Skip to main content
CVE-2023-30153 CRITICAL POC Act Now

An SQL injection vulnerability in the Payplug (payplug) module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Payplug
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-36670 CRITICAL Act Now

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Ngc Indoor Unit Firmware
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2023-36669 CRITICAL Act Now

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit (IDU) before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Ngc Indoor Unit Firmware
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-35189 CRITICAL Act Now

Iagona ScrutisWeb versions 2.1.37 and prior are vulnerable to a remote code execution vulnerability that could allow an unauthenticated user to upload a malicious payload and execute it. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE File Upload Scrutisweb
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-38429 CRITICAL PATCH Act Now

An issue was discovered in the Linux kernel before 6.3.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Linux Linux Kernel
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-38427 CRITICAL PATCH Act Now

An issue was discovered in the Linux kernel before 6.3.8. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Linux Linux Kernel H300S +3
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2023-38432 CRITICAL PATCH Act Now

An issue was discovered in the Linux kernel before 6.3.10. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Linux Linux Kernel Solidfire +5
NVD
CVSS 3.1
9.1
EPSS
2.4%
CVE-2023-38431 CRITICAL PATCH Act Now

An issue was discovered in the Linux kernel before 6.3.8. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Linux Linux Kernel Solidfire Hci Management Node +4
NVD
CVSS 3.1
9.1
EPSS
1.1%
CVE-2023-38430 CRITICAL PATCH Act Now

An issue was discovered in the Linux kernel before 6.3.9. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Linux Linux Kernel Hci Management Node +4
NVD
CVSS 3.1
9.1
EPSS
1.1%
CVE-2023-38428 CRITICAL PATCH Act Now

An issue was discovered in the Linux kernel before 6.3.4. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Linux Linux Kernel Solidfire Hci Management Node +5
NVD
CVSS 3.1
9.1
EPSS
3.0%
CVE-2023-38426 CRITICAL PATCH Act Now

An issue was discovered in the Linux kernel before 6.3.4. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Linux Linux Kernel Solidfire Hci Management Node +5
NVD
CVSS 3.1
9.1
EPSS
2.4%
CVE-2023-21975 CRITICAL PATCH Act Now

Vulnerability in the Application Express Customers Plugin product of Oracle Application Express (component: User Account). Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity.

Oracle Information Disclosure Application Express
NVD
CVSS 3.1
9.0
EPSS
0.5%
CVE-2023-21974 CRITICAL PATCH Act Now

Vulnerability in the Application Express Team Calendar Plugin product of Oracle Application Express (component: User Account). Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity.

Oracle Information Disclosure Application Express
NVD
CVSS 3.1
9.0
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy