Skip to main content
CVE-2024-5721 HIGH POC Act Now

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass RCE Unified Secops Platform
NVD
CVSS 3.1
8.1
EPSS
5.8%
CVE-2024-52802 HIGH POC This Week

RIOT is an operating system for internet of things (IoT) devices. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Riot
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2024-9254 HIGH This Week

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Use After Free RCE Memory Corruption Pdf Editor Pdf Reader
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2024-11394 HIGH PATCH This Week

Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Transformers
NVD
CVSS 3.1
8.8
EPSS
2.4%
CVE-2024-11393 HIGH PATCH This Week

Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Transformers
NVD
CVSS 3.1
8.8
EPSS
2.9%
CVE-2024-11392 HIGH POC PATCH This Week

Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Transformers
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
7.1%
CVE-2024-8809 HIGH This Week

Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Vns3
NVD
CVSS 3.1
8.8
EPSS
1.6%
CVE-2024-8808 HIGH This Week

Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Vns3
NVD
CVSS 3.1
8.8
EPSS
1.6%
CVE-2024-8805 HIGH This Week

BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass RCE Bluez
NVD
CVSS 3.1
8.8
EPSS
2.0%
CVE-2024-6249 HIGH This Week

Wyze Cam v3 TCP Traffic Handling Stack-Based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow RCE Cam V3 Firmware
NVD
CVSS 3.0
8.8
EPSS
1.2%
CVE-2024-6246 HIGH This Week

Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Heap Overflow Buffer Overflow RCE Cam V3 Firmware
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2024-5722 HIGH This Week

Logsign Unified SecOps Platform HTTP API Hard-coded Cryptographic Key Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Unified Secops Platform
NVD
CVSS 3.0
8.8
EPSS
1.1%
CVE-2024-5720 HIGH This Week

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Unified Secops Platform
NVD
CVSS 3.0
8.8
EPSS
2.6%
CVE-2024-5719 HIGH This Week

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Unified Secops Platform
NVD
CVSS 3.0
8.8
EPSS
2.6%
CVE-2024-5717 HIGH This Week

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Unified Secops Platform
NVD
CVSS 3.0
8.8
EPSS
3.0%
CVE-2024-50054 HIGH This Week

The back-end does not sufficiently verify the user-controlled filename parameter which makes it possible for an attacker to perform a path traversal attack and retrieve arbitrary files from the file. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal
NVD
CVSS 4.0
8.7
EPSS
0.7%
CVE-2024-48862 HIGH This Week

A link following vulnerability has been reported to affect QuLog Center. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Qulog Center
NVD
CVSS 4.0
8.7
EPSS
0.9%
CVE-2024-38644 HIGH This Week

An OS command injection vulnerability has been reported to affect Notes Station 3. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Notes Station 3
NVD
CVSS 4.0
8.7
EPSS
1.6%
CVE-2024-38646 HIGH This Week

An incorrect permission assignment for critical resource vulnerability has been reported to affect Notes Station 3. Rated high severity (CVSS 8.4). No vendor patch available.

Information Disclosure Notes Station 3
NVD
CVSS 4.0
8.4
EPSS
0.2%
CVE-2024-9710 HIGH PATCH This Week

PostHog database_schema Server-Side Request Forgery Information Disclosure Vulnerability. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Information Disclosure Posthog
NVD GitHub
CVSS 3.1
8.3
EPSS
0.7%
CVE-2024-7837 HIGH This Week

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Firmanet Software ERP allows SQL Injection.11.2024. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi
NVD VulDB
CVSS 3.1
8.2
EPSS
0.1%
CVE-2024-5718 HIGH This Week

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass RCE Unified Secops Platform
NVD
CVSS 3.1
8.1
EPSS
1.4%
CVE-2024-10220 HIGH PATCH This Week

The Kubernetes kubelet component allows arbitrary command execution via specially crafted gitRepo volumes.28.11, from 1.29.0 through 1.29.6, from 1.30.0 through 1.30.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Kubernetes
NVD GitHub
CVSS 3.1
8.1
EPSS
3.0%
CVE-2024-41779 HIGH This Week

IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

IBM Authentication Bypass Engineering Systems Design Rhapsody
NVD
CVSS 3.1
8.1
EPSS
0.8%
CVE-2024-11601 HIGH PATCH This Week

The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blog, Video Gallery) plugin for WordPress is vulnerable to Cross-Site. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

Authentication Bypass WordPress CSRF Sky Addons For Elementor
NVD
CVSS 3.1
8.1
EPSS
0.3%
CVE-2024-11104 HIGH PATCH This Week

The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blogs) plugin for WordPress is vulnerable to unauthorized. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

Authentication Bypass WordPress Denial Of Service Sky Addons For Elementor
NVD
CVSS 3.1
8.1
EPSS
0.7%
CVE-2024-31408 HIGH This Week

OS command injection vulnerability exists in AIPHONE IX SYSTEM and IXG SYSTEM. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

Command Injection
NVD
CVSS 3.0
8.0
EPSS
1.1%
CVE-2024-38647 HIGH This Week

An exposure of sensitive information vulnerability has been reported to affect QNAP AI Core. Rated high severity (CVSS 7.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Qnap Ai Core
NVD
CVSS 4.0
7.9
EPSS
0.6%
CVE-2024-9767 HIGH This Week

IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure RCE Irfanview
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9261 HIGH This Week

IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Stack Overflow RCE Irfanview
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9260 HIGH This Week

IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Irfanview
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-9259 HIGH This Week

IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Irfanview
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-9258 HIGH This Week

IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Memory Corruption Irfanview
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9255 HIGH This Week

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free RCE Memory Corruption Pdf Editor Pdf Reader
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2024-9252 HIGH This Week

Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free Information Disclosure RCE Memory Corruption Pdf Editor +1
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9251 HIGH This Week

Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free Information Disclosure RCE Memory Corruption Pdf Editor +1
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9250 HIGH This Week

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free RCE Memory Corruption Pdf Editor Pdf Reader
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2024-9248 HIGH This Week

Foxit PDF Reader PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Pdf Editor Pdf Reader
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2024-9247 HIGH This Week

Foxit PDF Reader Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Pdf Editor Pdf Reader
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9245 HIGH This Week

Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Pdf Editor Pdf Reader
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-9244 HIGH This Week

Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Pdf Editor Pdf Reader
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-9243 HIGH This Week

Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free RCE Memory Corruption Pdf Editor Pdf Reader
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9114 HIGH This Week

FastStone Image Viewer GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Image Viewer
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2024-9113 HIGH This Week

FastStone Image Viewer TGA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Image Viewer
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-9112 HIGH This Week

FastStone Image Viewer PSD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Image Viewer
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-8357 HIGH This Week

Visteon Infotainment App SoC Missing Immutable Root of Trust in Hardware Local Privilege Escalation Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation RCE Infotainment
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-8356 HIGH This Week

Visteon Infotainment VIP MCU Code Insufficient Validation of Data Authenticity Local Privilege Escalation Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation RCE Infotainment
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2024-8025 HIGH This Week

Nikon NEF Codec Thumbnail Provider NRW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Heap Overflow Buffer Overflow RCE Nef Codec
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-7565 HIGH This Week

SMARTBEAR SoapUI unpackageAll Directory Traversal Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Path Traversal Soapui
NVD
CVSS 3.1
7.8
EPSS
1.0%
CVE-2024-7510 HIGH This Week

Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free RCE Memory Corruption Sketchup
NVD
CVSS 3.1
7.8
EPSS
0.5%
Page 1 of 5 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy