Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-08-05 CVE-2024-41889 Unspecified vulnerability in Pimax Pitool and Play
Multiple Pimax products accept WebSocket connections from unintended endpoints.
network
low complexity
pimax
critical
 9.8
9.8
2024-08-05 CVE-2024-6118 Insufficiently Protected Credentials vulnerability in Hamastar Meetinghub Paperless Meetings 2021
A Plaintext Storage of a Password vulnerability in ebooknote function in Hamastar MeetingHub Paperless Meetings 2021 allows remote attackers to obtain the other users’ credentials and gain access to the product via an XML file.
network
low complexity
hamastar CWE-522
critical
 9.1
9.1
2024-08-05 CVE-2024-7469 OS Command Injection vulnerability in Raisecom products
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90.
network
low complexity
raisecom CWE-78
critical
 9.8
9.8
2024-08-05 CVE-2024-7470 OS Command Injection vulnerability in Raisecom products
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90.
network
low complexity
raisecom CWE-78
critical
 9.8
9.8
2024-08-05 CVE-2024-7467 OS Command Injection vulnerability in Raisecom products
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90 and classified as critical.
network
low complexity
raisecom CWE-78
critical
 9.8
9.8
2024-08-05 CVE-2024-7468 OS Command Injection vulnerability in Raisecom products
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90.
network
low complexity
raisecom CWE-78
critical
 9.8
9.8
2024-08-05 CVE-2024-7465 Classic Buffer Overflow vulnerability in Totolink Cp450 Firmware 4.1.0Cu.747B20191224
A vulnerability, which was classified as critical, was found in TOTOLINK CP450 4.1.0cu.747_B20191224.
network
low complexity
totolink CWE-120
critical
 9.8
9.8
2024-08-05 CVE-2024-7463 Classic Buffer Overflow vulnerability in Totolink Cp900 Firmware 6.3C.566
A vulnerability classified as critical was found in TOTOLINK CP900 6.3c.566.
network
low complexity
totolink CWE-120
critical
 9.8
9.8
2024-08-05 CVE-2024-7464 Command Injection vulnerability in Totolink Cp900 Firmware 6.3C.566
A vulnerability, which was classified as critical, has been found in TOTOLINK CP900 6.3c.566.
network
low complexity
totolink CWE-77
critical
 9.8
9.8
2024-08-05 CVE-2024-7461 SQL Injection vulnerability in Forip Administracao Pabx
A vulnerability was found in ForIP Tecnologia Administração PABX 1.x.
network
low complexity
forip CWE-89
critical
 9.8
9.8