6.2

CVSS3.1

CVE-2024-42358 - Loop with Unreachable Exit Condition ('Infinite Loop') in pdfio

PDFio is a simple C library for reading and writing PDF files. There is a denial of service (DOS) vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% of the Memory and enter an infinite loop. This can also lead to a heap-buffer-overflow vulnerability…

πŸ“… Published: Aug. 6, 2024, 5:02 p.m. πŸ”„ Last Modified: Aug. 12, 2024, 6:50 p.m.

8.5

CVSS4.0

CVE-2024-7502 - Delta Electronics DIAScreen Stack-Based Buffer Overflow

A crafted DPA file could force Delta Electronics DIAScreen to overflow a stack-based buffer, which could allow an attacker to execute arbitrary code.

πŸ“… Published: Aug. 6, 2024, 4:50 p.m. πŸ”„ Last Modified: Aug. 12, 2024, 6:50 p.m.

9.8

CVSS3.1

CVE-2024-43111 -

Long pressing on a download link could potentially allow Javascript commands to be executed within the browser This vulnerability affects Firefox for iOS < 129.

πŸ“… Published: Aug. 6, 2024, 3:55 p.m. πŸ”„ Last Modified: Aug. 29, 2024, 4:53 p.m.

6.1

CVSS3.1

CVE-2024-43113 -

The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129.

πŸ“… Published: Aug. 6, 2024, 3:55 p.m. πŸ”„ Last Modified: March 24, 2025, 5:15 p.m.

6.1

CVSS3.1

CVE-2024-43112 -

Long pressing on a download link could potentially provide a means for cross-site scripting This vulnerability affects Firefox for iOS < 129.

πŸ“… Published: Aug. 6, 2024, 3:55 p.m. πŸ”„ Last Modified: March 17, 2025, 8:15 p.m.

6.5

CVSS3.1

CVE-2024-7564 - Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability

Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Logsign Unified SecOps Platform. Authentication is required to exploit this vulnerability. The specifi…

πŸ“… Published: Aug. 6, 2024, 3:47 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 7:59 p.m.

5.7

CVSS3.1

CVE-2023-28806 - Signature validation error in DLL allows disabling anti-tampering protection

An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows <4.2.0.190.

πŸ“… Published: Aug. 6, 2024, 3:41 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 9:29 p.m.

4.3

CVSS3.1

CVE-2024-7003 -

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 7:52 p.m.

8.8

CVSS3.1

CVE-2024-7000 -

Use after free in CSS in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: Aug. 7, 2024, 10:08 p.m.

4.3

CVSS3.1

CVE-2024-6999 -

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

πŸ“… Published: Aug. 6, 2024, 3:37 p.m. πŸ”„ Last Modified: March 14, 2025, 3:15 p.m.
Total resulsts: 349182
Page 8936 of 34,919
Β« previous page Β» next page
Filters