Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-12-02 CVE-2024-46907 Unspecified vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an authenticated low-privileged user (at least Report Viewer permissions required) to achieve privilege escalation to the admin account.
network
low complexity
progress
8.8
2024-12-02 CVE-2024-46908 Unspecified vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an authenticated low-privileged user (at least Report Viewer permissions required) to achieve privilege escalation to the admin account.
network
low complexity
progress
8.8
2024-12-02 CVE-2024-52479 Cross-Site Request Forgery (CSRF) vulnerability in Astoundify Jobify
Cross-Site Request Forgery (CSRF) vulnerability in Ben Marshall Jobify - Job Board WordPress Theme allows Cross Site Request Forgery.This issue affects Jobify - Job Board WordPress Theme: from n/a through 4.2.3.
network
low complexity
astoundify CWE-352
8.8
2024-12-02 CVE-2024-53108 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adjust VSDB parser for replay feature At some point, the IEEE ID identification for the replay check in the AMD EDID was added.
local
low complexity
linux CWE-125
7.1
2024-12-02 CVE-2024-53751 Cross-Site Request Forgery (CSRF) vulnerability in Buildapp Build APP Online
Cross-Site Request Forgery (CSRF) vulnerability in Abdul Hakeem Build App Online allows Cross Site Request Forgery.This issue affects Build App Online: from n/a through 1.0.22.
network
low complexity
buildapp CWE-352
8.8
2024-12-02 CVE-2024-33040 Unspecified vulnerability in Qualcomm products
Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access.
local
high complexity
qualcomm
7.0
2024-12-02 CVE-2024-33044 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
local
low complexity
qualcomm CWE-129
7.8
2024-12-02 CVE-2024-33056 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
local
low complexity
qualcomm CWE-125
7.8
2024-12-02 CVE-2024-33063 Integer Overflow or Wraparound vulnerability in Qualcomm products
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.
network
low complexity
qualcomm CWE-190
7.5
2024-12-02 CVE-2024-43048 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when invalid input is passed to invoke GPU Headroom API call.
local
low complexity
qualcomm CWE-787
7.8