7.8

CVSS3.1

CVE-2024-42052 -

The MSI installer for Splashtop Streamer for Windows before 3.5.8.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM by placing a wevtutil.exe file in the folder.

๐Ÿ“… Published: July 28, 2024, midnight ๐Ÿ”„ Last Modified: March 20, 2025, 7:15 p.m.

6.1

CVSS3.1

CVE-2024-42055 -

Cervantes through 0.5-alpha allows stored XSS.

๐Ÿ“… Published: July 28, 2024, midnight ๐Ÿ”„ Last Modified: Nov. 21, 2024, 9:33 a.m.

7

CVSS3.1

CVE-2024-42050 -

The MSI installer for Splashtop Streamer for Windows before 3.7.0.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM via an oplock on CredProvider_Inst.reg.

๐Ÿ“… Published: July 28, 2024, midnight ๐Ÿ”„ Last Modified: Sept. 3, 2025, 7:49 p.m.

5.4

CVSS3.1

CVE-2024-42054 -

Cervantes through 0.5-alpha accepts insecure file uploads.

๐Ÿ“… Published: July 28, 2024, midnight ๐Ÿ”„ Last Modified: Nov. 21, 2024, 9:33 a.m.

7.8

CVSS3.1

CVE-2024-42053 -

The MSI installer for Splashtop Streamer for Windows before 3.6.0.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM by placing a version.dll file in the folder.

๐Ÿ“… Published: July 28, 2024, midnight ๐Ÿ”„ Last Modified: Sept. 3, 2025, 7:44 p.m.

7.8

CVSS3.1

CVE-2024-42051 -

The MSI installer for Splashtop Streamer for Windows before 3.6.2.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM by replacing InstRegExp.reg.

๐Ÿ“… Published: July 28, 2024, midnight ๐Ÿ”„ Last Modified: Sept. 3, 2025, 7:46 p.m.

6.9

CVSS4.0

CVE-2024-7153 - Netgear WN604 siteSurvey.php direct request

A vulnerability classified as problematic has been found in Netgear WN604 up to 20240719. Affected is an unknown function of the file siteSurvey.php. The manipulation leads to direct request. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.โ€ฆ

๐Ÿ“… Published: July 27, 2024, 10 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.7

CVSS4.0

CVE-2024-7152 - Tenda O3 setMacFilterList fromSafeSetMacFilter stack-based overflow

A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been rated as critical. This issue affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be initiated remotely. The exploโ€ฆ

๐Ÿ“… Published: July 27, 2024, 9 p.m. ๐Ÿ”„ Last Modified: Nov. 21, 2024, 9:50 a.m.

8.7

CVSS4.0

CVE-2024-7151 - Tenda O3 setMacFilter fromMacFilterSet stack-based overflow

A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been declared as critical. This vulnerability affects the function fromMacFilterSet of the file /goform/setMacFilter. The manipulation of the argument remark leads to stack-based buffer overflow. The attack can be initiated remotely. The โ€ฆ

๐Ÿ“… Published: July 27, 2024, 8 p.m. ๐Ÿ”„ Last Modified: Nov. 21, 2024, 9:50 a.m.

7

CVSS3.1

CVE-2024-41817 - Arbitrary Code Execution in `AppImage` version `ImageMagick`

ImageMagick is a free and open-source software suite, used for editing and manipulating digital images. The `AppImage` version `ImageMagick` might use an empty path when setting `MAGICK_CONFIGURE_PATH` and `LD_LIBRARY_PATH` environment variables while executing, which might lead to arbitrary code eโ€ฆ

๐Ÿ“… Published: July 27, 2024, 1:13 p.m. ๐Ÿ”„ Last Modified: Nov. 20, 2025, 7:21 p.m.
Total resulsts: 349182
Page 9042 of 34,919
ยซ previous page ยป next page
Filters