0.0
CVE-2024-4810 -
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. This CVE has been replaced byΒ CVE-2024-36015.
7.8
CVE-2024-4712 - Arbitrary File Creation in PaperCut NG/MF Web Print Image Handler
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled.Β This specific flaw exists within the image-handler process, which can incorrectly create files that donβt exist when a maliciously formed payload is provided. This can lead toβ¦
7.8
CVE-2024-3037 - Arbitrary File Deletion in PaperCut NG/MF Web Print
An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege coβ¦
6.4
CVE-2024-4854 - Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file
5.9
CVE-2024-4769 - Mozilla: Cross-origin responses could be distinguished between script and non-script content-types
When importing resources using Web Workers, error messages would distinguish the difference between `application/javascript` responses and non-script responses. This could have been abused to learn information cross-origin. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thundeβ¦
3.6
CVE-2024-4855 - Use After Free in editcap
Use after free issue in editcap could cause denial of service via crafted capture file
5.9
CVE-2024-30046 - Visual Studio Denial of Service Vulnerability
Visual Studio Denial of Service Vulnerability
7.5
CVE-2024-3372 - MongoDB Server may have unexpected application behaviour due to invalid BSON
Improper validation of certain metadata input may result in the server not correctly serialising BSON. This can be performed pre-authentication and may cause unexpected application behavior including unavailability of serverStatus responses. This issue affects MongoDB Server v7.0 versions prior to β¦
3.9
CVE-2024-32020 - Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cβ¦
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository's object database when source and target repository reside on the same disk. If the source repository is owned by a diβ¦
6.8
CVE-2024-4871 - Foreman: host ssh key not being checked in remote execution
A vulnerability was found in Satellite. When running a remote execution job on a host, the host's SSH key is not being checked. When the key changes, the Satellite still connects it because it uses "-o StrictHostKeyChecking=no". This flaw can lead to a man-in-the-middle attack (MITM), denial of serβ¦