Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-16 | CVE-2023-5097 | Improper Input Validation vulnerability in Hypr Workforce Access Improper Input Validation vulnerability in HYPR Workforce Access on Windows allows Path Traversal.This issue affects Workforce Access: before 8.7. | 5.5 |
2024-01-16 | CVE-2023-6334 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hypr Workforce Access Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HYPR Workforce Access on Windows allows Overflow Buffers.This issue affects Workforce Access: before 8.7. | 7.8 |
2024-01-16 | CVE-2023-6335 | Link Following vulnerability in Hypr Workforce Access Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Workforce Access on Windows allows User-Controlled Filename.This issue affects Workforce Access: before 8.7. | 7.8 |
2024-01-16 | CVE-2023-6336 | Link Following vulnerability in Hypr Workforce Access Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Workforce Access on MacOS allows User-Controlled Filename.This issue affects Workforce Access: before 8.7. | 7.8 |
2024-01-16 | CVE-2024-0599 | Cross-site Scripting vulnerability in Ujcms Jspxcms 10.2.0 A vulnerability was found in Jspxcms 10.2.0. | 5.4 |
2024-01-16 | CVE-2023-49351 | Out-of-bounds Write vulnerability in Edimax Br-6478Ac Firmware 1.23 A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy() function. | 9.8 |
2024-01-16 | CVE-2023-52041 | Unspecified vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 An issue discovered in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows attackers to run arbitrary code via the sub_410118 function of the shttpd program. | 9.8 |
2024-01-16 | CVE-2023-7234 | Improper Encoding or Escaping of Output vulnerability in Integrationobjects OPC UA Server Toolkit OPCUAServerToolkit will write a log message once an OPC UA client has successfully connected containing the client's self-defined description field. | 5.3 |
2024-01-16 | CVE-2024-0200 | Unsafe Reflection vulnerability in Github Enterprise Server An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead to reflection injection. | 9.8 |
2024-01-16 | CVE-2024-0507 | Command Injection vulnerability in Github Enterprise Server An attacker with access to a Management Console user account with the editor role could escalate privileges through a command injection vulnerability in the Management Console. | 8.8 |