7.5

CVSS3.1

CVE-2024-4558 - chromium-browser: Use after free in ANGLE

Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: May 7, 2024, midnight πŸ”„ Last Modified: Nov. 4, 2025, 6:16 p.m.

9.4

CVSS3.1

CVE-2024-25507 -

RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the email_attach_id parameter at /LHMail/AttachDown.aspx.

πŸ“… Published: May 7, 2024, midnight πŸ”„ Last Modified: April 16, 2025, 7:05 p.m.

9.8

CVSS3.1

CVE-2023-46012 -

Buffer Overflow vulnerability LINKSYS EA7500 3.0.1.207964 allows a remote attacker to execute arbitrary code via an HTTP request to the IGD UPnP.

πŸ“… Published: May 7, 2024, midnight πŸ”„ Last Modified: June 30, 2025, 5:22 p.m.

9.8

CVSS3.1

CVE-2024-25510 -

RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /AddressBook/address_public_show.aspx.

πŸ“… Published: May 7, 2024, midnight πŸ”„ Last Modified: April 16, 2025, 7:04 p.m.

7.5

CVSS3.1

CVE-2024-34315 -

CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the file_get_contents function in the fckedit_action method of /admin/template_admin.php. This vulnerability allows attackers to read arbitrary files.

πŸ“… Published: May 7, 2024, midnight πŸ”„ Last Modified: April 14, 2025, 2:21 p.m.

6.5

CVSS3.1

CVE-2024-33860 -

An issue was discovered in Logpoint before 7.4.0. It allows Local File Inclusion (LFI) when an arbitrary File Path is used within the File System Collector. The content of the file specified can be viewed in the incoming logs.

πŸ“… Published: May 7, 2024, midnight πŸ”„ Last Modified: April 18, 2025, 12:32 p.m.

7.5

CVSS3.1

CVE-2024-33782 -

MP-SPDZ v0.3.8 was discovered to contain a stack overflow via the function OTExtensionWithMatrix::extend in /OT/OTExtensionWithMatrix.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted message.

πŸ“… Published: May 7, 2024, midnight πŸ”„ Last Modified: June 16, 2025, 9:45 p.m.

6.5

CVSS3.0

CVE-2024-2913 - Race Condition Vulnerability in mintplex-labs/anything-llm

A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically within the user invite acceptance process. Attackers can exploit this vulnerability by sending multiple concurrent requests to accept a single user invite, allowing the creation of multiple user account…

πŸ“… Published: May 6, 2024, 11:42 p.m. πŸ”„ Last Modified: July 9, 2025, 7:32 p.m.

0.0

CVE-2024-4579 -

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-4295. Reason: This candidate is a reservation duplicate of CVE-2024-4295. Notes: All CVE users should reference CVE-2024-4295 instead of this candidate. All references and descriptions in this candidate have been removed to prevent…

πŸ“… Published: May 6, 2024, 10:56 p.m. πŸ”„ Last Modified: May 14, 2024, 3:44 p.m.

8.0

CVSS3.1

CVE-2024-29941 - Credential Cloning

Insecure storage of the ICT MIFARE and DESFire encryption keys in the firmware binary allows malicious actors to create credentials for any site code and card number that is using the default ICT encryption.

πŸ“… Published: May 6, 2024, 10:33 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 9966 of 34,919
Β« previous page Β» next page
Filters