6.7

CVSS3.1

CVE-2024-36507 -

A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and social engineering.

πŸ“… Published: Nov. 12, 2024, 6:53 p.m. πŸ”„ Last Modified: Nov. 14, 2024, 8:31 p.m.

3.6

CVSS3.1

CVE-2024-33510 -

AnΒ improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability [CWE-74] in FortiOS version 7.4.3 and below, version 7.2.8 and below, version 7.0.16 and below; FortiProxy version 7.4.3 and below, version 7.2.9 and below, version 7.0.16 and below; …

πŸ“… Published: Nov. 12, 2024, 6:53 p.m. πŸ”„ Last Modified: Jan. 17, 2025, 8:35 p.m.

7.1

CVSS3.1

CVE-2023-50176 -

A session fixation in Fortinet FortiOS version 7.4.0 through 7.4.3 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.13 allows attacker to execute unauthorized code or commands via phishing SAML authentication link.

πŸ“… Published: Nov. 12, 2024, 6:53 p.m. πŸ”„ Last Modified: Dec. 12, 2024, 7:27 p.m.

7.1

CVSS3.1

CVE-2024-23666 -

A client-side enforcement of server-side security in Fortinet FortiAnalyzer-BigData at least version 7.4.0 and 7.2.0 through 7.2.6 and 7.0.1 through 7.0.6 and 6.4.5 through 6.4.7 and 6.2.5, FortiManager version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.4 and 7.0.0 through 7.0.11 and 6.4.0 through…

πŸ“… Published: Nov. 12, 2024, 6:53 p.m. πŸ”„ Last Modified: Jan. 21, 2025, 10:04 p.m.

7.4

CVSS3.1

CVE-2024-36513 -

A privilege context switching error vulnerability [CWE-270] in FortiClient Windows version 7.2.4 and below, version 7.0.12 and below, 6.4 all versions may allow an authenticated user to escalate their privileges via lua auto patch scripts.

πŸ“… Published: Nov. 12, 2024, 6:53 p.m. πŸ”„ Last Modified: Nov. 14, 2024, 8:35 p.m.

7.2

CVSS3.1

CVE-2024-43613 - Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

πŸ“… Published: Nov. 12, 2024, 6:49 p.m. πŸ”„ Last Modified: July 8, 2025, 3:41 p.m.

7.2

CVSS3.1

CVE-2024-49042 - Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

πŸ“… Published: Nov. 12, 2024, 6:49 p.m. πŸ”„ Last Modified: July 8, 2025, 3:41 p.m.

5.5

CVSS3.1

CVE-2024-45147 - Bridge | Out-of-bounds Read (CWE-125)

Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim m…

πŸ“… Published: Nov. 12, 2024, 6:44 p.m. πŸ”„ Last Modified: Nov. 14, 2024, 1:58 p.m.

5.5

CVSS3.1

CVE-2024-47458 - Bridge | NULL Pointer Dereference (CWE-476)

Bridge versions 13.0.9, 14.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of this issue requ…

πŸ“… Published: Nov. 12, 2024, 6:44 p.m. πŸ”„ Last Modified: Nov. 14, 2024, 2:24 p.m.

7

CVSS4.0

CVE-2024-7516 - Brocade Fabric OS before 9.2.2 does not enforce strict host key checking

A vulnerability in Brocade Fabric OS versions before 9.2.2 could allow man-in-the-middle attackers to conduct remote Service Session Hijacking that may arise from the attacker's ability to forge an SSH key while the Brocade Fabric OS Switch is performing various remote operations initiated by a swi…

πŸ“… Published: Nov. 12, 2024, 6:41 p.m. πŸ”„ Last Modified: Feb. 4, 2025, 3:25 p.m.
Total resulsts: 345275
Page 7525 of 34,528
Β« previous page Β» next page
Filters