Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-05 | CVE-2024-24260 | Use After Free vulnerability in Ireader Media-Server 1.0.0 media-server v1.0.0 was discovered to contain a Use-After-Free (UAF) vulnerability via the sip_subscribe_remove function at /uac/sip-uac-subscribe.c. | 7.5 |
| 2024-02-05 | CVE-2024-24262 | Use After Free vulnerability in Ireader Media-Server 1.0.0 media-server v1.0.0 was discovered to contain a Use-After-Free (UAF) vulnerability via the sip_uac_stop_timer function at /uac/sip-uac-transaction.c. | 7.5 |
| 2024-02-05 | CVE-2024-24263 | Use After Free vulnerability in Chendotjs Lotos Webserver 0.1.1 Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free (UAF) vulnerability via the response_append_status_line function at /lotos/src/response.c. | 7.5 |
| 2024-02-05 | CVE-2024-24265 | Memory Leak vulnerability in Gpac 2.2.1 gpac v2.2.1 was discovered to contain a memory leak via the dst_props variable in the gf_filter_pid_merge_properties_internal function. | 7.5 |
| 2024-02-05 | CVE-2024-24266 | Use After Free vulnerability in Gpac 2.2.1 gpac v2.2.1 was discovered to contain a Use-After-Free (UAF) vulnerability via the dasher_configure_pid function at /src/filters/dasher.c. | 7.5 |
| 2024-02-05 | CVE-2024-24267 | Memory Leak vulnerability in Gpac 2.2.1 gpac v2.2.1 was discovered to contain a memory leak via the gfio_blob variable in the gf_fileio_from_blob function. | 7.5 |
| 2024-02-05 | CVE-2024-0953 | Open Redirect vulnerability in Mozilla Firefox When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. | 6.1 |
| 2024-02-05 | CVE-2023-47355 | Unspecified vulnerability in Eyuepcanyilmaz Root Quick Reboot 1.0.8 The com.eypcnnapps.quickreboot (aka Eyuep Can Yilmaz {ROOT] Quick Reboot) application 1.0.8 for Android has exposed broadcast receivers for PowerOff, Reboot, and Recovery (e.g., com.eypcnnapps.quickreboot.widget.PowerOff) that are susceptible to unauthorized broadcasts because of missing input validation. | 7.5 |
| 2024-02-05 | CVE-2024-0323 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Br-Automation Automation Runtime 2.96/3.00 Use of a Broken or Risky Cryptographic Algorithm vulnerability in B&R Industrial Automation Automation Runtime (SDM modules). The FTP server used on the B&R Automation Runtime supports unsecure encryption mechanisms, such as SSLv3, TLSv1.0 and TLS1.1. | 9.8 |
| 2024-02-05 | CVE-2024-23054 | Uncontrolled Search Path Element vulnerability in Plone Docker Official Image 5.2.13 An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for remote code execution due to a package listed in ++plone++static/components not existing in the public package index (npm). | 9.8 |