Search Results (Refine Search)
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2024-34486 |
OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service (infinite loop) via OFPQueueProp.len=0. Published: May 04, 2024; 11:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34484 |
OFPBucket in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service (infinite loop) via action.len=0. Published: May 04, 2024; 10:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34483 |
OFPGroupDescStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service (infinite loop) via OFPBucket.len=0. Published: May 04, 2024; 10:15:06 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4492 |
A vulnerability, which was classified as critical, has been found in Tenda i21 1.0.0.14(4656). This issue affects the function formOfflineSet of the file /goform/setStaOffline. The manipulation of the argument GO/ssidIndex leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263081 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: May 04, 2024; 9:15:06 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34478 |
btcd before 0.24.0 does not correctly implement the consensus rules outlined in BIP 68 and BIP 112, making it susceptible to consensus failures. Specifically, it uses the transaction version as a signed integer when it is supposed to be treated as unsigned. There can be a chain split and loss of funds. Published: May 04, 2024; 9:15:06 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-4491 |
A vulnerability classified as critical was found in Tenda i21 1.0.0.14(4656). This vulnerability affects the function formGetDiagnoseInfo. The manipulation of the argument cmdinput leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263080. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: May 04, 2024; 8:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34476 |
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogs_nas_encrypt in lib/nas/common/security.c for pkbuf->len. Published: May 04, 2024; 8:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34475 |
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmm_state_authentication in amf/gmm-sm.c for != OGS_ERROR. Published: May 04, 2024; 8:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34473 |
An issue was discovered in appmgr in O-RAN Near-RT RIC I-Release. An attacker could register an unintended RMR message type during xApp registration to disrupt other service components. Published: May 04, 2024; 7:15:06 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-52729 |
TCPServer.cpp in SimpleNetwork through 29bc615 has an off-by-one error that causes a buffer overflow when trying to add '\0' to the end of long msg data. It can be exploited via crafted TCP packets. Published: May 04, 2024; 6:15:46 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34469 |
Rukovoditel before 3.5.3 allows XSS via user_photo to index.php?module=users/registration&action=save. Published: May 04, 2024; 4:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34468 |
Rukovoditel before 3.5.3 allows XSS via user_photo to My Page. Published: May 04, 2024; 4:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34467 |
ThinkPHP 8.0.3 allows remote attackers to discover the PHPSESSION cookie because think_exception.tpl (aka the debug error output source code) provides this in an error message for a crafted URI in a GET request. Published: May 04, 2024; 4:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34462 |
Alinto SOGo through 5.10.0 allows XSS during attachment preview. Published: May 04, 2024; 3:15:46 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-27283 |
IBM Aspera Orchestrator 4.0.1 could allow a remote attacker to enumerate usernames due to observable response discrepancies. IBM X-Force ID: 248545. Published: May 04, 2024; 10:16:01 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-1050 |
The Import and export users and customers plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_force_reset_password_delete_metas() function in all versions up to, and including, 1.26.5. This makes it possible for authenticated attackers, with subscriber-level access and above, to delete all forced password resets. Published: May 04, 2024; 4:15:06 AM -0400 |
V3.1: 4.3 MEDIUM V2.0:(not available) |
CVE-2023-7065 |
The Stop Spammers Security | Block Spam Users, Comments, Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2024.4. This is due to missing or incorrect nonce validation on the sfs_process AJAX action. This makes it possible for unauthenticated attackers to add arbitrary IPs to the plugin's allowlist and blocklist via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. Published: May 04, 2024; 4:15:06 AM -0400 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
CVE-2024-34461 |
Zenario before 9.5.60437 uses Twig filters insecurely in the Twig Snippet plugin, and in the site-wide HEAD and BODY elements, enabling code execution by a designer or an administrator. Published: May 04, 2024; 1:15:06 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-34460 |
The Tree Explorer tool from Organizer in Zenario before 9.5.60602 is affected by XSS. (This component was removed in 9.5.60602.) Published: May 04, 2024; 1:15:06 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3240 |
The ConvertPlug plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.5.25 via deserialization of untrusted input from the 'settings_encoded' attribute of the 'smile_info_bar' shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code. Published: May 04, 2024; 12:15:08 AM -0400 |
V3.1: 8.8 HIGH V2.0:(not available) |