6.9

CVSS4.0

CVE-2024-48852 - Information disclosures

Insertion of Sensitive Information into Log File vulnerability observed in FLEXON. Some information may be improperly disclosed through https access. This issue affects FLXEON through <= 9.3.4.

📅 Published: Jan. 29, 2025, 6:59 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

7.1

CVSS4.0

CVE-2024-10001 - Code Injection Vulnerability in GitHub Enterprise Server Allows Arbitrary Code Execution via Messag…

A Code Injection vulnerability was identified in GitHub Enterprise Server that allowed attackers to inject malicious code into the query selector via the identity property in the message handling function. This enabled the exfiltration of sensitive data by manipulating the DOM, including authentica…

📅 Published: Jan. 29, 2025, 6:24 p.m. 🔄 Last Modified: Sept. 5, 2025, 3 p.m.

8.8

CVSS4.0

CVE-2024-48849 - Authentication and Authorization Issues

Missing Origin Validation in WebSockets vulnerability in FLXEON. Session management was not sufficient to prevent unauthorized HTTPS requests. This issue affects FLXEON: through <= 9.3.4.

📅 Published: Jan. 29, 2025, 6:23 p.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2025-0852 -

Voluntarily withdrawn

📅 Published: Jan. 29, 2025, 6:10 p.m. 🔄 Last Modified: Dec. 16, 2025, 9:33 p.m.

4.4

CVSS3.1

CVE-2025-24790 - Snowflake JDBC uses insecure temporary credential cache file permissions

Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake JDBC Driver. On Linux systems, when temporary credential caching is enabled, the Snowflake JDBC Driver w…

📅 Published: Jan. 29, 2025, 5:49 p.m. 🔄 Last Modified: Feb. 12, 2025, 7:51 p.m.

7.8

CVSS3.1

CVE-2025-24789 - Snowflake JDBC allows an untrusted search path on Windows

Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake JDBC Driver. When the EXTERNALBROWSER authentication method is used on Windows, an attacker with write a…

📅 Published: Jan. 29, 2025, 5:46 p.m. 🔄 Last Modified: Aug. 20, 2025, 6:18 p.m.

4.4

CVSS3.1

CVE-2025-24791 - snowflake-connector-nodejs has incorrect validation of temporary credential cache file permissions

snowflake-connector-nodejs is a NodeJS driver for Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake NodeJS Driver. File permissions checks of the temporary credential cache could be bypassed by an attacker with write access to the local cache directory. This vulnerabil…

📅 Published: Jan. 29, 2025, 4:59 p.m. 🔄 Last Modified: Aug. 20, 2025, 6:43 p.m.

5.9

CVSS3.1

CVE-2023-35907 - IBM Aspera Faspex information disclosure

IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.

📅 Published: Jan. 29, 2025, 4:37 p.m. 🔄 Last Modified: Feb. 12, 2025, 4:47 p.m.

5.3

CVSS3.1

CVE-2023-37413 - IBM Aspera Faspex information disclosure

IBM Aspera Faspex 5.0.0 through 5.0.10 could disclose sensitive username information due to an observable response discrepancy.

📅 Published: Jan. 29, 2025, 4:36 p.m. 🔄 Last Modified: March 4, 2025, 9:43 p.m.

5.9

CVSS3.1

CVE-2023-37398 - IBM Aspera Faspex information disclosure

IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.

📅 Published: Jan. 29, 2025, 4:35 p.m. 🔄 Last Modified: Feb. 12, 2025, 4:47 p.m.
Total resulsts: 347730
Page 6772 of 34,773
« previous page » next page
Filters