Skip to main content
CVE-2023-34039 CRITICAL POC PATCH THREAT Act Now

Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptographic key generation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Aria Operations For Networks
NVD
CVSS 3.1
9.8
EPSS
64.2%
CVE-2021-3262 CRITICAL POC Act Now

TripSpark VEO Transportation-2.2.x-XP_BB-20201123-184084 NovusEDU-2.2.x-XP_BB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Novusedu Veo Transportation
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2023-41265 CRITICAL POC KEV THREAT Act Now

An HTTP Request Tunneling vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier,. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Request Smuggling Microsoft Qlik Sense
NVD
CVSS 3.1
9.9
EPSS
85.0%
CVE-2023-39268 CRITICAL Act Now

A memory corruption vulnerability in ArubaOS-Switch could lead to unauthenticated remote code execution by receiving specially crafted packets. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow RCE Arubaos Switch
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-40890 CRITICAL Act Now

A stack-based buffer overflow vulnerability exists in the lookup_sequence function of ZBar 0.23.90. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow RCE Information Disclosure Zbar
NVD
CVSS 3.1
9.8
EPSS
1.8%
CVE-2023-40889 CRITICAL Act Now

A heap-based buffer overflow exists in the qr_reader_match_centers function of ZBar 0.23.90. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow RCE Information Disclosure Zbar
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2023-40787 CRITICAL Act Now

In SpringBlade V3.6.0 when executing SQL query, the parameters submitted by the user are not wrapped in quotation marks, which leads to SQL injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Springblade
NVD GitHub
CVSS 3.1
9.8
EPSS
19.4%
CVE-2023-23770 CRITICAL Act Now

Motorola MBTS Site Controller accepts hard-coded backdoor password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Mbts Site Controller Firmware
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2023-41361 CRITICAL PATCH Act Now

An issue was discovered in FRRouting FRR 9.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Frrouting Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-41360 CRITICAL PATCH Act Now

An issue was discovered in FRRouting FRR through 9.0. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Frrouting Debian Linux Fedora
NVD GitHub
CVSS 3.1
9.1
EPSS
1.0%
CVE-2023-41359 CRITICAL PATCH Act Now

An issue was discovered in FRRouting FRR through 9.0. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Frrouting Fedora
NVD GitHub
CVSS 3.1
9.1
EPSS
1.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy