Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-20361
A vulnerability in the Object Groups for Access Control Lists (ACLs) feature of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote malicious user to bypass configured access controls on managed devices that are running Cisco Firepower Threat D...
NA
CVE-2024-4563
The Progress MOVEit Automation configuration export function before 2024.0.1 uses a cryptographic method with insufficient bit length.
NA
CVE-2024-5166
An Insecure Direct Object Reference in Google Cloud's Looker allowed metadata exposure across authenticated Looker users sharing the same LookML model.
NA
CVE-2024-36077
Qlik Sense Enterprise for Windows prior to 14.187.4 allows a remote malicious user to elevate their privilege due to improper validation. The attacker can elevate their privilege to the internal system role, which allows them to execute commands on the server. This affects Februa...
NA
CVE-2024-5158
Type Confusion in V8 in Google Chrome before 125.0.6422.76 allowed a remote malicious user to potentially perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)
NA
CVE-2024-35362
Ecshop 3.6 is vulnerable to Cross Site Scripting (XSS) via ecshop/article_cat.php.
NA
CVE-2024-33225
An issue in the component RTKVHD64.sys of Realtek Semiconductor Corp Realtek(r) High Definition Audio Function Driver v6.0.9549.1 allows malicious users to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
NA
CVE-2024-33223
An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows malicious users to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
NA
CVE-2024-33222
An issue in the component ATSZIO64.sys of ASUSTeK Computer Inc ASUS ATSZIO Driver v0.2.1.7 allows malicious users to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
NA
CVE-2024-33224
An issue in the component rtkio64.sys of Realtek Semiconductor Corp Realtek lO Driver v1.008.0823.2017 allows malicious users to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »