Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-08 | CVE-2024-38124 | Unspecified vulnerability in Microsoft products Windows Netlogon Elevation of Privilege Vulnerability | 9.0 |
| 2024-10-08 | CVE-2024-43468 | Microsoft Configuration Manager Remote Code Execution Vulnerability | 9.8 |
| 2024-10-08 | CVE-2024-43488 | Unspecified vulnerability in Microsoft Visual Studio Code Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector. | 9.8 |
| 2024-10-08 | CVE-2024-43591 | Unspecified vulnerability in Microsoft Azure CLI and Azure Service Connector Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability | 9.1 |
| 2024-10-08 | CVE-2024-47009 | Path Traversal vulnerability in Ivanti Avalanche Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to bypass authentication. | 9.8 |
| 2024-10-08 | CVE-2024-47010 | Path Traversal vulnerability in Ivanti Avalanche Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to bypass authentication. | 9.8 |
| 2024-10-08 | CVE-2024-47553 | Argument Injection or Modification vulnerability in Siemens Sinec Security Monitor A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). | 9.9 |
| 2024-10-08 | CVE-2024-8911 | The LatePoint plugin for WordPress is vulnerable to Arbitrary User Password Change via SQL Injection in versions up to, and including, 5.0.11. | 9.8 |
| 2024-10-08 | CVE-2024-8943 | The LatePoint plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.0.12. | 9.8 |
| 2024-10-07 | CVE-2024-47556 | Path Traversal vulnerability in Xerox Freeflow Core Pre-Auth RCE via Path Traversal | 9.8 |