Vulnerabilities > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-03-12 | CVE-2024-22039 | Classic Buffer Overflow vulnerability in Siemens products A vulnerability has been identified in Cerberus PRO EN Engineering Tool (All versions < IP8), Cerberus PRO EN Fire Panel FC72x (All versions < IP8), Cerberus PRO EN X200 Cloud Distribution (All versions < V4.0.5016), Cerberus PRO EN X300 Cloud Distribution (All versions < V4.2.5015), Sinteso FS20 EN Engineering Tool (All versions < MP8), Sinteso FS20 EN Fire Panel FC20 (All versions < MP8), Sinteso FS20 EN X200 Cloud Distribution (All versions < V4.0.5016), Sinteso FS20 EN X300 Cloud Distribution (All versions < V4.2.5015), Sinteso Mobile (All versions < V3.0.0). | 9.8 |
2024-03-12 | CVE-2024-25995 | An unauthenticated remote attacker can modify configurations to perform a remote code execution due to a missing authentication for a critical function. | 9.8 |
2024-03-08 | CVE-2024-21899 | Improper Authentication vulnerability in Qnap QTS and Quts Hero An improper authentication vulnerability has been reported to affect several QNAP operating system versions. | 9.8 |
2024-03-05 | CVE-2023-7103 | Authentication Bypass by Primary Weakness vulnerability in ZKSoftware Biometric Security Solutions UFace 5 allows Authentication Bypass.This issue affects UFace 5: through 12022024. | 9.8 |
2024-03-04 | CVE-2024-27198 | Unspecified vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible | 9.8 |
2024-03-04 | CVE-2023-28578 | Memory corruption in Core Services while executing the command for removing a single event listener. local low complexity critical | 9.3 |
2024-03-04 | CVE-2023-28582 | Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake. network low complexity critical | 9.8 |
2024-03-04 | CVE-2023-43552 | Memory corruption while processing MBSSID beacon containing several subelement IE. network low complexity critical | 9.8 |
2024-03-04 | CVE-2023-43553 | Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE. network low complexity critical | 9.8 |
2024-03-01 | CVE-2023-7243 | Out-of-bounds Write vulnerability in Cisa Icsnpp-Ethercat Industrial Control Systems Network Protocol Parsers (ICSNPP) - Ethercat Zeek Plugin versions d78dda6 and prior are vulnerable to out-of-bounds write while analyzing specific Ethercat datagrams. | 9.8 |