9.1

CVSS3.1

CVE-2024-54794 -

The script input feature of SpagoBI 3.5.1 allows arbitrary code execution.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Oct. 17, 2025, 4:15 p.m.

6.5

CVSS3.1

CVE-2023-37034 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `Initial UE Message` packet missing an expected `TAI` field.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: March 24, 2025, 6:15 p.m.

9.8

CVSS3.1

CVE-2023-27112 -

pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the projectCode parameter at project.php.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: May 30, 2025, 4:28 p.m.

6.5

CVSS3.1

CVE-2023-37025 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `Reset` packet missing an expected `ResetType` field.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Jan. 23, 2025, 6:15 p.m.

5.3

CVSS3.1

CVE-2025-23085 - nodejs: GOAWAY HTTP/2 frames cause memory leak outside heap

A memory leak could occur when a remote peer abruptly closes the socket without sending a GOAWAY notification. Additionally, if an invalid header was detected by nghttp2, causing the connection to be terminated by the peer, the same leak was triggered. This flaw could lead to increased memory consu…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-24418 -

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_pdn_address function at /nas/ies/PdnAddress.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted NAS pac…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: March 24, 2025, 6:15 p.m.

6.5

CVSS3.1

CVE-2023-37039 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allow network-adjacent attackers to crash the MME via an S1AP `Initial UE Message` packet missing an expected `RRC Establishment Clause` f…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2024-57541 -

Linksys E8450 v1.2.00.360516 was discovered to contain a buffer overflow vulnerability. The parsed field (ipv6_protect_status) is copied to the stack without length verification.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:11 p.m.

7.5

CVSS3.1

CVE-2024-24427 -

A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Jan. 24, 2025, 6:47 p.m.

6.5

CVSS3.1

CVE-2023-37028 -

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `E-RAB Modification Indication` packet missing an expected `eNB_UE_S1AP_ID`…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Feb. 28, 2026, 3:06 a.m.
Total resulsts: 346297
Page 6745 of 34,630
Β« previous page Β» next page
Filters