9.8

CVSS3.1

CVE-2022-3180 - WPGateway <= 3.5 - Unauthenticated Privilege Escalation

The WPGateway Plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.5. This allows unauthenticated attackers to create arbitrary malicious administrator accounts.

πŸ“… Published: Feb. 11, 2025, 9:38 p.m. πŸ”„ Last Modified: June 5, 2025, 2:24 p.m.

5.3

CVSS3.1

CVE-2023-20582 -

Improper handling of invalid nested page table entries in the IOMMU may allow a privileged attacker to induce page table entry (PTE) faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest memory integrity.

πŸ“… Published: Feb. 11, 2025, 9:35 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

2.5

CVSS3.1

CVE-2023-20581 -

Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potentially leading to a loss of guest memory integrity.

πŸ“… Published: Feb. 11, 2025, 9:26 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.7

CVSS3.1

CVE-2023-20515 -

Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability.

πŸ“… Published: Feb. 11, 2025, 9:16 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

2.3

CVSS3.1

CVE-2023-20507 -

An integer overflow in the ASP could allow a privileged attacker to perform an out-of-bounds write, potentially resulting in loss of data integrity.

πŸ“… Published: Feb. 11, 2025, 9:02 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.2

CVSS3.1

CVE-2024-21924 -

SMM callout vulnerability within the AmdPlatformRasSspSmm driver could allow a ring 0 attacker to modify boot services handlers, potentially resulting in arbitrary code execution.

πŸ“… Published: Feb. 11, 2025, 8:18 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.3

CVSS3.1

CVE-2023-31361 -

A DLL hijacking vulnerability in AMD Integrated Management Technology (AIM-T) Manageability Service could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

πŸ“… Published: Feb. 11, 2025, 8:07 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.3

CVSS3.1

CVE-2023-31360 -

Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability Service installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

πŸ“… Published: Feb. 11, 2025, 8:01 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.8

CVSS3.1

CVE-2025-0911 - PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target mu…

πŸ“… Published: Feb. 11, 2025, 7:58 p.m. πŸ”„ Last Modified: Feb. 12, 2025, 7 p.m.

8.8

CVSS3.1

CVE-2025-0910 - PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit…

πŸ“… Published: Feb. 11, 2025, 7:58 p.m. πŸ”„ Last Modified: Feb. 12, 2025, 6:59 p.m.
Total resulsts: 348147
Page 6674 of 34,815
Β« previous page Β» next page
Filters