Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-22 | CVE-2024-6817 | Unspecified vulnerability in Irfanview 4.66 IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. | 7.8 |
| 2024-11-22 | CVE-2021-38118 | Unspecified vulnerability in Microfocus Imanager Possible improper input validation Vulnerability in iManager has been discovered in OpenTextâ„¢ iManager 3.2.4.0000. | 7.8 |
| 2024-11-22 | CVE-2017-9711 | Unspecified vulnerability in Qualcomm products Certain unprivileged processes are able to perform IOCTL calls. | 7.8 |
| 2024-11-22 | CVE-2024-11104 | Missing Authorization vulnerability in Wowdevs SKY Addons for Elementor The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blogs) plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the save_options() function in all versions up to, and including, 2.6.2. | 8.1 |
| 2024-11-22 | CVE-2024-11601 | Missing Authorization vulnerability in Wowdevs SKY Addons for Elementor The Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blog, Video Gallery) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.1. | 8.1 |
| 2024-11-21 | CVE-2024-52052 | Unspecified vulnerability in Wowza Streaming Engine Wowza Streaming Engine below 4.9.1 permits an authenticated Streaming Engine Manager administrator to define a custom application property and poison a stream target for high-privilege remote code execution. | 7.2 |
| 2024-11-21 | CVE-2024-11588 | NULL Pointer Dereference vulnerability in Avlditest Libdoip 1.0.0 A vulnerability was found in AVL-DiTEST-DiagDev libdoip 1.0.0. | 7.5 |
| 2024-11-21 | CVE-2024-11589 | SQL Injection vulnerability in Angeljudesuarez Tailoring Management System 1.0 A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. | 8.8 |
| 2024-11-21 | CVE-2022-43934 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Brocade Sannav Brocade SANnav before Brocade SANnav 2.2.2 supports key exchange algorithms, which are considered weak on ports 24, 6514, 18023, 19094, and 19095. | 7.5 |
| 2024-11-21 | CVE-2024-10403 | Files or Directories Accessible to External Parties vulnerability in Broadcom Fabric Operating System Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2.1a can capture the SFTP/FTP server password used for a firmware download operation initiated by SANnav or through WebEM in a weblinker core dump that is later captured via supportsave. | 7.5 |