Vulnerabilities > Improper Handling of Exceptional Conditions

DATE CVE VULNERABILITY TITLE RISK
2023-09-13 CVE-2023-3280 Improper Handling of Exceptional Conditions vulnerability in Paloaltonetworks Cortex XDR Agent
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to disable the agent.
local
low complexity
paloaltonetworks CWE-755
5.5
2023-09-13 CVE-2023-27998 Improper Handling of Exceptional Conditions vulnerability in Fortinet Fortipresence
A lack of custom error pages vulnerability [CWE-756] in FortiPresence versions 1.2.0 through 1.2.1 and all versions of 1.1 and 1.0 may allow an unauthenticated attacker with the ability to navigate to the login GUI to gain sensitive information via navigating to specific HTTP(s) paths.
network
low complexity
fortinet CWE-755
5.3
2023-09-06 CVE-2023-20243 Improper Handling of Exceptional Conditions vulnerability in Cisco Identity Services Engine 3.1/3.2
A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause the affected system to stop processing RADIUS packets. This vulnerability is due to improper handling of certain RADIUS accounting requests.
network
low complexity
cisco CWE-755
8.6
2023-09-05 CVE-2023-41317 Improper Handling of Exceptional Conditions vulnerability in Apollographql Apollo Router 1.28.0/1.29.0
The Apollo Router is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation 2.
network
high complexity
apollographql CWE-755
5.9
2023-09-05 CVE-2023-4540 Improper Handling of Exceptional Conditions vulnerability in Daurnimator Lua-Http 0.4
Improper Handling of Exceptional Conditions vulnerability in Daurnimator lua-http library allows Excessive Allocation and a denial of service (DoS) attack to be executed by sending a properly crafted request to the server.
network
low complexity
daurnimator CWE-755
7.5
2023-08-31 CVE-2023-31169 Improper Handling of Exceptional Conditions vulnerability in Selinc Sel-5030 Acselerator Quickset
An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5030 acSELerator QuickSet Software: through 7.1.3.0.
network
low complexity
selinc CWE-755
5.7
2023-08-30 CVE-2023-40184 Improper Handling of Exceptional Conditions vulnerability in Neutrinolabs Xrdp
xrdp is an open source remote desktop protocol (RDP) server.
network
low complexity
neutrinolabs CWE-755
6.5
2023-08-29 CVE-2023-23774 Improper Handling of Exceptional Conditions vulnerability in Motorola products
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception.
local
low complexity
motorola CWE-755
8.4
2023-08-24 CVE-2023-39801 Improper Handling of Exceptional Conditions vulnerability in Renault Easy Link 283C35519R
A lack of exception handling in the Renault Easy Link Multimedia System Software Version 283C35519R allows attackers to cause a Denial of Service (DoS) via supplying crafted WMA files when connecting a device to the vehicle's USB plug and play feature.
low complexity
renault CWE-755
4.6
2023-08-14 CVE-2023-28768 Improper Handling of Exceptional Conditions vulnerability in Zyxel products
Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30 firmware version V4.80(ACAR.1), and XS1930-10 firmware version V4.80(ABQE.1) could allow an unauthenticated LAN-based attacker to cause denial-of-service (DoS) conditions by sending crafted frames to an affected switch.
low complexity
zyxel CWE-755
6.5