Vulnerability Trends

CVE-2024-9680An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of th...
CVE-2024-23113A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy v...
CVE-2024-43572Microsoft Management Console Remote Code Execution Vulnerability
CVE-2024-9464An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to run arbitrary OS commands as root in Expedi...
CVE-2024-37404CVE-2024-37404
CVE-2024-43047Memory corruption while maintaining memory maps of HLOS memory.
CVE-2024-38124Windows Netlogon Elevation of Privilege Vulnerability
CVE-2024-5910Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with ne...
CVE-2024-43573Windows MSHTML Platform Spoofing Vulnerability
CVE-2024-45409The Ruby SAML library is for implementing the client side of a SAML authorization. Ruby-SAML in <= 12.2 and 1.13.0 <= 1.16.0 does not properly verify ...
CVE-2023-52447In the Linux kernel, the following vulnerability has been resolved: bpf: Defer the free of inner map when necessary When updating or deleting an inn...
CVE-2024-9465An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to reveal Expedition database contents, such as pas...
CVE-2024-9164An issue was discovered in GitLab EE affecting all versions starting from 12.5 prior to 17.2.9, starting from 17.3, prior to 17.3.5, and starting from...
CVE-2024-9463An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to run arbitrary OS commands as root in Expe...
CVE-2024-45519The postjournal service in Zimbra Collaboration (ZCS) before 8.8.15 Patch 46, 9 before 9.0.0 Patch 41, 10 before 10.0.9, and 10.1 before 10.1.1 someti...
CVE-2024-40711A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution (RCE).
CVE-2024-20696Windows Libarchive Remote Code Execution Vulnerability
CVE-2024-43516Windows Secure Kernel Mode Elevation of Privilege Vulnerability
CVE-2024-8015In Progress Telerik Report Server versions prior to 2024 Q3 (10.2.24.924), a remote code execution attack is possible through object injection via an ...
CVE-2024-9441The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can ...