8.8

CVSS3.1

CVE-2024-12053 -

Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: Dec. 3, 2024, 6:50 p.m. πŸ”„ Last Modified: Jan. 2, 2025, 5:47 p.m.

6.7

CVSS3.1

CVE-2024-52548 - Lorex 2K Indoor Wi-Fi Security Camera - Code signing bypass

An attacker who can execute arbitrary Operating Systems commands, can bypass code signing enforcements in the kernel, and execute arbitrary native code. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:29 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 10:15 p.m.

7.2

CVSS3.1

CVE-2024-52547 - Lorex 2K Indoor Wi-Fi Security Camera - Stack buffer overflow

An authenticated attacker can trigger a stack based buffer overflow in the DHIP Service (TCP port 80). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:25 p.m. πŸ”„ Last Modified: Sept. 5, 2025, 9:15 a.m.

5.3

CVSS3.1

CVE-2024-52546 - Lorex 2K Indoor Wi-Fi Security Camera - Null pointer dereference

An unauthenticated attacker can perform a null pointer dereference in the DHIP Service (UDP port 37810). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:23 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 9:15 p.m.

6.5

CVSS3.1

CVE-2024-52545 - Lorex 2K Indoor Wi-Fi Security Camera - Out of bounds heap read

An unauthenticated attacker can perform an out of bounds heap read in the IQ Service (TCP port 9876). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:20 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 9:15 p.m.

9.8

CVSS3.1

CVE-2024-52544 - Lorex 2K Indoor Wi-Fi Security Camera - Stack buffer overflow

An unauthenticated attacker can trigger a stack based buffer overflow in the DP Service (TCP port 3500). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:18 p.m. πŸ”„ Last Modified: Sept. 5, 2025, 9:15 a.m.

5.9

CVSS3.1

CVE-2024-41775 - IBM Cognos Controller information disclosure

IBM Cognos Controller 11.0.0 and 11.0.1Β uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

πŸ“… Published: Dec. 3, 2024, 5:13 p.m. πŸ”„ Last Modified: Dec. 11, 2024, 3:25 a.m.

5.5

CVSS3.1

CVE-2024-25020 - IBM Cognos Controller file upload

IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page. Attackers can make use of this weakness and upload malicious executable files into the system and can be sent to victims for performi…

πŸ“… Published: Dec. 3, 2024, 5:12 p.m. πŸ”„ Last Modified: Dec. 11, 2024, 3:28 a.m.

6.5

CVSS3.1

CVE-2024-41776 - IBM Cognos Controller cross-site request forgery

IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

πŸ“… Published: Dec. 3, 2024, 5:11 p.m. πŸ”„ Last Modified: Dec. 11, 2024, 3:24 a.m.

7.5

CVSS3.1

CVE-2024-41777 - IBM Cognos Controller hard coded credentials

IBM Cognos Controller 11.0.0 and 11.0.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

πŸ“… Published: Dec. 3, 2024, 5:10 p.m. πŸ”„ Last Modified: Dec. 11, 2024, 3:22 a.m.
Total resulsts: 342251
Page 6943 of 34,226
Β« previous page Β» next page
Filters