6.4

CVSS3.1

CVE-2024-51772 - Authenticated Deserialization Vulnerability in ClearPass Policy Manager Web-Based Management Interf…

An authenticated RCE vulnerability in the ClearPass Policy Manager web-based management interface allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system.

πŸ“… Published: Dec. 3, 2024, 8:08 p.m. πŸ”„ Last Modified: April 7, 2025, 3:03 p.m.

7.2

CVSS3.1

CVE-2024-51771 - Authenticated Remote Code Execution (RCE) via OGNL Injection in HPE Aruba Networking ClearPass Web-…

A vulnerability in the HPE Aruba Networking ClearPass Policy Manager web-based management interface could allow an authenticated remote threat actor to conduct a remote code execution attack. Successful exploitation could enable the attacker to run arbitrary commands on the underlying operating sys…

πŸ“… Published: Dec. 3, 2024, 8:02 p.m. πŸ”„ Last Modified: April 7, 2025, 3:02 p.m.

8.8

CVSS3.1

CVE-2024-12053 -

Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: Dec. 3, 2024, 6:50 p.m. πŸ”„ Last Modified: Jan. 2, 2025, 5:47 p.m.

6.7

CVSS3.1

CVE-2024-52548 - Lorex 2K Indoor Wi-Fi Security Camera - Code signing bypass

An attacker who can execute arbitrary Operating Systems commands, can bypass code signing enforcements in the kernel, and execute arbitrary native code. This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:29 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 10:15 p.m.

7.2

CVSS3.1

CVE-2024-52547 - Lorex 2K Indoor Wi-Fi Security Camera - Stack buffer overflow

An authenticated attacker can trigger a stack based buffer overflow in the DHIP Service (TCP port 80). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:25 p.m. πŸ”„ Last Modified: Sept. 5, 2025, 9:15 a.m.

5.3

CVSS3.1

CVE-2024-52546 - Lorex 2K Indoor Wi-Fi Security Camera - Null pointer dereference

An unauthenticated attacker can perform a null pointer dereference in the DHIP Service (UDP port 37810). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:23 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 9:15 p.m.

6.5

CVSS3.1

CVE-2024-52545 - Lorex 2K Indoor Wi-Fi Security Camera - Out of bounds heap read

An unauthenticated attacker can perform an out of bounds heap read in the IQ Service (TCP port 9876). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:20 p.m. πŸ”„ Last Modified: Dec. 3, 2024, 9:15 p.m.

9.8

CVSS3.1

CVE-2024-52544 - Lorex 2K Indoor Wi-Fi Security Camera - Stack buffer overflow

An unauthenticated attacker can trigger a stack based buffer overflow in the DP Service (TCP port 3500). This vulnerability has been resolved in firmware version 2.800.0000000.8.R.20241111.

πŸ“… Published: Dec. 3, 2024, 5:18 p.m. πŸ”„ Last Modified: Sept. 5, 2025, 9:15 a.m.

5.9

CVSS3.1

CVE-2024-41775 - IBM Cognos Controller information disclosure

IBM Cognos Controller 11.0.0 and 11.0.1Β uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

πŸ“… Published: Dec. 3, 2024, 5:13 p.m. πŸ”„ Last Modified: Dec. 11, 2024, 3:25 a.m.

5.5

CVSS3.1

CVE-2024-25020 - IBM Cognos Controller file upload

IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page. Attackers can make use of this weakness and upload malicious executable files into the system and can be sent to victims for performi…

πŸ“… Published: Dec. 3, 2024, 5:12 p.m. πŸ”„ Last Modified: Dec. 11, 2024, 3:28 a.m.
Total resulsts: 342273
Page 6945 of 34,228
Β« previous page Β» next page
Filters