8.6

CVSS3.1

CVE-2024-30249 - Cloudburst Network DoS in RakNet connection handling

Cloudburst Network provides network components used within Cloudburst projects. A vulnerability in versions prior to `1.0.0.CR1-20240330.101522-15` impacts publicly accessible software depending on the affected versions of Network and allows an attacker to use Network as an amplification vector for…

📅 Published: April 4, 2024, 6:42 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

6.1

CVSS3.1

CVE-2024-29193 - GHSL-2023-207 gotortc DOM-based Cross-site Scripting vulnerability

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to DOM-based cross-site scripting. The index page (`index.html`) shows the available streams by fetching the API in the client side. Then, it uses `Object.entries` to iterate over the result whose first item (`name`)…

📅 Published: April 4, 2024, 6:35 p.m. 🔄 Last Modified: Sept. 2, 2025, 4:51 p.m.

7.1

CVSS3.1

CVE-2024-25007 - Ericsson Network Manager - Improper Neutralization of Formula Elements Vulnerability

Ericsson Network Manager (ENM), versions prior to 23.1, contains a vulnerability in the export function of application log where Improper Neutralization of Formula Elements in a CSV File can lead to code execution or information disclosure. There is limited impact to integrity and availability. Th…

📅 Published: April 4, 2024, 6:25 p.m. 🔄 Last Modified: Nov. 21, 2024, 9 a.m.

8.8

CVSS3.1

CVE-2024-29192 - GHSL-2023-206 gotortc Cross-Site Request Forgery vulnerability

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to Cross-Site Request Forgery. The `/api/config` endpoint allows one to modify the existing configuration with user-supplied values. While the API is only allowing localhost to interact without authentication, an att…

📅 Published: April 4, 2024, 6:08 p.m. 🔄 Last Modified: Sept. 2, 2025, 4:54 p.m.

8.5

CVSS3.1

CVE-2024-25699 - Portal for ArcGIS has an invalid authentication vulnerability

There is a difficult‑to‑exploit improper authentication issue in the Home application for Esri Portal for ArcGIS versions 11.2 and below on Windows and Linux, and ArcGIS Enterprise versions 11.1 and below on Kubernetes, which under unique circumstances could allow a remote, authenticated attacker w…

📅 Published: April 4, 2024, 5:56 p.m. 🔄 Last Modified: Feb. 13, 2026, 7:41 p.m.

0.0

CVE-2024-25704 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because this item is scheduled to be patched at a future time.

📅 Published: April 4, 2024, 5:56 p.m. 🔄 Last Modified: April 25, 2024, 7:15 p.m.

5.4

CVSS3.1

CVE-2024-25705 - Cross site scripting issue in embed widget

There is a cross‑site scripting (XSS) vulnerability in Esri Portal for ArcGIS Experience Builder versions 11.1 and below on Windows and Linux that allows a remote, authenticated attacker with low‑privileged access to create a crafted link which, when clicked, could potentially execute arbitrary Jav…

📅 Published: April 4, 2024, 5:55 p.m. 🔄 Last Modified: Feb. 13, 2026, 7:41 p.m.

0.0

CVE-2024-25703 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because this item is scheduled to be patched at a future time.

📅 Published: April 4, 2024, 5:55 p.m. 🔄 Last Modified: April 25, 2024, 7:15 p.m.

6.1

CVSS3.1

CVE-2024-25706 - HTMLi at createFolder Content Injection

There is an HTML injection vulnerability in Esri Portal for ArcGIS 11.0 and below that may allow a remote, unauthenticated attacker to craft a URL which, when clicked, could potentially generate a message that may entice an unsuspecting victim to visit an arbitrary website. This could simplify phis…

📅 Published: April 4, 2024, 5:55 p.m. 🔄 Last Modified: April 10, 2025, 7:15 p.m.

6.1

CVSS3.1

CVE-2024-25709 - Self-XSS style in move item dialog

There is a stored Cross‑Site Scripting (XSS) vulnerability in Esri Portal for ArcGIS versions 11.2 and below that may allow a remote, authenticated attacker to create a crafted link that can be saved as a new location when moving an existing item, which could potentially execute arbitrary JavaScrip…

📅 Published: April 4, 2024, 5:55 p.m. 🔄 Last Modified: Feb. 13, 2026, 7:41 p.m.
Total resulsts: 349182
Page 10431 of 34,919
« previous page » next page
Filters