8.8

CVSS3.1

CVE-2024-41281 -

Linksys WRT54G v4.21.5 has a stack overflow vulnerability in get_merge_mac function.

πŸ“… Published: July 19, 2024, midnight πŸ”„ Last Modified: June 4, 2025, 5:01 p.m.

7.5

CVSS3.1

CVE-2024-29736 - Apache CXF: SSRF vulnerability via WADL stylesheet parameter

A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. The attack only applies if a custom stylesheet parameter is configured.

πŸ“… Published: July 19, 2024, midnight πŸ”„ Last Modified: Nov. 21, 2024, 9:08 a.m.

7.5

CVSS3.1

CVE-2024-41600 -

Insecure Permissions vulnerability in lin-CMS Springboot v.0.2.1 and before allows a remote attacker to obtain sensitive information via the login method in the UserController.java component.

πŸ“… Published: July 19, 2024, midnight πŸ”„ Last Modified: March 18, 2025, 9:15 p.m.

9.8

CVSS3.1

CVE-2024-39962 -

D-Link DIR-823X AX3000 Dual-Band Gigabit Wireless Router v21_D240126 was discovered to contain a remote code execution (RCE) vulnerability in the ntp_zone_val parameter at /goform/set_ntp. This vulnerability is exploited via a crafted HTTP request.

πŸ“… Published: July 19, 2024, midnight πŸ”„ Last Modified: July 9, 2025, 3:30 p.m.

0.0

CVE-2024-6909 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: July 18, 2024, 11:30 p.m. πŸ”„ Last Modified: Feb. 8, 2025, 10:15 p.m.

6.1

CVSS3.1

CVE-2024-38156 - Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

πŸ“… Published: July 18, 2024, 11:03 p.m. πŸ”„ Last Modified: Dec. 9, 2025, 11:47 p.m.

9.8

CVSS3.1

CVE-2024-35198 - TorchServe bypass allowed_urls configuration

TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. TorchServe 's check on allowed_urls configuration can be by-passed if the URL contains characters such as ".." but it does not prevent the model from being downloaded into the model store. Once a fil…

πŸ“… Published: July 18, 2024, 10:40 p.m. πŸ”„ Last Modified: Sept. 4, 2025, 3:43 p.m.

8.2

CVSS3.1

CVE-2024-35199 - TorchServe gRPC Port Exposure

TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. In affected versions the two gRPC ports 7070 and 7071, are not bound to [localhost](http://localhost/) by default, so when TorchServe is launched, these two interfaces are bound to all interfaces. Cu…

πŸ“… Published: July 18, 2024, 10:40 p.m. πŸ”„ Last Modified: Sept. 4, 2025, 3:46 p.m.

8.1

CVSS3.1

CVE-2024-40642 - Absent Input Validation in BinaryHttpParser in the netty incubator codec.bhttp

The netty incubator codec.bhttp is a java language binary http parser. In affected versions the `BinaryHttpParser` class does not properly validate input values thus giving attackers almost complete control over the HTTP requests constructed from the parsed output. Attackers can abuse several issue…

πŸ“… Published: July 18, 2024, 10:21 p.m. πŸ”„ Last Modified: Oct. 9, 2025, 3:41 p.m.

7.2

CVSS3.1

CVE-2024-41111 - BishopFox Sliver Authenticated Remote Code Execution

Sliver is an open source cross-platform adversary emulation/red team framework, it can be used by organizations of all sizes to perform security testing. Sliver version 1.6.0 (prerelease) is vulnerable to RCE on the teamserver by a low-privileged "operator" user. The RCE is as the system root user.…

πŸ“… Published: July 18, 2024, 10:11 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 9105 of 34,919
Β« previous page Β» next page
Filters