VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-07-25
CVE-2024-38103
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
network
high complexity
CWE-359
5.9
5.9
2024-07-25
CVE-2024-6589
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.6.8.2 via the 'render_content_block_template' function.
network
low complexity
8.8
8.8
2024-07-24
CVE-2024-22444
A vulnerability within the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface.
network
low complexity
CWE-79
6.1
6.1
2024-07-24
CVE-2024-31970
AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have SSH enabled by default, accessible both over the LAN and the Internet.
network
low complexity
8.8
8.8
2024-07-24
CVE-2024-36541
Incorrect Default Permissions vulnerability in Kube-Logging Logging-Operator 4.6.0
Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.
network
low complexity
kube-logging
CWE-276
8.8
8.8
2024-07-24
CVE-2024-40422
Path Traversal vulnerability in Stitionai Devika 1.0
The snapshot_path parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is susceptible to a path traversal attack.
network
low complexity
stitionai
CWE-22
critical
9.1
9.1
2024-07-24
CVE-2024-40575
Unspecified vulnerability in Huawei Opengauss 7.3.0
An issue in Huawei Technologies opengauss (openGauss 5.0.0 build) v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes
local
low complexity
huawei
5.5
5.5
2024-07-24
CVE-2024-7069
SQL Injection vulnerability in Employee and Visitor Gate Pass Logging System Project Employee and Visitor Gate Pass Logging System 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0.
network
low complexity
employee-and-visitor-gate-pass-logging-system-project
CWE-89
7.5
7.5
2024-07-24
CVE-2024-7079
Missing Authentication for Critical Function vulnerability in Redhat Openshift Container Platform 3.11/4.0
A flaw was found in the Openshift console.
network
low complexity
redhat
CWE-306
6.5
6.5
2024-07-24
CVE-2024-39345
AdTran 834-5 HDC17600021F1 (SmartOS 11.1.1.1) devices enable the SSH service by default and have a hidden, undocumented, hard-coded support account whose password is based on the devices MAC address.
network
low complexity
CWE-78
7.2
7.2
«
1
(current)
2
3
4
5
...
21701
21702
»
Next