Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-18 | CVE-2022-25775 | SQL Injection vulnerability in Acquia Mautic Prior to the patched version, logged in users of Mautic are vulnerable to an SQL injection vulnerability in the Reports bundle. The user could retrieve and alter data like sensitive data, login, and depending on database permission the attacker can manipulate file systems. | 7.2 |
| 2024-09-18 | CVE-2022-25776 | Incorrect Default Permissions vulnerability in Acquia Mautic Prior to the patched version, logged in users of Mautic are able to access areas of the application that they should be prevented from accessing. Users could potentially access sensitive data such as names and surnames, company names and stage names. | 6.5 |
| 2024-09-18 | CVE-2023-28452 | Unspecified vulnerability in Coredns.Io Coredns An issue was discovered in CoreDNS through 1.10.1. | 7.5 |
| 2024-09-18 | CVE-2024-34026 | Out-of-bounds Write vulnerability in Openplcproject Openplc V3 Firmware 20240404 A stack-based buffer overflow vulnerability exists in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC _v3 b4702061dc14d1024856f71b4543298d77007b88. | 9.8 |
| 2024-09-18 | CVE-2024-36980 | Out-of-bounds Read vulnerability in Openplcproject Openplc V3 Firmware 20240404 An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser functionality of OpenPLC_v3 b4702061dc14d1024856f71b4543298d77007b88. | 7.5 |
| 2024-09-18 | CVE-2024-36981 | Out-of-bounds Read vulnerability in Openplcproject Openplc V3 Firmware 20240404 An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser functionality of OpenPLC_v3 b4702061dc14d1024856f71b4543298d77007b88. | 7.5 |
| 2024-09-18 | CVE-2024-39589 | Incorrect Type Conversion or Cast vulnerability in Openplcproject Openplc V3 Firmware 20240528 Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC_v3 16bf8bac1a36d95b73e7b8722d0edb8b9c5bb56a. | 7.5 |
| 2024-09-18 | CVE-2024-39590 | Incorrect Type Conversion or Cast vulnerability in Openplcproject Openplc V3 Firmware 20240528 Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC_v3 16bf8bac1a36d95b73e7b8722d0edb8b9c5bb56a. | 7.5 |
| 2024-09-18 | CVE-2024-46550 | Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6 Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the CGIbyFieldName parameter at chglog.cgi. | 7.5 |
| 2024-09-18 | CVE-2024-46551 | Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6 Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sBPA_Pwd parameter at inet15.cgi. | 7.5 |