5.5

CVSS3.1

CVE-2024-51764 -

A security vulnerability has been identified in HPE Data Management Framework (DMF) Suite (CXFS). Depending on configuration, this vulnerability may lead to local/cluster unauthorized access.

๐Ÿ“… Published: Nov. 15, 2024, 9:32 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2024-9500 - Autodesk ADP Desktop SDK Privilege Escalation Vulnerability

A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by the Autodesk Installer could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to insecure privilege management.

๐Ÿ“… Published: Nov. 15, 2024, 9:24 p.m. ๐Ÿ”„ Last Modified: Oct. 6, 2025, 5:16 p.m.

5.3

CVSS3.1

CVE-2024-38370 - GLPI allows API document download without rights

GLPI is a free asset and IT management software package. Starting in 9.2.0 and prior to 11.0.0, it is possible to download a document from the API without appropriate rights. Upgrade to 10.0.16.

๐Ÿ“… Published: Nov. 15, 2024, 9:12 p.m. ๐Ÿ”„ Last Modified: Feb. 10, 2025, 4:17 p.m.

6.2

CVSS3.1

CVE-2017-13309 -

In readEncryptedData of ConscryptEngine.java, there is a possible plaintext leak due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

๐Ÿ“… Published: Nov. 15, 2024, 8:52 p.m. ๐Ÿ”„ Last Modified: Dec. 17, 2024, 8:31 p.m.

0.0

CVE-2024-11288 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

๐Ÿ“… Published: Nov. 15, 2024, 8:30 p.m. ๐Ÿ”„ Last Modified: Feb. 11, 2025, 2:15 a.m.

8.8

CVSS3.1

CVE-2024-49060 - Azure Stack HCI Elevation of Privilege Vulnerability

Azure Stack HCI Elevation of Privilege Vulnerability

๐Ÿ“… Published: Nov. 15, 2024, 8:25 p.m. ๐Ÿ”„ Last Modified: July 8, 2025, 3:42 p.m.

5.7

CVSS3.1

CVE-2024-45611 - GLPI has a stored XSS at src/RSSFeed.php

GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. An authenticated user can bypass the access control policy to create a private RSS feed attached to another user account and use a malicious payload to โ€ฆ

๐Ÿ“… Published: Nov. 15, 2024, 8:16 p.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 8:57 p.m.

6.5

CVSS3.1

CVE-2024-45610 - GLPI has a reflected XSS in ajax/cable.php

GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. An unauthenticated user can provide a malicious link to a GLPI technician in order to exploit a reflected XSS vulnerability located in the Cable form. Uโ€ฆ

๐Ÿ“… Published: Nov. 15, 2024, 8:14 p.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 9:07 p.m.

6.5

CVSS3.1

CVE-2024-45609 - GLPI has a Reflected XSS in /front/stat.graph.php

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. An unauthenticated user can provide a malicious link to a GLPI technician in order to exploit a reflected XSS vulnerability located in the reports pages. Upgrโ€ฆ

๐Ÿ“… Published: Nov. 15, 2024, 8:02 p.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 9:22 p.m.

5.3

CVSS4.0

CVE-2024-11259 - code-projects Farmacia fornecedores.php cross site scripting

A vulnerability, which was classified as problematic, has been found in code-projects Farmacia 1.0. This issue affects some unknown processing of the file /fornecedores.php. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the pโ€ฆ

๐Ÿ“… Published: Nov. 15, 2024, 8 p.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 9:47 p.m.
Total resulsts: 349182
Page 7850 of 34,919
ยซ previous page ยป next page
Filters