Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-12-06	CVE-2024-41648	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_regulated_pure_pursuit_controller. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-41649	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the executor_thread_. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-41650	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_costmap_2d. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-44852	Release of Invalid Pointer or Reference vulnerability in Openrobotics Robot Operating System 2 Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a segmentation violation via the component theta_star::ThetaStar::isUnsafeToPlan(). network low complexity openrobotics CWE-763 critical	9.8
2024-12-06	CVE-2024-46874	Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics. network low complexity ruijienetworks critical	9.9
2024-12-06	CVE-2024-48874	Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could give attackers the ability to force Ruijie's proxy servers to perform any request the attackers choose. network low complexity ruijienetworks critical	9.8
2024-12-06	CVE-2024-52324	Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses an inherently dangerous function which could allow an attacker to send a malicious MQTT message resulting in devices executing arbitrary OS commands. network low complexity ruijienetworks critical	9.8
2024-12-06	CVE-2024-47547	Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a weak mechanism for its users to change their passwords which leaves authentication vulnerable to brute force attacks. network low complexity ruijienetworks critical	9.8
2024-12-06	CVE-2024-53805	Unspecified vulnerability in Wpmailster WP Mailster Missing Authorization vulnerability in brandtoss WP Mailster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Mailster: from n/a through 1.8.16.0. network low complexity wpmailster critical	9.8
2024-12-06	CVE-2024-53807	SQL Injection vulnerability in Wpmailster WP Mailster Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in brandtoss WP Mailster allows Blind SQL Injection.This issue affects WP Mailster: from n/a through 1.8.16.0. network low complexity wpmailster CWE-89 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical