8.1

CVSS3.1

CVE-2024-37177 - Cross-Site Scripting (XSS) vulnerabilities in SAP Financial Consolidation

SAP Financial Consolidation allows data to enter a Web application through an untrusted source. These endpoints are exposed over the network and it allows the user to modify the content from the web site. On successful exploitation, an attacker can cause significant impact to confidentiality and in…

πŸ“… Published: June 11, 2024, 1:58 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.3

CVSS3.1

CVE-2024-37130 -

Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains a Local Privilege Escalation vulnerability via XSL Hijacking. A local low-privileged malicious user could potentially exploit this vulnerability and escalate their privilege to the admin user and gain full control of the ma…

πŸ“… Published: June 11, 2024, 1:34 a.m. πŸ”„ Last Modified: Jan. 9, 2025, 9:20 p.m.

5.3

CVSS3.1

CVE-2024-34406 -

Improper exception handling in McAfee Security: Antivirus VPN for Android before 8.3.0 could allow an attacker to cause a denial of service through the use of a malformed deep link.

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.5

CVSS3.1

CVE-2024-26330 -

An issue was discovered in Kape CyberGhostVPN 8.4.3.12823 on Windows. After a successful logout, user credentials remain in memory while the process is still open, and can be obtained by dumping the process memory and parsing it.

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-5702 - Mozilla: Use-after-free in networking

Memory corruption in the networking stack could have led to a potentially exploitable crash. This vulnerability affects Firefox < 125, Firefox ESR < 115.12, and Thunderbird < 115.12.

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: April 4, 2025, 2:41 p.m.

9.1

CVSS3.1

CVE-2024-34405 -

Improper deep link validation in McAfee Security: Antivirus VPN for Android before 8.3.0 could allow an attacker to launch an arbitrary URL within the app.

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.6

CVSS3.1

CVE-2024-5696 - Mozilla: Memory Corruption in Text Fragments

By manipulating the text in an `&lt;input&gt;` tag, an attacker could have caused corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: Nov. 6, 2025, 10:25 p.m.

4.3

CVSS3.1

CVE-2024-5690 - Mozilla: External protocol handlers leaked by timing attack

By monitoring the time certain operations take, an attacker could have guessed which external protocol handlers were functional on a user's system. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: March 26, 2025, 2:15 p.m.

8.1

CVSS3.1

CVE-2024-5688 - Mozilla: Use-after-free in JavaScript object transplant

If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird < 115.12.

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: April 4, 2025, 11:46 p.m.

7.0

CVSS3.1

CVE-2024-5700 - Mozilla: Memory safety bugs fixed in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12

Memory safety bugs present in Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 127, Firefox ESR …

πŸ“… Published: June 11, 2024, midnight πŸ”„ Last Modified: April 4, 2025, 2:41 p.m.
Total resulsts: 349182
Page 9512 of 34,919
Β« previous page Β» next page
Filters