Skip to main content
CVE-2024-0546 HIGH POC Act Now

A vulnerability, which was classified as problematic, has been found in EasyFTP 1.7.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Easyftp
NVD VulDB
CVSS 3.1
7.5
EPSS
6.8%
CVE-2024-0532 HIGH POC This Week

A vulnerability was found in Tenda A15 15.13.07.13. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda A15 Firmware
NVD GitHub VulDB
CVSS 4.0
8.6
EPSS
1.8%
CVE-2024-0548 HIGH POC This Week

A vulnerability was found in FreeFloat FTP Server 1.0 and classified as problematic. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Freefloat Ftp Server
NVD VulDB
CVSS 3.1
7.5
EPSS
1.3%
CVE-2024-0547 HIGH POC This Week

A vulnerability has been found in Ability FTP Server 2.34 and classified as problematic. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Ability Ftp Server
NVD VulDB
CVSS 3.1
7.5
EPSS
1.4%
CVE-2024-0543 HIGH POC This Week

A vulnerability classified as critical has been found in CodeAstro Real Estate Management System up to 1.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Real Estate Management System
NVD VulDB
CVSS 3.1
7.5
EPSS
0.5%
CVE-2024-0558 HIGH POC This Week

A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Dedebiz
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
0.6%
CVE-2024-0534 HIGH POC This Week

A vulnerability classified as critical has been found in Tenda A15 15.13.07.13. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow A15 Firmware
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
1.7%
CVE-2024-0533 HIGH POC This Week

A vulnerability was found in Tenda A15 15.13.07.13. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow A15 Firmware
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
1.7%
CVE-2024-0531 HIGH POC This Week

A vulnerability was found in Tenda A15 15.13.07.13. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Tenda Stack Overflow A15 Firmware
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
1.7%
CVE-2024-0552 CRITICAL Act Now

A remote code execution vulnerability exists in Intumit SmartRobot's web framework that allows unauthenticated attackers to execute arbitrary commands on the server without any user interaction. The vulnerability carries a critical CVSS score of 9.8 and is tagged as an RCE, though there is no indication of active exploitation in the wild (not in KEV) or public proof-of-concept availability. The Taiwan CERT has issued an advisory for this vulnerability affecting all versions of the SmartRobot platform.

RCE Command Injection Smartrobot
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2024-0542 CRITICAL Act Now

A vulnerability was found in Tenda W9 1.0.0.7(4456). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow W9 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.3%
CVE-2024-0541 CRITICAL Act Now

A vulnerability was found in Tenda W9 1.0.0.7(4456). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow W9 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.3%
CVE-2024-0540 CRITICAL Act Now

A vulnerability was found in Tenda W9 1.0.0.7(4456). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow W9 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2024-0539 CRITICAL Act Now

A vulnerability was found in Tenda W9 1.0.0.7(4456) and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow W9 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.3%
CVE-2024-0538 CRITICAL Act Now

A vulnerability has been found in Tenda W9 1.0.0.7(4456) and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow W9 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.4%
CVE-2024-0537 CRITICAL Act Now

A vulnerability, which was classified as critical, was found in Tenda W9 1.0.0.7(4456). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow W9 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.3%
CVE-2024-0536 CRITICAL Act Now

A vulnerability, which was classified as critical, has been found in Tenda W9 1.0.0.7(4456). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow W9 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.4%
CVE-2024-0535 CRITICAL Act Now

A vulnerability classified as critical was found in Tenda PA6 1.0.1.21. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Tenda Stack Overflow Pa6 Firmware
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.0%
CVE-2024-0530 CRITICAL Act Now

A vulnerability was found in CXBSoft Post-Office up to 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Microsoft Post Office
NVD VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-0529 CRITICAL Act Now

A vulnerability has been found in CXBSoft Post-Office up to 1.0 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Microsoft Post Office
NVD VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2024-0528 CRITICAL Act Now

A vulnerability, which was classified as critical, was found in CXBSoft Post-Office 1.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Microsoft Post Office
NVD VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-0527 CRITICAL Act Now

A vulnerability, which was classified as critical, has been found in CXBSoft Url-shorting up to 1.3.1.php of the component HTTP POST Request Handler. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Url Shorting
NVD VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2024-0526 CRITICAL Act Now

A vulnerability classified as critical was found in CXBSoft Url-shorting up to 1.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Url Shorting
NVD VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-0525 CRITICAL Act Now

A vulnerability classified as critical has been found in CXBSoft Url-shorting up to 1.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Url Shorting
NVD VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-0524 CRITICAL Act Now

A vulnerability was found in CXBSoft Url-shorting up to 1.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Url Shorting
NVD VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-0557 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Dedebiz
NVD GitHub VulDB
CVSS 3.1
5.4
EPSS
0.5%
CVE-2024-22207 MEDIUM POC PATCH This Month

fastify-swagger-ui is a Fastify plugin for serving Swagger UI. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Swagger Ui
NVD GitHub
CVSS 3.1
5.3
EPSS
2.0%
CVE-2024-0562 HIGH PATCH This Week

A use-after-free flaw was found in the Linux Kernel. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Use After Free Linux Information Disclosure Memory Corruption Linux Kernel +1
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-0315 HIGH This Week

Remote file inclusion vulnerability in FireEye Central Management affecting version 9.1.1.956704. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

LFI PHP Information Disclosure Central Management
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-0316 HIGH This Week

Improper cleanup vulnerability in exceptions thrown in FireEye Endpoint Security, affecting version 5.2.0.958244. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Endpoint Security
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2024-0565 HIGH PATCH This Week

An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. Rated high severity (CVSS 7.4), this vulnerability is low attack complexity.

Integer Overflow Denial Of Service Linux Linux Kernel Ontap Tools
NVD
CVSS 3.1
7.4
EPSS
2.0%
CVE-2024-0545 MEDIUM This Month

A vulnerability classified as problematic was found in CodeCanyon RISE Ultimate Project Manager 3.5.3. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Open Redirect Rise Ultimate Project Manager
NVD VulDB
CVSS 4.0
6.9
EPSS
0.5%
CVE-2024-0320 MEDIUM This Month

Cross-Site Scripting in FireEye Malware Analysis (AX) affecting version 9.0.3.936530. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Malware Analysis
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0319 MEDIUM This Month

Open Redirect vulnerability in FireEye HXTool affecting version 4.6, the exploitation of which could allow an attacker to redirect a legitimate user to a malicious page by changing the 'redirect_uri'. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Hxtool
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0318 MEDIUM This Month

Cross-Site Scripting in FireEye HXTool affecting version 4.6. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Hxtool
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0317 MEDIUM This Month

Cross-Site Scripting in FireEye EX, affecting version 9.0.3.936727. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ex 5500 Firmwarea Ex 8500 Firmware Ex 3500 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0314 MEDIUM This Month

XSS vulnerability in FireEye Central Management affecting version 9.1.1.956704, which could allow an attacker to modify special HTML elements in the application and cause a reflected XSS, leading to. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Central Management
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-20721 MEDIUM PATCH This Month

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Acrobat Edge Chromium
NVD
CVSS 3.1
5.5
EPSS
0.7%
CVE-2024-20709 MEDIUM PATCH This Month

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Acrobat Edge Chromium
NVD
CVSS 3.1
5.5
EPSS
0.6%
CVE-2024-22028 MEDIUM This Month

Insufficient technical documentation issue exists in thermal camera TMC series all firmware versions. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure 3R Tmc01 Firmware 3R Tmc02 Firmware 3R Tmc03 Firmware 3R Tmc04 Firmware +2
NVD
CVSS 3.1
4.6
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy