Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-13 | CVE-2024-46049 | Out-of-bounds Write vulnerability in Tenda O6 Firmware 1.0.0.7(2054) Tenda O6 V3.0 firmware V1.0.0.7(2054) contains a stack overflow vulnerability in the formexeCommand function. | 9.8 |
| 2024-09-13 | CVE-2024-41874 | Deserialization of Untrusted Data vulnerability in Adobe Coldfusion 2021/2023 ColdFusion versions 2023.9, 2021.15 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. | 9.8 |
| 2024-09-13 | CVE-2024-6656 | Use of Hard-coded Credentials vulnerability in Tnbmobil Cockpit Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable.This issue affects Cockpit Software: before v2.13. | 9.8 |
| 2024-09-13 | CVE-2024-8762 | SQL Injection vulnerability in Code-Projects Crud Operation System 1.0 A vulnerability was found in code-projects Crud Operation System 1.0. | 9.8 |
| 2024-09-12 | CVE-2024-7960 | Unspecified vulnerability in Rockwellautomation Pavilion8 5.20 The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. | 9.1 |
| 2024-09-12 | CVE-2024-7961 | Path Traversal vulnerability in Rockwellautomation Pavilion8 5.20 A path traversal vulnerability exists in the Rockwell Automation affected product. | 9.8 |
| 2024-09-12 | CVE-2024-8695 | Unspecified vulnerability in Docker Desktop A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2. | 9.8 |
| 2024-09-12 | CVE-2024-8696 | Unspecified vulnerability in Docker Desktop A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2. | 9.8 |
| 2024-09-12 | CVE-2024-2743 | Incorrect Authorization vulnerability in Gitlab An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permissions and leak variables. | 9.1 |
| 2024-09-12 | CVE-2024-45823 | Unspecified vulnerability in Rockwellautomation Factorytalk Batch View 2.01.00 CVE-2024-45823 IMPACT An authentication bypass vulnerability exists in the affected product. | 9.8 |