Vulnerabilities > High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-01	CVE-2024-51245	OS Command Injection vulnerability in Draytek Vigor3900 Firmware 1.5.1.3 In DrayTek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the rename_table function. network low complexity draytek CWE-78	8.8
2024-11-01	CVE-2024-51247	OS Command Injection vulnerability in Draytek Vigor3900 Firmware 1.5.1.3 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doPPPo function. network low complexity draytek CWE-78	8.8
2024-11-01	CVE-2024-51248	OS Command Injection vulnerability in Draytek Vigor3900 Firmware 1.5.1.3 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the modifyrow function. network low complexity draytek CWE-78	8.8
2024-11-01	CVE-2024-10661	Out-of-bounds Write vulnerability in Tenda Ac15 Firmware 15.03.05.19 A vulnerability has been found in Tenda AC15 15.03.05.19 and classified as critical. network low complexity tenda CWE-787	8.8
2024-11-01	CVE-2024-10662	Out-of-bounds Write vulnerability in Tenda Ac15 Firmware 15.03.05.19 A vulnerability was found in Tenda AC15 15.03.05.19 and classified as critical. network low complexity tenda CWE-787	8.8
2024-11-01	CVE-2024-22733	NULL Pointer Dereference vulnerability in Tp-Link Mr200 Firmware 210201 TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in the web administration panel on /cgi/login via the sign, Action or LoginStatus query parameters which could lead to a denial of service by a local or remote unauthenticated attacker. network low complexity tp-link CWE-476	7.5
2024-11-01	CVE-2024-43293	Missing Authorization vulnerability in Wpzoom Recipe Card Blocks for Gutenberg & Elementor Missing Authorization vulnerability in WPZOOM Recipe Card Blocks for Gutenberg & Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Recipe Card Blocks for Gutenberg & Elementor: from n/a through 3.3.1. network low complexity wpzoom CWE-862	8.8
2024-11-01	CVE-2024-43296	Missing Authorization vulnerability in Bplugins Html5 Video Player Missing Authorization vulnerability in bPlugins LLC Flash & HTML5 Video allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flash & HTML5 Video: from n/a through 2.5.30. network low complexity bplugins CWE-862	8.8
2024-11-01	CVE-2024-43297	Missing Authorization vulnerability in Backupbliss Clone Missing Authorization vulnerability in Migrate Clone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Clone: from n/a through 2.4.5. network low complexity backupbliss CWE-862	8.8
2024-11-01	CVE-2024-43298	Missing Authorization vulnerability in Backupbliss Clone Missing Authorization vulnerability in Migrate Clone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Clone: from n/a through 2.4.5. network low complexity backupbliss CWE-862	8.8

Vulnerabilities > High {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"High"}]}

Vulnerabilities > High