4.1

CVSS3.1

CVE-2024-1543 - AES T-Table sub-cache-line leakage

The side-channel protected T-Table implementation in wolfSSL up to version 5.6.5 protects against a side-channel attacker with cache-line resolution. In a controlled environment such as Intel SGX, an attacker can gain a per instruction sub-cache-line resolution allowing them to break the cache-line…

πŸ“… Published: Aug. 29, 2024, 10:43 p.m. πŸ”„ Last Modified: Sept. 4, 2024, 2:26 p.m.

8.8

CVSS3.1

CVE-2024-6672 - WhatsUp Gold getMonitorJoin SQL Injection Privilege Escalation Vulnerability

In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an authenticated low-privileged attacker to achieve privilege escalation by modifying a privileged user's password.

πŸ“… Published: Aug. 29, 2024, 10:07 p.m. πŸ”„ Last Modified: Sept. 4, 2024, 2:23 p.m.

2

CVSS3.1

CVE-2024-2502 - Failure to update the tamper reset cause register when a tamper event occurs

An application can be configured to block boot attempts after consecutive tamper resets are detected, which may not occur as expected. This is possible because the TAMPERRSTCAUSE register may not be properly updated when a level 4 tamper event (a tamper reset) occurs. This impacts Series 2 HSE-SVH…

πŸ“… Published: Aug. 29, 2024, 10:06 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.8

CVSS3.1

CVE-2024-6671 - WhatsUp Gold GetStatisticalMonitorList SQL Injection Authentication Bypass Vulnerability

In WhatsUp Gold versions released before 2024.0.0, if the application is configured with only a single user, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password.

πŸ“… Published: Aug. 29, 2024, 10:06 p.m. πŸ”„ Last Modified: Sept. 25, 2024, 3:55 a.m.

9.8

CVSS3.1

CVE-2024-6670 - WhatsUp Gold HasErrors SQL Injection Authentication Bypass Vulnerability

In WhatsUp Gold versions released before 2024.0.0,Β a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password.

πŸ“… Published: Aug. 29, 2024, 10:04 p.m. πŸ”„ Last Modified: Oct. 31, 2025, 9:54 p.m.

6.1

CVSS3.1

CVE-2024-45302 - CRLF Injection in RestSharp's `RestRequest.AddHeader` method

RestSharp is a Simple REST and HTTP API Client for .NET. The second argument to `RestRequest.AddHeader` (the header value) is vulnerable to CRLF injection. The same applies to `RestRequest.AddOrUpdateHeader` and `RestClient.AddDefaultHeader`. The way HTTP headers are added to a request is via the `…

πŸ“… Published: Aug. 29, 2024, 9:18 p.m. πŸ”„ Last Modified: Oct. 1, 2024, 8:05 p.m.

5.5

CVSS3.1

CVE-2024-34018 -

Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.

πŸ“… Published: Aug. 29, 2024, 7:15 p.m. πŸ”„ Last Modified: Sept. 12, 2024, 5:17 p.m.

7.3

CVSS3.1

CVE-2024-34017 -

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.

πŸ“… Published: Aug. 29, 2024, 7:14 p.m. πŸ”„ Last Modified: Sept. 12, 2024, 5:16 p.m.

7.3

CVSS3.1

CVE-2024-34019 -

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy (Windows) before build 4569.

πŸ“… Published: Aug. 29, 2024, 7:12 p.m. πŸ”„ Last Modified: Sept. 12, 2024, 5:18 p.m.

5.4

CVSS3.1

CVE-2024-43947 - WordPress WP Armour Extended plugin <= 1.26 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Dinesh Karki WP Armour Extended.This issue affects WP Armour Extended: from n/a through 1.26.

πŸ“… Published: Aug. 29, 2024, 6:15 p.m. πŸ”„ Last Modified: Jan. 16, 2026, 5:19 p.m.
Total resulsts: 349182
Page 8698 of 34,919
Β« previous page Β» next page
Filters