() runs endlessly for some inputs that contain long strings of non-space characters followed by a space. This could lead to a potential DoS attack if a hostile user sends data to an application that uses this function.

📅 Published: April 12, 2024, midnight 🔄 Last Modified: Nov. 4, 2025, 6:16 p.m.

7.5

CVSS3.1

CVE-2024-3651 - Denial of Service via Quadratic Complexity in kjd/idna

A vulnerability was identified in the kjd/idna library, specifically within the `idna.encode()` function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This vulne…

📅 Published: April 12, 2024, midnight 🔄 Last Modified: Nov. 4, 2025, 10:16 p.m.

7.4

CVSS3.1

CVE-2023-5394 -

Server receiving a malformed message that where the GCL message hostname may be too large which may cause a stack overflow; resulting in possible remote code execution. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations o…

📅 Published: April 11, 2024, 7:21 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

7.4

CVSS3.1

CVE-2023-5393 -

Server receiving a malformed message that causes a disconnect to a hostname may causing a stack overflow resulting in possible remote code execution. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and ver…

📅 Published: April 11, 2024, 7:20 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2023-5392 -

C300 information leak due to an analysis feature which allows extracting more memory over the network than required by the function. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and versioning.

📅 Published: April 11, 2024, 7:19 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-30271 - Adobe Illustrator 2023 CC 27.7 Memory Corruption Out-Of-Bounds-Write Vulnerability III.

Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

📅 Published: April 11, 2024, 6:11 p.m. 🔄 Last Modified: Dec. 4, 2024, 2:57 p.m.

7.8

CVSS3.1

CVE-2024-30272 - Adobe Illustrator 2024 GIF file parsing Out-Of-Bound Write remote code execution vulnerabiity

Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

📅 Published: April 11, 2024, 6:11 p.m. 🔄 Last Modified: Dec. 4, 2024, 2:45 p.m.

7.8

CVSS3.1

CVE-2024-30273 - Adobe Illustrator 2024 PS file Parsing Stack based Buffer Overflow Remote Code Execution Vulnerabil…

Illustrator versions 28.3, 27.9.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

📅 Published: April 11, 2024, 6:11 p.m. 🔄 Last Modified: Dec. 4, 2024, 2:35 p.m.

5.9

CVSS3.1

CVE-2023-50949 - IBM QRadar improper certificate validation

IBM QRadar SIEM 7.5 could allow an unauthorized user to perform unauthorized actions due to improper certificate validation. IBM X-Force ID: 275706.

📅 Published: April 11, 2024, 4:54 p.m. 🔄 Last Modified: Nov. 21, 2024, 8:37 a.m.
Total resulsts: 349182
Page 10319 of 34,919
« previous page » next page
Filters