Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-06 | CVE-2024-46874 | Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics. | 9.9 |
| 2024-12-06 | CVE-2024-48874 | Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could give attackers the ability to force Ruijie's proxy servers to perform any request the attackers choose. | 9.8 |
| 2024-12-06 | CVE-2024-52324 | Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses an inherently dangerous function which could allow an attacker to send a malicious MQTT message resulting in devices executing arbitrary OS commands. | 9.8 |
| 2024-12-06 | CVE-2024-47547 | Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a weak mechanism for its users to change their passwords which leaves authentication vulnerable to brute force attacks. | 9.8 |
| 2024-12-06 | CVE-2024-53805 | Unspecified vulnerability in Wpmailster WP Mailster Missing Authorization vulnerability in brandtoss WP Mailster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Mailster: from n/a through 1.8.16.0. | 9.8 |
| 2024-12-06 | CVE-2024-53807 | SQL Injection vulnerability in Wpmailster WP Mailster Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in brandtoss WP Mailster allows Blind SQL Injection.This issue affects WP Mailster: from n/a through 1.8.16.0. | 9.8 |
| 2024-12-05 | CVE-2018-9388 | Integer Underflow (Wrap or Wraparound) vulnerability in Google Android In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of bound writes due to missing bounds checks or integer underflows. | 9.8 |
| 2024-12-05 | CVE-2024-12233 | Unrestricted Upload of File with Dangerous Type vulnerability in Fabianros Online Notice Board 1.0 A vulnerability was found in code-projects Online Notice Board up to 1.0 and classified as critical. | 9.8 |
| 2024-12-05 | CVE-2024-12234 | SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0 A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. | 9.8 |
| 2024-12-05 | CVE-2024-12231 | SQL Injection vulnerability in Codezips Project Management System 1.0 A vulnerability, which was classified as critical, was found in CodeZips Project Management System 1.0. | 9.8 |