Vulnerabilities

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-18	CVE-2024-42391	Unspecified vulnerability in Cesanta Mongoose Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space. network low complexity cesanta	5.3
2024-11-18	CVE-2024-42392	Unspecified vulnerability in Cesanta Mongoose Improper Neutralization of Delimiters vulnerability in Cesanta Mongoose Web Server v7.14 allows to trigger an infinite loop bug if the input string contains unexpected characters. network low complexity cesanta	7.5
2024-11-18	CVE-2024-41967	A low privileged remote attacker may modify the boot mode configuration setup of the device, leading to modification of the firmware upgrade process or a denial-of-service attack. network low complexity CWE-306	8.1
2024-11-18	CVE-2024-41968	A low privileged remote attacker may modify the docker settings setup of the device, leading to a limited DoS. network low complexity	5.4
2024-11-18	CVE-2024-41969	A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a missing authentication vulnerability which could lead to full system access and/or DoS. network low complexity CWE-306	8.8
2024-11-18	CVE-2024-49574	SQL Injection vulnerability in Zohocorp Manageengine Adaudit Plus Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module. network low complexity zohocorp CWE-89	8.8
2024-11-18	CVE-2024-22067	Unspecified vulnerability in ZTE Nh8091 Firmware Znh8091V1.8 ZTE NH8091 product has an improper permission control vulnerability. network low complexity zte	8.8
2024-11-18	CVE-2024-11308	Unspecified vulnerability in Trcore DVC The DVC from TRCore encrypts files using a hardcoded key. local low complexity trcore	5.5
2024-11-17	CVE-2020-25720	A vulnerability was found in Samba where a delegated administrator with permission to create objects in Active Directory can write to all attributes of the newly created object, including security-sensitive attributes, even after the object's creation. network high complexity CWE-264	7.5
2024-11-17	CVE-2023-0657	A flaw was found in Keycloak. high complexity CWE-273	3.4

Vulnerabilities {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities"}]}

Vulnerabilities