Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-25 CVE-2024-11655 Command Injection vulnerability in Engeniustech products
A vulnerability classified as critical was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
7.2
2024-11-25 CVE-2024-11656 Command Injection vulnerability in Engeniustech products
A vulnerability, which was classified as critical, has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
7.2
2024-11-25 CVE-2024-11653 Command Injection vulnerability in Engeniustech products
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
7.2
2024-11-25 CVE-2024-11654 Command Injection vulnerability in Engeniustech products
A vulnerability classified as critical has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
7.2
2024-11-25 CVE-2024-11650 NULL Pointer Dereference vulnerability in Tenda I9 Firmware 1.0.0.8(3828)
A vulnerability was found in Tenda i9 1.0.0.8(3828) and classified as critical.
network
low complexity
tenda CWE-476
7.5
7.5
2024-11-25 CVE-2024-11651 Command Injection vulnerability in Engeniustech products
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
7.2
2024-11-25 CVE-2024-11652 Command Injection vulnerability in Engeniustech products
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
7.2
2024-11-24 CVE-2024-11665 Command Injection vulnerability in Echarge Salia Plcc Firmware
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in hardy-barth cph2_echarge_firmware allows OS Command Injection.This issue affects cph2_echarge_firmware: through 2.0.4.
low complexity
echarge CWE-77
8.8
8.8
2024-11-24 CVE-2024-53899 Command Injection vulnerability in Virtualenv
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment.
local
low complexity
virtualenv CWE-77
7.8
7.8
2024-11-24 CVE-2024-11233 Out-of-bounds Write vulnerability in PHP
In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, due to an error in convert.quoted-printable-decode filter certain data can lead to buffer overread by one byte, which can in certain circumstances lead to crashes or disclose content of other memory areas.
network
low complexity
php CWE-787
8.2
8.2