Skip to main content
CVE-2024-42186 LOW Monitor

BigFix Patch Download Plug-ins are affected by an insecure protocol support. Rated low severity (CVSS 2.8). No vendor patch available.

Information Disclosure
NVD
CVSS 3.1
2.8
EPSS
0.1%
CVE-2024-42185 LOW Monitor

BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks. Rated low severity (CVSS 2.5). No vendor patch available.

XXE Authentication Bypass Denial Of Service
NVD
CVSS 3.1
2.5
EPSS
0.1%
CVE-2024-42184 LOW Monitor

BigFix Patch Download Plug-ins are affected by insecure support for file URI scheme. Rated low severity (CVSS 2.5). No vendor patch available.

Information Disclosure
NVD
CVSS 3.1
2.5
EPSS
0.1%
CVE-2024-42183 LOW Monitor

BigFix Patch Download Plug-ins are affected by an arbitrary file download vulnerability. Rated low severity (CVSS 2.5). No vendor patch available.

Information Disclosure
NVD
CVSS 3.1
2.5
EPSS
0.1%
CVE-2024-57724 MEDIUM POC This Week

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component gray_record_cell. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Lunasvg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-57723 MEDIUM POC This Week

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component composition_source_over. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Lunasvg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-57722 HIGH POC This Month

lunasvg v3.0.0 was discovered to contain a allocation-size-too-big bug via the component plutovg_surface_create. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Lunasvg
NVD GitHub
CVSS 3.1
7.5
EPSS
0.4%
CVE-2024-57721 MEDIUM POC This Week

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_path_add_path. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Lunasvg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-57720 MEDIUM POC This Week

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_blend. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Lunasvg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-57719 MEDIUM POC This Week

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component blend_transformed_tiled_argb.isra.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Lunasvg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.2%
CVE-2024-42182 LOW Monitor

BigFix Patch Download Plug-ins are affected by Server-Side Request Forgery (SSRF) vulnerability. Rated low severity (CVSS 2.5). No vendor patch available.

SSRF
NVD
CVSS 3.1
2.5
EPSS
0.1%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy