9.8

CVSS3.1

CVE-2024-46478 -

HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: June 24, 2025, 1:09 a.m.

6.5

CVSS3.1

CVE-2024-45259 -

An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. By intercepting an HTTP request and changing the filename property in the download interface, any file on the device can be deleted.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 15, 2025, 5:55 p.m.

8.4

CVSS3.1

CVE-2024-48541 -

Incorrect access control in the firmware update and download processes of Ruochan Smart v4.4.7 allows attackers to access sensitive information by analyzing the code and data within the APK file.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 12:56 p.m.

8.8

CVSS3.1

CVE-2024-45263 -

An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The upload interface allows the uploading of arbitrary files to the device. Once the device executes the files, it can lead to information leakage, enabling complete control.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Sept. 29, 2025, 3:02 p.m.

8.4

CVSS3.1

CVE-2024-48547 -

Incorrect access control in the firmware update and download processes of DreamCatcher Life v1.8.7 allows attackers to access sensitive information by analyzing the code and data within the APK file.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 12:56 p.m.

6.2

CVSS3.1

CVE-2024-48540 -

Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information by analyzing the code and data within the APK file.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 4:35 p.m.

8.4

CVSS3.1

CVE-2024-48545 -

Incorrect access control in the firmware update and download processes of IVY Smart v4.5.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 12:56 p.m.

5.3

CVSS3.1

CVE-2024-40595 -

An authentication-bypass issue in the RDP component of One Identity Safeguard for Privileged Sessions (SPS) On Premise before 7.5.1 (and LTS before 7.0.5.1) allows man-in-the-middle attackers to obtain access to privileged sessions on target resources by intercepting cleartext RDP protocol informat…

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 12:56 p.m.

8.4

CVSS3.1

CVE-2024-48544 -

Incorrect access control in the firmware update and download processes of Sylvania Smart Home v3.0.3 allows attackers to access sensitive information by analyzing the code and data within the APK file.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 12:56 p.m.

7.5

CVSS3.1

CVE-2024-48141 -

A prompt injection vulnerability in the chatbox of Zhipu AI CodeGeeX v2.17.0 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message.

πŸ“… Published: Oct. 24, 2024, midnight πŸ”„ Last Modified: Oct. 25, 2024, 7:35 p.m.
Total resulsts: 344126
Page 7655 of 34,413
Β« previous page Β» next page
Filters