Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-13 | CVE-2024-8762 | SQL Injection vulnerability in Code-Projects Crud Operation System 1.0 A vulnerability was found in code-projects Crud Operation System 1.0. | 9.8 |
| 2024-09-12 | CVE-2024-7960 | Unspecified vulnerability in Rockwellautomation Pavilion8 5.20 The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. | 9.1 |
| 2024-09-12 | CVE-2024-7961 | Path Traversal vulnerability in Rockwellautomation Pavilion8 5.20 A path traversal vulnerability exists in the Rockwell Automation affected product. | 9.8 |
| 2024-09-12 | CVE-2024-8695 | Unspecified vulnerability in Docker Desktop A remote code execution (RCE) vulnerability via crafted extension description/changelog could be abused by a malicious extension in Docker Desktop before 4.34.2. | 9.8 |
| 2024-09-12 | CVE-2024-8696 | Unspecified vulnerability in Docker Desktop A remote code execution (RCE) vulnerability via crafted extension publisher-url/additional-urls could be abused by a malicious extension in Docker Desktop before 4.34.2. | 9.8 |
| 2024-09-12 | CVE-2024-2743 | Incorrect Authorization vulnerability in Gitlab An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permissions and leak variables. | 9.1 |
| 2024-09-12 | CVE-2024-45823 | Unspecified vulnerability in Rockwellautomation Factorytalk Batch View 2.01.00 CVE-2024-45823 IMPACT An authentication bypass vulnerability exists in the affected product. | 9.8 |
| 2024-09-12 | CVE-2024-28990 | Use of Hard-coded Credentials vulnerability in Solarwinds Access Rights Manager SolarWinds Access Rights Manager (ARM) was found to contain a hard-coded credential authentication bypass vulnerability. | 9.8 |
| 2024-09-12 | CVE-2021-22533 | Information Exposure Through Log Files vulnerability in Microfocus Edirectory Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.4.0000. | 9.1 |
| 2024-09-12 | CVE-2021-38132 | Server-Side Request Forgery (SSRF) vulnerability in Microfocus Edirectory Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. | 9.8 |