6.5

CVSS3.1

CVE-2023-37026 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `E-RAB Release Response` packet missing an expected `MME_UE_S1AP_ID` field.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Jan. 23, 2025, 6:15 p.m.

7.5

CVSS3.1

CVE-2023-37024 -

A reachable assertion in the Mobile Management Entity (MME) of Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows remote attackers to crash the MME with an unauthenticated cellphone by sending a NAS packet containing an `Emergency Number List` Information…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Jan. 23, 2025, 7:15 p.m.

9.8

CVSS3.1

CVE-2024-42936 -

The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Dec. 15, 2025, 8 p.m.

5.4

CVSS3.1

CVE-2024-54795 -

SpagoBI v3.5.1 contains multiple Stored Cross-Site Scripting (XSS) vulnerabilities in the create/edit forms of the worksheet designer function.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Oct. 17, 2025, 4:15 p.m.

9.8

CVSS3.1

CVE-2023-27113 -

pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the organizationCode parameter at project.php.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: May 30, 2025, 4:29 p.m.

9.1

CVSS3.1

CVE-2024-54794 -

The script input feature of SpagoBI 3.5.1 allows arbitrary code execution.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Oct. 17, 2025, 4:15 p.m.

6.5

CVSS3.1

CVE-2023-37034 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `Initial UE Message` packet missing an expected `TAI` field.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: March 24, 2025, 6:15 p.m.

9.8

CVSS3.1

CVE-2023-27112 -

pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the projectCode parameter at project.php.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: May 30, 2025, 4:28 p.m.

6.5

CVSS3.1

CVE-2023-37025 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `Reset` packet missing an expected `ResetType` field.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Jan. 23, 2025, 6:15 p.m.

5.3

CVSS3.1

CVE-2025-23085 - nodejs: GOAWAY HTTP/2 frames cause memory leak outside heap

A memory leak could occur when a remote peer abruptly closes the socket without sending a GOAWAY notification. Additionally, if an invalid header was detected by nghttp2, causing the connection to be terminated by the peer, the same leak was triggered. This flaw could lead to increased memory consu…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 346292
Page 6744 of 34,630
Β« previous page Β» next page
Filters