Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-27 | CVE-2024-9136 | Unspecified vulnerability in Huawei Emui and Harmonyos Access permission verification vulnerability in the App Multiplier module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2024-09-27 | CVE-2024-9202 | Missing Authorization vulnerability in Eclipse Dataspace Components In Eclipse Dataspace Components versions 0.1.3 to 0.9.0, the Connector component filters which datasets (= data offers) another party can see in a requested catalog, to ensure that only authorized parties are able to view restricted offers. However, there is the possibility to request a single dataset, which should be subject to the same filtering process, but currently is missing the correct filtering. This enables parties to potentially see datasets they should not have access to, thereby exposing sensitive information. | 5.3 |
| 2024-09-27 | CVE-2024-38861 | Improper Certificate Validation vulnerability in Tomtretbar Mikrotik Improper Certificate Validation in Checkmk Exchange plugin MikroTik allows attackers in MitM position to intercept traffic. | 7.4 |
| 2024-09-27 | CVE-2024-6931 | Cross-site Scripting vulnerability in Stellarwp the Events Calendar The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via RSVP name field in all versions up to, and including, 6.6.3 due to insufficient input sanitization and output escaping. | 6.1 |
| 2024-09-27 | CVE-2024-39431 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. | 4.5 |
| 2024-09-27 | CVE-2024-39432 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In UMTS RLC driver, there is a possible out of bounds read due to a missing bounds check. | 4.5 |
| 2024-09-27 | CVE-2024-39433 | Out-of-bounds Write vulnerability in Google Android 13.0/14.0 In drm service, there is a possible out of bounds write due to a missing bounds check. | 4.4 |
| 2024-09-27 | CVE-2024-39434 | Out-of-bounds Read vulnerability in Google Android 13.0/14.0 In drm service, there is a possible out of bounds read due to a missing bounds check. | 4.4 |
| 2024-09-27 | CVE-2024-39435 | Unspecified vulnerability in Google Android 12.0/13.0/14.0 In Logmanager service, there is a possible missing verification incorrect input. | 7.8 |
| 2024-09-27 | CVE-2024-8681 | Cross-site Scripting vulnerability in Leap13 Premium Addons for Elementor The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |