5.9

CVSS3.1

CVE-2024-27268 - IBM WebSphere Application Server Liberty denial of service

IBM WebSphere Application Server Liberty 18.0.0.2 through 24.0.0.4 is vulnerable to a denial of service, caused by sending a specially crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory resources. IBM X-Force ID: 284574.

📅 Published: April 4, 2024, 5:26 p.m. 🔄 Last Modified: April 10, 2025, 9:05 p.m.

8.6

CVSS3.1

CVE-2023-3454 -

Remote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch.

📅 Published: April 4, 2024, 5:03 p.m. 🔄 Last Modified: Feb. 13, 2025, 5:16 p.m.

7.7

CVSS3.1

CVE-2024-30263 - The PDF Viewer macro can be used to view PDF attachments with restricted access

macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. Users with edit rights can access restricted PDF attachments using the PDF Viewer macro, just by passing the attachment URL as the value of the ``file`` parameter. Users with view rights can access restricted PDF attachments if t…

📅 Published: April 4, 2024, 4:51 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

6.3

CVSS3.1

CVE-2024-31215 - Mobile Security Framework (MobSF) vulnerable to Server-Side Request Forgery (SSRF) in firebase data…

Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A SSRF vulnerability in firebase database check logic. The attacker can cause the server to make a connection to internal-only services within the organization’s infrastruct…

📅 Published: April 4, 2024, 4:10 p.m. 🔄 Last Modified: June 30, 2025, 1:04 p.m.

5.3

CVSS3.1

CVE-2024-31209 - OpenID Connect client Atom Exhaustion in provider configuration worker ets table location

oidcc is the OpenID Connect client library for Erlang. Denial of Service (DoS) by Atom exhaustion is possible by calling `oidcc_provider_configuration_worker:get_provider_configuration/1` or `oidcc_provider_configuration_worker:get_jwks/1`. This issue has been patched in version(s)`3.1.2` & `3.2.0-…

📅 Published: April 4, 2024, 4:04 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

3.3

CVSS3.1

CVE-2024-30266 - Wasmtime vulnerable to panic when using a dropped extenref-typed element segment

wasmtime is a runtime for WebAssembly. The 19.0.0 release of Wasmtime contains a regression introduced during its development which can lead to a guest WebAssembly module causing a panic in the host runtime. A valid WebAssembly module, when executed at runtime, may cause this panic. This vulnerabil…

📅 Published: April 4, 2024, 3:42 p.m. 🔄 Last Modified: Sept. 2, 2025, 2:46 p.m.

6.5

CVSS3.1

CVE-2024-2103 - Inclusion of Undocumented Features

Inclusion of undocumented features vulnerability accessible when logged on with a privileged access level on the following Schweitzer Engineering Laboratories relays could allow the relay to behave unpredictably: SEL-700BT Motor Bus Transfer Relay, SEL-700G Generator Protection Relay, SEL-710-5 Mo…

📅 Published: April 4, 2024, 3:18 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-3299 - Out-Of-Bounds Write, Use of Uninitialized Resource and Use-After-Free vulnerabilities exist in the …

Out-Of-Bounds Write, Use of Uninitialized Resource and Use-After-Free vulnerabilities exist in the file reading procedure in eDrawings from Release SOLIDWORKS 2023 through Release SOLIDWORKS 2024. These vulnerabilities could allow an attacker to execute arbitrary code while opening a specially craf…

📅 Published: April 4, 2024, 3:13 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-3298 - Out-Of-Bounds Write and Type Confusion vulnerabilities exist in the DWG and DXF file reading proced…

Out-Of-Bounds Write and Type Confusion vulnerabilities exist in the file reading procedure in eDrawings from Release SOLIDWORKS 2023 through Release SOLIDWORKS 2024. These vulnerabilities could allow an attacker to execute arbitrary code while opening a specially crafted DWG or DXF. NOTE: this vuln…

📅 Published: April 4, 2024, 3:11 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

7.4

CVSS3.1

CVE-2024-3116 - Remote Code Execution Vulnerability through the validate binary path API in pgAdmin 4

pgAdmin <= 8.4 is affected by a Remote Code Execution (RCE) vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the un…

📅 Published: April 4, 2024, 2:59 p.m. 🔄 Last Modified: March 17, 2025, 4:43 p.m.
Total resulsts: 349182
Page 10433 of 34,919
« previous page » next page
Filters