Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-10-08 CVE-2024-47194 Uncontrolled Search Path Element vulnerability in Siemens Modelsim and Questa
A vulnerability has been identified in ModelSim (All versions < V2024.3), Questa (All versions < V2024.3).
local
low complexity
siemens CWE-427
7.3
7.3
2024-10-08 CVE-2024-47195 Uncontrolled Search Path Element vulnerability in Siemens Modelsim and Questa
A vulnerability has been identified in ModelSim (All versions < V2024.3), Questa (All versions < V2024.3).
local
low complexity
siemens CWE-427
7.3
7.3
2024-10-08 CVE-2024-47196 Uncontrolled Search Path Element vulnerability in Siemens Modelsim and Questa
A vulnerability has been identified in ModelSim (All versions < V2024.3), Questa (All versions < V2024.3).
local
low complexity
siemens CWE-427
7.3
7.3
2024-10-08 CVE-2024-47553 Argument Injection or Modification vulnerability in Siemens Sinec Security Monitor
A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0).
network
low complexity
siemens CWE-88
critical
 9.9
9.9
2024-10-08 CVE-2024-47562 Command Injection vulnerability in Siemens Sinec Security Monitor
A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0).
local
low complexity
siemens CWE-77
8.8
8.8
2024-10-08 CVE-2024-47563 Path Traversal vulnerability in Siemens Sinec Security Monitor
A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0).
network
low complexity
siemens CWE-22
5.3
5.3
2024-10-08 CVE-2024-47565 Unspecified vulnerability in Siemens Sinec Security Monitor
A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0).
network
low complexity
siemens
4.3
4.3
2024-10-08 CVE-2024-8911 The LatePoint plugin for WordPress is vulnerable to Arbitrary User Password Change via SQL Injection in versions up to, and including, 5.0.11.
network
low complexity
CWE-89
critical
 9.8
9.8
2024-10-08 CVE-2024-8943 The LatePoint plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.0.12.
network
low complexity
CWE-288
critical
 9.8
9.8
2024-10-08 CVE-2024-8964 The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 7.2.9 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
6.4