5.9

CVSS3.1

CVE-2024-44439 -

An issue in Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing Collaborative Internet of Things System v.1.9.1 allows a remote attacker to escalate privileges via the open port.

πŸ“… Published: Oct. 4, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.3

CVSS3.1

CVE-2024-44207 -

This issue was addressed with improved checks. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. Audio messages in Messages may be able to capture a few seconds of audio before the microphone indicator is activated.

πŸ“… Published: Oct. 3, 2024, 11:29 p.m. πŸ”„ Last Modified: April 2, 2026, 6:21 p.m.

5.5

CVSS3.1

CVE-2024-44204 -

A logic issue was addressed with improved validation. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. A user's saved passwords may be read aloud by VoiceOver.

πŸ“… Published: Oct. 3, 2024, 11:29 p.m. πŸ”„ Last Modified: April 2, 2026, 6:12 p.m.

8.7

CVSS4.0

CVE-2024-42417 - Delta Electronics DIAEnergie SQL Injection

Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx. An authenticated attacker may be able to exploit this issue to cause delay in the targeted product.

πŸ“… Published: Oct. 3, 2024, 10:32 p.m. πŸ”„ Last Modified: Oct. 8, 2024, 3:43 p.m.

9.3

CVSS4.0

CVE-2024-43699 - Delta Electronics DIAEnergie SQL Injection

Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script AM_RegReport.aspx. An unauthenticated attacker may be able to exploit this issue to obtain records contained in the targeted product.

πŸ“… Published: Oct. 3, 2024, 10:28 p.m. πŸ”„ Last Modified: Oct. 8, 2024, 3:44 p.m.

9.3

CVSS4.0

CVE-2024-45367 - Optigo Networks ONS-S8 Spectra Aggregation Switch Weak Authentication

The web server for ONS-S8 - Spectra Aggregation Switch includes an incomplete authentication process, which can lead to an attacker authenticating without a password.

πŸ“… Published: Oct. 3, 2024, 10:19 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.3

CVSS4.0

CVE-2024-41925 - Optigo Networks ONS-S8 Spectra Aggregation Switch PHP Remote File Inclusion

The web service for ONS-S8 - Spectra Aggregation Switch includes functions which do not properly validate user input, allowing an attacker to traverse directories, bypass authentication, and execute remote code.

πŸ“… Published: Oct. 3, 2024, 10:17 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.7

CVSS3.1

CVE-2024-9266 - Open Redirect

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the Express Response object. This issue impacts Express: from 3.4.5 before 4.0.0.

πŸ“… Published: Oct. 3, 2024, 6:56 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.3

CVSS4.0

CVE-2024-41988 - Missing Authentication for Critical Function vulnerability in TEM Opera Plus FM Family Transmitter

TEM Opera Plus FM Family Transmitter allows access to an unprotected endpoint that allows MPFS File System binary image upload without authentication. This file system serves as the basis for the HTTP2 web server module but is also used by the SNMP module and is available to other applications that…

πŸ“… Published: Oct. 3, 2024, 5:40 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.6

CVSS4.0

CVE-2024-41987 - Cross-Site Request Forgery (CSRF) vulnerability in TEM Opera Plus FM Family Transmitter

The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malici…

πŸ“… Published: Oct. 3, 2024, 5:38 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 8408 of 34,919
Β« previous page Β» next page
Filters