Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-16 | CVE-2024-34545 | Unspecified vulnerability in Intel Raid web Console Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access. low complexity intel | 5.7 |
| 2024-09-16 | CVE-2024-36247 | Unspecified vulnerability in Intel Raid web Console Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access. low complexity intel | 5.7 |
| 2024-09-16 | CVE-2024-36261 | Unspecified vulnerability in Intel Raid web Console Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access. low complexity intel | 5.7 |
| 2024-09-16 | CVE-2024-44623 | Code Injection vulnerability in SPX Graphics Controller An issue in TuomoKu SPx-GC v.1.3.0 and before allows a remote attacker to execute arbitrary code via the child_process.js function. | 9.8 |
| 2024-09-16 | CVE-2024-8752 | Path Traversal vulnerability in Smart-Hmi Webiq 2.15.9 The Windows version of WebIQ 2.15.9 is affected by a directory traversal vulnerability that allows remote attackers to read any file on the system. | 7.5 |
| 2024-09-16 | CVE-2024-38315 | Insufficient Session Expiration vulnerability in IBM Aspera Shares 1.10.0/1.9.14 IBM Aspera Shares 1.0 through 1.10.0 PL3 does not invalidate session after a password reset which could allow an authenticated user to impersonate another user on the system. | 6.5 |
| 2024-09-16 | CVE-2024-39772 | Unspecified vulnerability in Mattermost Desktop Mattermost Desktop App versions <=5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs. | 5.3 |
| 2024-09-16 | CVE-2024-45835 | Unspecified vulnerability in Mattermost Desktop Mattermost Desktop App versions <=5.8.0 fail to sufficiently configure Electron Fuses which allows an attacker to gather Chromium cookies or abuse other misconfigurations via remote/local access. | 6.5 |
| 2024-09-16 | CVE-2024-6401 | SQL Injection vulnerability in SFS Insuree GL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SFS Consulting InsureE GL allows SQL Injection.This issue affects InsureE GL: before 4.6.2. | 9.8 |
| 2024-09-16 | CVE-2024-7098 | XXE vulnerability in SFS Winsure Improper Restriction of XML External Entity Reference vulnerability in SFS Consulting ww.Winsure allows XML Injection.This issue affects ww.Winsure: before 4.6.2. | 9.8 |