Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-30	CVE-2024-8234	Unspecified vulnerability in Zyxel Nwaw1100-N Firmware 1.00(Aace.1)C0 UNSUPPORTED WHEN ASSIGNED A command injection vulnerability in the functions formSysCmd(), formUpgradeCert(), and formDelcert() in the Zyxel NWA1100-N firmware version 1.00(AACE.1)C0 could allow an unauthenticated attacker to execute some OS commands to access system files on an affected device. network low complexity zyxel critical	9.8
2024-08-29	CVE-2024-6670	SQL Injection vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password. network low complexity progress CWE-89 critical	9.8
2024-08-29	CVE-2024-6671	SQL Injection vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2024.0.0, if the application is configured with only a single user, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password. network low complexity progress CWE-89 critical	9.8
2024-08-29	CVE-2024-41361	Code Injection vulnerability in Sourcefabric Phoniebox 2.7.0 RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via htdocs\manageFilesFolders.php network low complexity sourcefabric CWE-94 critical	9.8
2024-08-29	CVE-2024-41364	Code Injection vulnerability in Sourcefabric Phoniebox 2.7.0 RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via htdocs\trackEdit.php network low complexity sourcefabric CWE-94 critical	9.8
2024-08-29	CVE-2024-41366	Code Injection vulnerability in Sourcefabric Phoniebox 2.7.0 RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via htdocs\userScripts.php network low complexity sourcefabric CWE-94 critical	9.8
2024-08-29	CVE-2024-41367	Code Injection vulnerability in Sourcefabric Phoniebox 2.7.0 RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via htdocs\api\playlist\appendFileToPlaylist.php network low complexity sourcefabric CWE-94 critical	9.8
2024-08-29	CVE-2024-41368	Code Injection vulnerability in Sourcefabric Phoniebox 2.7.0 RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via htdocs\inc.setWlanIpMail.php network low complexity sourcefabric CWE-94 critical	9.8
2024-08-29	CVE-2024-41369	Unspecified vulnerability in Sourcefabric Phoniebox 2.7.0 RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution (RCE) vulnerability via htdocs\inc.setWifi.php network low complexity sourcefabric critical	9.8
2024-08-29	CVE-2024-41370	SQL Injection vulnerability in Organizr 1.90 Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. network low complexity organizr CWE-89 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical