Skip to main content
CVE-2024-0557 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Dedebiz
NVD GitHub VulDB
CVSS 3.1
5.4
EPSS
0.5%
CVE-2024-22207 MEDIUM POC PATCH This Month

fastify-swagger-ui is a Fastify plugin for serving Swagger UI. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Swagger Ui
NVD GitHub
CVSS 3.1
5.3
EPSS
2.0%
CVE-2024-0545 MEDIUM This Month

A vulnerability classified as problematic was found in CodeCanyon RISE Ultimate Project Manager 3.5.3. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Open Redirect Rise Ultimate Project Manager
NVD VulDB
CVSS 4.0
6.9
EPSS
0.5%
CVE-2024-0320 MEDIUM This Month

Cross-Site Scripting in FireEye Malware Analysis (AX) affecting version 9.0.3.936530. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Malware Analysis
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0319 MEDIUM This Month

Open Redirect vulnerability in FireEye HXTool affecting version 4.6, the exploitation of which could allow an attacker to redirect a legitimate user to a malicious page by changing the 'redirect_uri'. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Open Redirect Hxtool
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0318 MEDIUM This Month

Cross-Site Scripting in FireEye HXTool affecting version 4.6. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Hxtool
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0317 MEDIUM This Month

Cross-Site Scripting in FireEye EX, affecting version 9.0.3.936727. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ex 5500 Firmwarea Ex 8500 Firmware Ex 3500 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-0314 MEDIUM This Month

XSS vulnerability in FireEye Central Management affecting version 9.1.1.956704, which could allow an attacker to modify special HTML elements in the application and cause a reflected XSS, leading to. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Central Management
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-20721 MEDIUM PATCH This Month

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Acrobat Edge Chromium
NVD
CVSS 3.1
5.5
EPSS
0.7%
CVE-2024-20709 MEDIUM PATCH This Month

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Acrobat Edge Chromium
NVD
CVSS 3.1
5.5
EPSS
0.6%
CVE-2024-22028 MEDIUM This Month

Insufficient technical documentation issue exists in thermal camera TMC series all firmware versions. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure 3R Tmc01 Firmware 3R Tmc02 Firmware 3R Tmc03 Firmware 3R Tmc04 Firmware +2
NVD
CVSS 3.1
4.6
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy