Skip to main content
CVE-2024-10917 MEDIUM PATCH This Month

In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Integer Overflow vulnerability could allow attackers to cause unexpected behavior through arithmetic overflow.

Integer Overflow Information Disclosure Openj9
NVD GitHub
CVSS 3.1
5.3
EPSS
0.4%
CVE-2024-43435 MEDIUM PATCH This Month

A flaw was found in moodle. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Moodle
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-43433 MEDIUM PATCH This Month

A flaw was found in moodle. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Moodle
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-43432 MEDIUM PATCH This Month

A flaw was found in moodle. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Moodle
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-43430 MEDIUM PATCH This Month

A flaw was found in moodle. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Moodle
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-43429 MEDIUM PATCH This Month

A flaw was found in moodle. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Moodle
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-38826 MEDIUM This Month

Authenticated users can upload specifically crafted files to leak server resources. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service
NVD
CVSS 4.0
5.3
EPSS
0.4%
CVE-2024-11060 MEDIUM This Month

A vulnerability classified as critical has been found in Jinher Network Collaborative Management Platform 金和数字化智能办公平台 1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.3%
CVE-2024-52288 MEDIUM PATCH This Month

libosdp is an implementation of IEC 60839-11-5 OSDP (Open Supervised Device Protocol) and provides a C library with support for C++, Rust and Python3. Rated medium severity (CVSS 5.1), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure
NVD GitHub
CVSS 3.1
5.1
EPSS
0.1%
CVE-2024-45087 MEDIUM This Month

IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM XSS Websphere Application Server
NVD
CVSS 3.1
4.8
EPSS
0.2%
CVE-2024-51992 MEDIUM PATCH This Month

Orchid is a @laravel package that allows for rapid application development of back-office applications, admin/user panels, and dashboards. Rated medium severity (CVSS 4.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Microsoft
NVD GitHub
CVSS 3.1
4.1
EPSS
0.3%
CVE-2024-43427 LOW PATCH Monitor

A flaw was found in moodle. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Moodle
NVD
CVSS 3.1
3.7
EPSS
0.3%
CVE-2024-34015 LOW Monitor

Sensitive information disclosure during file browsing due to improper symbolic link handling. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure
NVD
CVSS 3.0
3.3
EPSS
0.2%
CVE-2024-52286 LOW Monitor

Stirling-PDF is a locally hosted web application that allows you to perform various operations on PDF files. Rated low severity (CVSS 2.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection
NVD GitHub
CVSS 4.0
2.0
EPSS
0.5%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy