Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-04-17	CVE-2024-3908	Unspecified vulnerability in Tenda Ac500 Firmware 2.0.1.9(1307) A vulnerability classified as critical has been found in Tenda AC500 2.0.1.9(1307). network low complexity tenda critical	9.8
2024-04-17	CVE-2024-3907	Out-of-bounds Write vulnerability in Tenda Ac500 Firmware 2.0.1.9(1307) A vulnerability was found in Tenda AC500 2.0.1.9(1307). network low complexity tenda CWE-787 critical	9.8
2024-04-12	CVE-2024-3400	Command Injection vulnerability in Paloaltonetworks Pan-Os A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability. network low complexity paloaltonetworks CWE-77 critical	10.0
2024-04-10	CVE-2024-31996	Code Injection vulnerability in Xwiki XWiki Platform is a generic wiki platform. network low complexity xwiki CWE-94 critical	9.8
2024-04-10	CVE-2024-3157	Out-of-bounds Write vulnerability in multiple products Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. network low complexity google fedoraproject CWE-787 critical	9.6
2024-04-10	CVE-2024-31214	Unrestricted Upload of File with Dangerous Type vulnerability in Traccar Traccar is an open source GPS tracking system. network low complexity traccar CWE-434 critical	9.6
2024-04-10	CVE-2024-1740	Unspecified vulnerability in Lunary In lunary-ai/lunary version 1.0.1, a vulnerability exists where a user removed from an organization can still read, create, modify, and delete logs by re-using an old authorization token. network low complexity lunary critical	9.1
2024-04-10	CVE-2024-1741	Incorrect Authorization vulnerability in Lunary lunary-ai/lunary version 1.0.1 is vulnerable to improper authorization, allowing removed members to read, create, modify, and delete prompt templates using an old authorization token. network low complexity lunary CWE-863 critical	9.1
2024-04-09	CVE-2024-29990	Unspecified vulnerability in Microsoft Azure Kubernetes Service Confidential Containers Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability network high complexity microsoft critical	9.0
2024-04-08	CVE-2024-3465	Unspecified vulnerability in Oretnom23 Laundry Shop Management System 1.0 A vulnerability was found in SourceCodester Laundry Management System 1.0. network low complexity oretnom23 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical