8.8

CVSS3.1

CVE-2024-9603 -

Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

๐Ÿ“… Published: Oct. 8, 2024, 11:02 p.m. ๐Ÿ”„ Last Modified: Jan. 2, 2025, 4:48 p.m.

8.8

CVSS3.1

CVE-2024-9602 -

Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)

๐Ÿ“… Published: Oct. 8, 2024, 11:02 p.m. ๐Ÿ”„ Last Modified: Nov. 20, 2025, 7:16 p.m.

8.4

CVSS4.0

CVE-2024-9412 - Improper Authorization Vulnerability in Rockwell Automation Verveยฎ Asset Manager

An improper authorization vulnerability exists in the Rockwell Automation affected products that could allow an unauthorized user to sign in. While removal of all role mappings is unlikely, it could occur in the case of unexpected or accidental removal by the administrator. If exploited, an unauthoโ€ฆ

๐Ÿ“… Published: Oct. 8, 2024, 7:24 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

1.8

CVSS4.0

CVE-2024-27457 -

Improper check for unusual or exceptional conditions in Intel(R) TDX Module firmware before version 1.5.06 may allow a privileged user to potentially enable information disclosure via local access.

๐Ÿ“… Published: Oct. 8, 2024, 6:43 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.2

CVSS3.1

CVE-2024-47773 - Anonymous cache poisoning via XHR requests in Discourse

Discourse is an open source platform for community discussion. An attacker can make several XHR requests until the cache is poisoned with a response without any preloaded data. This issue only affects anonymous visitors of the site. This problem has been patched in the latest version of Discourse. โ€ฆ

๐Ÿ“… Published: Oct. 8, 2024, 6:01 p.m. ๐Ÿ”„ Last Modified: Aug. 26, 2025, 4:58 p.m.

3.1

CVSS3.1

CVE-2024-47780 - Information Disclosure in TYPO3 Page Tree

TYPO3 is a free and open source Content Management Framework. Backend users could see items in the backend page tree without having access if the mounts pointed to pages restricted for their user/group, or if no mounts were configured but the pages allowed access to "everybody." However, affected uโ€ฆ

๐Ÿ“… Published: Oct. 8, 2024, 5:57 p.m. ๐Ÿ”„ Last Modified: Sept. 3, 2025, 5:31 p.m.

4.2

CVSS3.1

CVE-2024-47822 - Directus inserts access token from query string into logs

Directus is a real-time API and App dashboard for managing SQL database content. Access tokens from query strings are not redacted and are potentially exposed in system logs which may be persisted. The access token in `req.query` is not redacted when the `LOG_STYLE` is set to `raw`. If these logs aโ€ฆ

๐Ÿ“… Published: Oct. 8, 2024, 5:54 p.m. ๐Ÿ”„ Last Modified: April 14, 2025, 12:15 p.m.

7.7

CVSS4.0

CVE-2024-47823 - Livewire Remote Code Execution (RCE) on File Uploads

Livewire is a full-stack framework for Laravel that allows for dynamic UI components without leaving PHP. In livewire/livewire prior to `2.12.7` and `v3.5.2`, the file extension of an uploaded file is guessed based on the MIME type. As a result, the actual file extension from the file name is not vโ€ฆ

๐Ÿ“… Published: Oct. 8, 2024, 5:48 p.m. ๐Ÿ”„ Last Modified: July 17, 2025, 6:22 p.m.

8.8

CVSS3.1

CVE-2024-43488 - Visual Studio Code extension for Arduino Remote Code Execution Vulnerability

Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector.

๐Ÿ“… Published: Oct. 8, 2024, 5:36 p.m. ๐Ÿ”„ Last Modified: July 8, 2025, 3:39 p.m.

8.8

CVSS3.1

CVE-2024-43611 - Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

๐Ÿ“… Published: Oct. 8, 2024, 5:36 p.m. ๐Ÿ”„ Last Modified: July 8, 2025, 3:39 p.m.
Total resulsts: 349182
Page 8348 of 34,919
ยซ previous page ยป next page
Filters