Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-10-09 CVE-2024-47420 Out-of-bounds Read vulnerability in Adobe Animate
Animate versions 23.0.7, 24.0.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2024-10-09 CVE-2024-20787 Out-of-bounds Read vulnerability in Adobe Substance 3D Painter
Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory.
local
low complexity
adobe CWE-125
5.5
5.5
2024-10-09 CVE-2024-45146 Use After Free vulnerability in Adobe Dimension
Dimension versions 4.0.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-416
7.8
7.8
2024-10-09 CVE-2024-45150 Out-of-bounds Write vulnerability in Adobe Dimension
Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-787
7.8
7.8
2024-10-09 CVE-2024-9451 The Embed PDF Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'height' and 'width' parameters in all versions up to, and including, 2.4.4 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
6.4
2024-10-09 CVE-2024-39436 Command Injection vulnerability in Google Android 13.0/14.0
In linkturbonative service, there is a possible command injection due to improper input validation.
local
low complexity
google CWE-77
6.7
6.7
2024-10-09 CVE-2024-39437 Command Injection vulnerability in Google Android 13.0/14.0
In linkturbonative service, there is a possible command injection due to improper input validation.
local
low complexity
google CWE-77
6.7
6.7
2024-10-09 CVE-2024-39438 Command Injection vulnerability in Google Android 13.0/14.0
In linkturbonative service, there is a possible command injection due to improper input validation.
local
low complexity
google CWE-77
6.7
6.7
2024-10-09 CVE-2024-39439 Out-of-bounds Write vulnerability in Google Android 13.0/14.0
In DRM service, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
4.4
4.4
2024-10-09 CVE-2024-39440 NULL Pointer Dereference vulnerability in Google Android 13.0/14.0
In DRM service, there is a possible system crash due to null pointer dereference.
local
low complexity
google CWE-476
4.4
4.4