Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-31744
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure vulnerability, allowing malicious users to cause a denial of service attack through a specific image file.
NA
CVE-2024-31747
An issue in Yealink VP59 Microsoft Teams Phone firmware 91.15.0.118 (fixed in 122.15.0.142) allows a physically proximate malicious user to disable the phone lock via the Walkie Talkie menu option.
NA
CVE-2024-31750
SQL injection vulnerability in f-logic datacube3 v.1.0 allows a remote malicious user to obtain sensitive information via the req_id parameter.
NA
CVE-2024-31755
cJSON v1.7.17 exists to contain a segmentation violation, which can trigger through the second parameter of function cJSON_SetValuestring at cJSON.c.
NA
CVE-2024-31757
An issue in TeraByte Unlimited Image for Windows v.3.64.0.0 and before and fixed in v.4.0.0.0 allows a local malicious user to escalate privileges via the TBOFLHelper64.sys and TBOFLHelper.sys component.
NA
CVE-2024-31759
An issue in sanluan PublicCMS v.4.0.202302.e allows an malicious user to escalate privileges via the change password function.
NA
CVE-2024-31760
An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an malicious user to escalate privileges via the Session Expiration component.
NA
CVE-2024-3177
A security issue exists in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with the envFrom field populated. The polic...
NA
CVE-2024-31771
Insecure Permission vulnerability in TotalAV v.6.0.740 allows a local malicious user to escalate privileges via a crafted file
1 Github repository
NA
CVE-2024-31777
GUnet OpenEclass E-learning platform version 3.15 suffers from an unrestricted file upload vulnerability in certbadge.php that allows for remote command execution.
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »