Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-02-21 CVE-2024-1709 Unspecified vulnerability in Connectwise Screenconnect 23.8.4/23.8.5
ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Alternate Path or Channel vulnerability, which may allow an attacker direct access to confidential information or critical systems.
network
low complexity
connectwise
critical
 10.0
10
2024-02-20 CVE-2024-21795 A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111).
network
low complexity
CWE-122
critical
 9.8
9.8
2024-02-20 CVE-2024-21812 An integer overflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111).
network
low complexity
CWE-190
critical
 9.8
9.8
2024-02-20 CVE-2024-22097 A double-free vulnerability exists in the BrainVision Header Parsing functionality of The Biosig Project libbiosig Master Branch (ab0ee111) and 2.5.0.
network
low complexity
critical
 9.8
9.8
2024-02-20 CVE-2024-23305 An out-of-bounds write vulnerability exists in the BrainVisionMarker Parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111).
network
low complexity
CWE-787
critical
 9.8
9.8
2024-02-20 CVE-2024-23310 A use-after-free vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111).
network
low complexity
CWE-825
critical
 9.8
9.8
2024-02-20 CVE-2024-23606 An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111).
network
low complexity
CWE-131
critical
 9.8
9.8
2024-02-20 CVE-2024-23809 A double-free vulnerability exists in the BrainVision ASCII Header Parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111).
network
low complexity
CWE-415
critical
 9.8
9.8
2024-02-20 CVE-2023-45318 A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004.
network
low complexity
CWE-122
critical
 10.0
10
2024-02-20 CVE-2024-1297 Loomio version 2.22.0 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to OS Command Injection.
network
low complexity
CWE-94
critical
 10.0
10