Skip to main content
CVE-2024-32618 HIGH This Week

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5T__get_native_type in H5Tnative.c, resulting in the corruption of the instruction pointer. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2024-32616 HIGH This Week

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5O__dtype_encode_helper in H5Odtype.c. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.3%
CVE-2024-32613 HIGH This Week

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2024-32612 HIGH This Week

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5HL__fl_deserialize in H5HLcache.c, resulting in the corruption of the instruction pointer, a different vulnerability than. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.3%
CVE-2024-29165 HIGH This Week

HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_fletcher32, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow RCE Denial Of Service Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2024-29163 HIGH This Week

HDF5 through 1.14.3 contains a heap buffer overflow in H5T__bit_find, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow RCE Denial Of Service Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2024-29162 HIGH This Week

HDF5 through 1.13.3 and/or 1.14.2 contains a stack buffer overflow in H5HG_read, resulting in denial of service or potential code execution. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow RCE Denial Of Service Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2024-29160 HIGH This Week

HDF5 through 1.14.3 contains a heap buffer overflow in H5HG__cache_heap_deserialize, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow RCE Denial Of Service Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2024-29158 HIGH This Week

HDF5 through 1.14.3 contains a stack buffer overflow in H5FL_arr_malloc, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. No vendor patch available.

Heap Overflow Buffer Overflow RCE Denial Of Service Hdf5
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2024-27394 HIGH PATCH This Week

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix Use-After-Free in tcp_ao_connect_init Since call_rcu, which is called in the hlist_for_each_entry_rcu traversal of. Rated high severity (CVSS 7.4), this vulnerability is no authentication required. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Use After Free Linux Information Disclosure Memory Corruption Linux Kernel
NVD
CVSS 3.1
7.4
EPSS
0.3%
CVE-2024-33577 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Stack Overflow Simcenter Femap Simcenter Nastran
NVD
CVSS 4.0
7.3
EPSS
0.2%
CVE-2024-32636 HIGH This Week

A vulnerability has been identified in JT2Go (All versions < V2312.0005), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.10),. Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Jt2Go Parasolid Teamcenter Visualization
NVD
CVSS 4.0
7.3
EPSS
0.3%
CVE-2024-32635 HIGH This Week

A vulnerability has been identified in JT2Go (All versions < V2312.0005), Teamcenter Visualization V14.2 (All versions < V14.2.0.12), Teamcenter Visualization V14.3 (All versions < V14.3.0.10),. Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Jt2Go Parasolid Teamcenter Visualization
NVD
CVSS 4.0
7.3
EPSS
0.3%
CVE-2024-32066 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32065 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32064 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32063 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Memory Corruption Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32062 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Memory Corruption Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32061 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32060 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32059 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32058 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32057 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Memory Corruption Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.4%
CVE-2024-32055 HIGH This Week

A vulnerability has been identified in Simcenter Femap (All versions < V2406). Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Information Disclosure Ps Iges Parasolid Translator Simcenter Femap
NVD
CVSS 4.0
7.3
EPSS
0.3%
CVE-2024-31484 HIGH This Week

A vulnerability has been identified in CPC80 Central Processing/Communication (All versions < V16.41), CPCI85 Central Processing/Communication (All versions < V5.30), CPCX26 Central. Rated high severity (CVSS 7.3), this vulnerability is no authentication required. No vendor patch available.

Denial Of Service
NVD
CVSS 4.0
7.3
EPSS
0.5%
CVE-2024-31954 HIGH This Week

An issue was discovered in the installer in Samsung Portable SSD for T5 1.6.10 on Windows. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

RCE Samsung Microsoft
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2024-28279 HIGH This Week

Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via book.php?bookisbn=. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi PHP Computer Book Store
NVD GitHub
CVSS 3.1
7.3
EPSS
0.3%
CVE-2023-45583 HIGH This Week

A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiOS 6.2 all versions,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Fortinet Fortiproxy Fortiswitchmanager Fortios +1
NVD VulDB
CVSS 3.1
7.2
EPSS
0.2%
CVE-2024-2637 HIGH This Week

An Uncontrolled Search Path Element vulnerability in B&R Industrial Automation Scene Viewer, B&R Industrial Automation Automation Runtime, B&R Industrial Automation mapp Vision, B&R Industrial. Rated high severity (CVSS 7.2). No vendor patch available.

