Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-13 | CVE-2024-38108 | Cross-site Scripting vulnerability in Microsoft Azure Stack HUB Azure Stack Hub Spoofing Vulnerability | 9.3 |
| 2024-08-13 | CVE-2024-38159 | Unspecified vulnerability in Microsoft Windows 10 1607 and Windows Server 2016 Windows Network Virtualization Remote Code Execution Vulnerability | 9.1 |
| 2024-08-13 | CVE-2024-38160 | Unspecified vulnerability in Microsoft Windows 10 1607 and Windows Server 2016 Windows Network Virtualization Remote Code Execution Vulnerability | 9.1 |
| 2024-08-13 | CVE-2024-38199 | Unspecified vulnerability in Microsoft products Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability | 9.8 |
| 2024-08-13 | CVE-2023-20591 | Improper Initialization vulnerability in AMD products Improper re-initialization of IOMMU during the DRTM event may permit an untrusted platform configuration to persist, allowing an attacker to read or modify hypervisor memory, potentially resulting in loss of confidentiality, integrity, and availability. | 10.0 |
| 2024-08-13 | CVE-2023-26211 | Cross-site Scripting vulnerability in Fortinet Fortisoar An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSOAR 7.3.0 through 7.3.2 allows an authenticated, remote attacker to inject arbitrary web script or HTML via the Communications module. | 9.0 |
| 2024-08-13 | CVE-2024-7746 | Improper Authentication vulnerability in Traccar Use of Default Credentials vulnerability in Tananaev Solutions Traccar Server on Administrator Panel modules allows Authentication Abuse.This issue affects the privileged transactions implemented by the Traccar solution that should otherwise be protected by the authentication mechanism. These transactions could have an impact on any sensitive aspect of the platform, including Confidentiality, Integrity and Availability. | 9.8 |
| 2024-08-13 | CVE-2024-41623 | Unspecified vulnerability in D3Dsecurity D8801 Firmware 9.1.17.1.420180428 An issue in D3D Security D3D IP Camera (D8801) v.V9.1.17.1.4-20180428 allows a local attacker to execute arbitrary code via a crafted payload | 9.8 |
| 2024-08-13 | CVE-2024-41940 | Unspecified vulnerability in Siemens Sinec NMS 1.0/1.0.3/2.0 A vulnerability has been identified in SINEC NMS (All versions < V3.0). | 9.1 |
| 2024-08-13 | CVE-2024-33003 | Unspecified vulnerability in SAP Commerce Cloud Some OCC API endpoints in SAP Commerce Cloud allows Personally Identifiable Information (PII) data, such as passwords, email addresses, mobile numbers, coupon codes, and voucher codes, to be included in the request URL as query or path parameters. | 9.1 |