Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-24 | CVE-2024-23897 | Path Traversal vulnerability in Jenkins Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system. | 9.8 |
| 2024-01-24 | CVE-2023-51885 | Classic Buffer Overflow vulnerability in Ctan Mathtex Buffer Overflow vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via the length of the LaTeX string component. | 9.8 |
| 2024-01-24 | CVE-2023-51887 | Command Injection vulnerability in Ctan Mathtex Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL. | 9.8 |
| 2024-01-24 | CVE-2024-22651 | Command Injection vulnerability in Dlink Dir-815 Firmware 1.0.1/1.01Ssb08.Bin/1.04 There is a command injection vulnerability in the ssdpcgi_main function of cgibin binary in D-Link DIR-815 router firmware v1.04. | 9.8 |
| 2024-01-24 | CVE-2023-52221 | Unrestricted Upload of File with Dangerous Type vulnerability in Ukrsolution Barcode Scanner and Inventory Manager Unrestricted Upload of File with Dangerous Type vulnerability in UkrSolution Barcode Scanner and Inventory manager.This issue affects Barcode Scanner and Inventory manager: from n/a through 1.5.1. | 9.8 |
| 2024-01-24 | CVE-2024-22284 | Unspecified vulnerability in Asgaros Forum Deserialization of Untrusted Data vulnerability in Thomas Belser Asgaros Forum.This issue affects Asgaros Forum: from n/a through 2.7.2. | 9.8 |
| 2024-01-24 | CVE-2024-22309 | Unspecified vulnerability in Quantumcloud AI Chatbot Deserialization of Untrusted Data vulnerability in QuantumCloud ChatBot with AI.This issue affects ChatBot with AI: from n/a through 5.1.0. | 9.8 |
| 2024-01-24 | CVE-2024-0808 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. | 9.8 |
| 2024-01-23 | CVE-2023-35835 | Unspecified vulnerability in Solax Pocket Wifi 3 Firmware 3.0.0/3.009.0320230504 An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. | 9.8 |
| 2024-01-23 | CVE-2023-35837 | Unspecified vulnerability in Solax Pocket Wifi 3 Firmware 3.0.0/3.009.0320230504 An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. | 9.8 |