Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-28 CVE-2024-11802 Out-of-bounds Write vulnerability in Fujielectric Tellus Lite V-Simulator 4.0.20.0
Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack-Based Buffer Overflow Remote Code Execution Vulnerability.
local
low complexity
fujielectric CWE-787
7.8
2024-11-28 CVE-2024-11803 Unspecified vulnerability in Fujielectric Tellus Lite V-Simulator 4.0.20.0
Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
local
low complexity
fujielectric
7.8
2024-11-28 CVE-2024-11933 Out-of-bounds Write vulnerability in Fujielectric Monitouch V-Sft 6.2.3.0
Fuji Electric Monitouch V-SFT X1 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability.
local
low complexity
fujielectric CWE-787
7.8
2024-11-27 CVE-2017-13323 Integer Overflow or Wraparound vulnerability in Google Android
In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
2024-11-27 CVE-2017-13316 Missing Authorization vulnerability in Google Android
In checkPermissions of RecognitionService.java, there is a possible permissions bypass due to a missing permission check.
local
low complexity
google CWE-862
7.8
2024-11-27 CVE-2017-13319 Classic Buffer Overflow vulnerability in Google Android
In pvmp3_get_main_data_size of pvmp3_get_main_data_size.cpp, there is a possible buffer overread due to a missing bounds check.
network
low complexity
google CWE-120
7.5
2024-11-26 CVE-2024-11622 XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
network
low complexity
hpe CWE-611
7.5
2024-11-26 CVE-2024-53674 XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
network
low complexity
hpe CWE-611
7.5
2024-11-26 CVE-2024-53675 XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545
An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases.
network
low complexity
hpe CWE-611
7.5
2024-11-26 CVE-2024-49035 An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network.
network
low complexity
CWE-269
8.7