9.6

CVSS3.1

CVE-2024-55591 -

Anย Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7.0.19 and 7.2.0 through 7.2.12 allows a remote attacker to gain super-admin privileges via crafted requests toย Node.js websocket mโ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, 2:08 p.m. ๐Ÿ”„ Last Modified: Feb. 26, 2026, 7:09 p.m.

3.5

CVSS3.1

CVE-2024-52963 -

A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.0 through 7.0.16, 6.4.0 through 6.4.15 allows attacker to trigger a denial of service via specially crafted packets.

๐Ÿ“… Published: Jan. 14, 2025, 2:08 p.m. ๐Ÿ”„ Last Modified: Oct. 27, 2025, 9:05 p.m.

6.4

CVSS3.1

CVE-2024-48893 -

An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiSOAR 7.3.0 through 7.3.3, 7.2.1 through 7.2.2 may allow an authenticated attacker to perform a stored cross site scripting (XSS) attack via the creation of malicious playbook.

๐Ÿ“… Published: Jan. 14, 2025, 2:08 p.m. ๐Ÿ”„ Last Modified: Feb. 3, 2025, 10:12 p.m.

3.5

CVSS3.1

CVE-2024-46665 -

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounting server shared secret via intercepting accounting-requests.

๐Ÿ“… Published: Jan. 14, 2025, 2:08 p.m. ๐Ÿ”„ Last Modified: Jan. 31, 2025, 4:09 p.m.

8.8

CVSS3.1

CVE-2024-11497 - Phoenix Contact: CHARX-SEC3xxx Charge controllers vulnerable to privilege escalation

An authenticated attacker can use this vulnerability to perform a privilege escalation to gain root access.

๐Ÿ“… Published: Jan. 14, 2025, 1:55 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-11864 - SCP-Firmware Vulnerability

Specifically crafted SCMI messages sent to an SCP running SCP-Firmware release versions up to and including 2.15.0 may lead to a Usage Fault and crash the SCP

๐Ÿ“… Published: Jan. 14, 2025, 1:46 p.m. ๐Ÿ”„ Last Modified: Dec. 23, 2025, 4:42 p.m.

5.3

CVSS3.1

CVE-2024-11863 - SCP-Firmware Vulnerability

Specifically crafted SCMI messages sent to an SCP running SCP-Firmware release versions up to and including 2.15.0 may lead to a Usage Fault and crash the SCP

๐Ÿ“… Published: Jan. 14, 2025, 1:45 p.m. ๐Ÿ”„ Last Modified: Dec. 23, 2025, 4:42 p.m.

8.2

CVSS3.1

CVE-2024-7344 - Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned sofโ€ฆ

Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path.

๐Ÿ“… Published: Jan. 14, 2025, 1:29 p.m. ๐Ÿ”„ Last Modified: Sept. 15, 2025, 3:36 p.m.

5.3

CVSS3.1

CVE-2024-7596 - Generic UDP Encapsulation (GUE) (IETF Draft) do not validate or verify the source of a network packโ€ฆ

Proposed Generic UDP Encapsulation (GUE) (IETF Draft) do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. Thisโ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, noon ๐Ÿ”„ Last Modified: Nov. 3, 2025, 9:18 p.m.

5.3

CVSS3.1

CVE-2024-7595 - GRE and GRE6 Protocols (RFC2784) do not validate or verify the source of a network packet

GRE and GRE6 Protocols (RFC2784) do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to spoofing, access control bypass, and other unexpected network behaviors. This can be considered siโ€ฆ

๐Ÿ“… Published: Jan. 14, 2025, noon ๐Ÿ”„ Last Modified: Nov. 3, 2025, 9:18 p.m.
Total resulsts: 349182
Page 7151 of 34,919
ยซ previous page ยป next page
Filters