VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-09-19
CVE-2024-38016
Microsoft Office Visio Remote Code Execution Vulnerability
local
low complexity
CWE-284
7.8
7.8
2024-09-19
CVE-2024-8698
A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil class.
network
high complexity
CWE-347
7.7
7.7
2024-09-18
CVE-2024-36980
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser functionality of OpenPLC_v3 b4702061dc14d1024856f71b4543298d77007b88.
network
low complexity
CWE-125
7.5
7.5
2024-09-18
CVE-2024-36981
An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser functionality of OpenPLC_v3 b4702061dc14d1024856f71b4543298d77007b88.
network
low complexity
CWE-125
7.5
7.5
2024-09-18
CVE-2024-39589
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC_v3 16bf8bac1a36d95b73e7b8722d0edb8b9c5bb56a.
network
low complexity
CWE-704
7.5
7.5
2024-09-18
CVE-2024-39590
Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC_v3 16bf8bac1a36d95b73e7b8722d0edb8b9c5bb56a.
network
low complexity
CWE-704
7.5
7.5
2024-09-17
CVE-2024-38183
An improper access control vulnerability in GroupMe allows an a unauthenticated attacker to elevate privileges over a network by convincing a user to click on a malicious link.
network
low complexity
CWE-918
8.8
8.8
2024-09-17
CVE-2024-43460
Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network.
network
low complexity
8.1
8.1
2024-09-17
CVE-2024-8761
The Share This Image plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 2.03.
network
low complexity
CWE-601
7.2
7.2
2024-09-17
CVE-2024-8490
The PropertyHive plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.19.
network
low complexity
CWE-352
8.8
8.8
«
1
(current)
2
3
4
5
...
6032
6033
»
Next