Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-18 | CVE-2024-46597 | Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6 Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sPubKey parameter at dialin.cgi. | 7.5 |
| 2024-09-18 | CVE-2024-46598 | Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6 Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the iprofileidx parameter at dialin.cgi. | 7.5 |
| 2024-09-18 | CVE-2024-5958 | SQL Injection vulnerability in Elizsoftware Panel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eliz Software Panel allows Command Line Execution through SQL Injection.This issue affects Panel: before v2.3.24. | 8.8 |
| 2024-09-18 | CVE-2024-5959 | Cross-site Scripting vulnerability in Elizsoftware Panel Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Eliz Software Panel allows Stored XSS.This issue affects Panel: before v2.3.24. | 5.4 |
| 2024-09-18 | CVE-2024-5960 | Unprotected Storage of Credentials vulnerability in Elizsoftware Panel Plaintext Storage of a Password vulnerability in Eliz Software Panel allows : Use of Known Domain Credentials.This issue affects Panel: before v2.3.24. | 9.8 |
| 2024-09-18 | CVE-2024-6877 | Cross-site Scripting vulnerability in Elizsoftware Panel Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Eliz Software Panel allows Reflected XSS.This issue affects Panel: before v2.3.24. | 6.1 |
| 2024-09-18 | CVE-2024-23915 | NULL Pointer Dereference vulnerability in Opennetworking Libfluid MSG 0.1.0 Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). | 7.5 |
| 2024-09-18 | CVE-2024-23916 | NULL Pointer Dereference vulnerability in Opennetworking Libfluid MSG 0.1.0 Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). | 7.5 |
| 2024-09-18 | CVE-2024-31164 | NULL Pointer Dereference vulnerability in Opennetworking Libfluid MSG 0.1.0 Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). | 7.5 |
| 2024-09-18 | CVE-2024-31165 | NULL Pointer Dereference vulnerability in Opennetworking Libfluid MSG 0.1.0 Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). | 7.5 |