Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-14 | CVE-2024-42353 | Open Redirect vulnerability in Pylonsproject Webob WebOb provides objects for HTTP requests and responses. | 6.1 |
| 2024-08-14 | CVE-2024-7793 | Cross-site Scripting vulnerability in Rems Task Progress Tracker 1.0 A vulnerability was found in SourceCodester Task Progress Tracker 1.0. | 5.4 |
| 2024-08-14 | CVE-2024-31882 | Injection vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service, under specific non default configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user. | 6.5 |
| 2024-08-14 | CVE-2024-35136 | Unspecified vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) federated server 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query under certain non default conditions. | 6.5 |
| 2024-08-14 | CVE-2024-35152 | Unspecified vulnerability in IBM DB2 11.5.8/11.5.9 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. | 6.5 |
| 2024-08-14 | CVE-2024-37529 | Unspecified vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. | 6.5 |
| 2024-08-14 | CVE-2023-50315 | Unspecified vulnerability in IBM Websphere Application Server 8.5.0.0/9.0.0.0 IBM WebSphere Application Server 8.5 and 9.0 could allow an attacker with access to the network to conduct spoofing attacks. | 5.9 |
| 2024-08-14 | CVE-2024-39818 | Insufficiently Protected Credentials vulnerability in Zoom products Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access. | 6.5 |
| 2024-08-14 | CVE-2024-39822 | Unspecified vulnerability in Zoom products Sensitive information exposure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct an information disclosure via network access. | 6.5 |
| 2024-08-14 | CVE-2024-39823 | Unspecified vulnerability in Zoom products Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access. | 4.9 |