Information Disclosure Microsoft
NVD
CVSS 3.1
7.2
EPSS
0.2%
CVE-2024-30044 HIGH This Week

Microsoft SharePoint Server Remote Code Execution Vulnerability. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Deserialization RCE Microsoft Sharepoint Server
NVD
CVSS 3.1
7.2
EPSS
84.0%
CVE-2024-27945 HIGH This Week

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Ruggedcom Crossbow
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2024-27944 HIGH This Week

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Ruggedcom Crossbow
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2024-27943 HIGH This Week

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Ruggedcom Crossbow
NVD
CVSS 3.1
7.2
EPSS
1.3%
CVE-2024-4423 HIGH This Week

The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass SQLi
NVD
CVSS 3.1
7.2
EPSS
0.9%
CVE-2024-33250 HIGH This Week

An issue in Open-Source Technology Committee SRS real-time video server RS/4.0.268(Leo) and SRS/4.0.195(Leo) allows a remote attacker to execute arbitrary code via a crafted request. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF RCE
NVD GitHub
CVSS 3.1
7.2
EPSS
0.7%
CVE-2024-34431 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP-etracker WP etracker allows Reflected XSS.0.2. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2024-4747 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Propovoice Propovoice CRM allows Stored XSS.7.6.2. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2024-34818 HIGH This Week

Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress.33.17. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2024-27825 HIGH This Week

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Intel Authentication Bypass macOS
NVD VulDB
CVSS 3.1
7.1
EPSS
0.0%
CVE-2024-33495 HIGH This Week

A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA10) (All versions < V3.0.1.1), SIMATIC RTLS. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service
NVD
CVSS 4.0
7.1
EPSS
0.6%
CVE-2024-27401 HIGH PATCH This Week

In the Linux kernel, the following vulnerability has been resolved: firewire: nosy: ensure user_length is taken into account when fetching packet contents Ensure that packet_buffer_get respects the. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Buffer Overflow Linux Linux Kernel Debian Linux Fedora
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2024-23576 HIGH This Week

Security vulnerability in HCL Commerce 9.1.12 and 9.1.13 could allow denial of service, disclosure of user personal data, and performing of unauthorized administrative operations. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Denial Of Service Hcl Commerce
NVD
CVSS 3.1
7.1
EPSS
0.5%
CVE-2024-27397 HIGH PATCH This Week

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: use timestamp to check for set element timeout Add a timestamp field at the beginning of the transaction,. Rated high severity (CVSS 7.0). This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Use After Free Memory Corruption Information Disclosure Linux Linux Kernel
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2024-30033 HIGH This Week

Windows Search Service Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0). No vendor patch available.

Information Disclosure Microsoft Windows 10 21h2 Windows 10 22h2 Windows 11 21H2 +1
NVD
CVSS 3.1
7.0
EPSS
1.0%
CVE-2024-28134 HIGH This Week

An unauthenticated remote attacker can extract a session token with a MitM attack and gain web-based management access with the privileges of the currently logged in user due to cleartext. Rated high severity (CVSS 7.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Charx Sec 3000 Firmware Charx Sec 3050 Firmware Charx Sec 3100 Firmware Charx Sec 3150 Firmware
NVD
CVSS 3.1
7.0
EPSS
0.5%
CVE-2024-3460 HIGH This Week

In KioWare for Windows (versions all through 8.34) it is possible to exit this software and use other already opened applications utilizing a short time window before the forced automatic logout. Rated high severity (CVSS 7.0). No vendor patch available.

Information Disclosure Microsoft Kioware
NVD
CVSS 3.1
7.0
EPSS
0.3%
Prev Page 5 of 5

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy