CVE Database

4411+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2024-43411
3.1 LOW

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A theoretical vulnerability has been identified in CKEditor 4.22 (and above). In a highly unlikely scenario where …

Aug 21, 2024
CVE-2024-7998
2.6 LOW

In affected versions of Octopus Server OIDC cookies were using the wrong expiration time which could result in them using the maximum lifespan.

Aug 21, 2024
CVE-2024-8022
3.5 LOW

A vulnerability was found in Genexis Tilgin Home Gateway 322_AS0500-03_05_13_05. It has been rated as problematic. This issue affects some unknown processing of the file …

Aug 21, 2024
CVE-2024-8003
3.5 LOW

A vulnerability was found in Go-Tribe gotribe-admin 1.0 and classified as problematic. Affected by this issue is the function InitRoutes of the file internal/app/routes/routes.go of …

Aug 20, 2024
CVE-2024-7948
3.5 LOW

A vulnerability classified as problematic was found in SourceCodester Accounts Manager App 1.0. This vulnerability affects unknown code of the file update-account.php of the component …

Aug 20, 2024
CVE-2024-7945
3.5 LOW

A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality …

Aug 20, 2024
CVE-2024-7942
3.5 LOW

A vulnerability has been found in SourceCodester Leads Manager Tool 1.0 and classified as problematic. This vulnerability affects unknown code of the file update-leads.php. The …

Aug 20, 2024
CVE-2024-43379
3.4 LOW

TruffleHog is a secrets scanning tool. Prior to v3.81.9, this vulnerability allows a malicious actor to craft data in a way that, when scanned by …

Aug 19, 2024
CVE-2024-7916
3.5 LOW

A vulnerability classified as problematic was found in nafisulbari/itsourcecode Insurance Management System 1.0. Affected by this vulnerability is an unknown functionality of the file addNominee.php …

Aug 18, 2024
CVE-2024-7914
3.5 LOW

A vulnerability classified as problematic has been found in SourceCodester Yoga Class Registration System 1.0. Affected is an unknown function of the file /php-ycrs/classes/SystemSettings.php. The …

Aug 18, 2024
CVE-2024-7901
3.5 LOW

A vulnerability has been found in Scada-LTS 2.7.8 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/app.shtm#/alarms/Scada of …

Aug 17, 2024
CVE-2024-7900
2.4 LOW

A vulnerability, which was classified as problematic, was found in xiaohe4966 TpMeCMS 1.3.3.2. Affected is an unknown function of the file /h.php/general/config?ref=addtabs of the component …

Aug 17, 2024
CVE-2024-43845
3.3 LOW

In the Linux kernel, the following vulnerability has been resolved: udf: Fix bogus checksum computation in udf_rename() Syzbot reports uninitialized memory access in udf_rename() when …

Aug 17, 2024
CVE-2024-43841
3.3 LOW

In the Linux kernel, the following vulnerability has been resolved: wifi: virt_wifi: avoid reporting connection success with wrong SSID When user issues a connection with …

Aug 17, 2024
CVE-2024-7887
2.7 LOW

A vulnerability was found in LimeSurvey 6.3.0-231016 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php of the …

Aug 17, 2024
CVE-2024-43809
3.5 LOW

In JetBrains TeamCity before 2024.07.1 reflected XSS was possible on the agentPushPreset page

Aug 16, 2024
CVE-2024-43808
3.7 LOW

In JetBrains TeamCity before 2024.07.1 self XSS was possible in the HashiCorp Vault plugin

Aug 16, 2024
CVE-2024-7852
3.5 LOW

A vulnerability was found in SourceCodester Yoga Class Registration System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/inquiries/view_inquiry.php. …

Aug 16, 2024
CVE-2024-7844
3.5 LOW

A vulnerability has been found in SourceCodester Online Graduate Tracer System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of …

Aug 15, 2024
CVE-2024-7815
2.4 LOW

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of …

Aug 15, 2024
CVE-2024-7814
2.4 LOW

A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. Affected is an unknown function of the file /admin/admin-add-employee.php …

Aug 15, 2024
CVE-2024-7812
3.5 LOW

A vulnerability classified as problematic was found in SourceCodester Best House Rental Management System 1.0. This vulnerability affects unknown code of the file /rental_0/rental/ajax.php?action=save_tenant of …

Aug 15, 2024
CVE-2024-7793
3.5 LOW

A vulnerability was found in SourceCodester Task Progress Tracker 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of …

Aug 14, 2024
CVE-2024-24973
2.2 LOW

Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via …

Aug 14, 2024
CVE-2023-48361
2.3 LOW

Improper initialization in firmware for some Intel(R) CSME may allow a privileged user to potentially enable information disclosure via local access.

Aug 14, 2024
CVE-2024-7752
3.5 LOW

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been classified as problematic. This affects an unknown part of the file …

Aug 14, 2024
CVE-2024-7749
3.5 LOW

A vulnerability, which was classified as problematic, was found in SourceCodester Accounts Manager App 1.0. Affected is an unknown function of the file /endpoint/add-account.php. The …

Aug 13, 2024
CVE-2024-7738
3.3 LOW

A vulnerability, which was classified as problematic, has been found in yzane vscode-markdown-pdf 1.5.0. Affected by this issue is some unknown functionality of the component …

Aug 13, 2024
CVE-2024-7733
3.5 LOW

A vulnerability, which was classified as problematic, was found in FastCMS up to 0.1.5. Affected is an unknown function of the component New Article Category …

Aug 13, 2024
CVE-2023-31366
3.3 LOW

Improper input validation in AMD μProf could allow an attacker to perform a write to an invalid address, potentially resulting in denial of service.

Aug 13, 2024
CVE-2023-31307
2.3 LOW

Improper validation of array index in Power Management Firmware (PMFW) may allow a privileged attacker to cause an out-of-bounds memory read within PMFW, potentially leading …

Aug 13, 2024
CVE-2023-31305
1.9 LOW

Generation of weak and predictable Initialization Vector (IV) in PMFW (Power Management Firmware) may allow an attacker with privileges to reuse IV values to reverse-engineer …

Aug 13, 2024
CVE-2023-31304
2.3 LOW

Improper input validation in SMU may allow an attacker with privileges and a compromised physical function (PF) to modify the PCIe® lane count and speed, …

Aug 13, 2024
CVE-2023-20518
1.9 LOW

Incomplete cleanup in the ASP may expose the Master Encryption Key (MEK) to a privileged attacker with access to the BIOS menu or UEFI shell …

Aug 13, 2024
CVE-2023-20513
3.3 LOW

An insufficient bounds check in PMFW (Power Management Firmware) may allow an attacker to utilize a malicious VF (virtualization function) to send a malformed message, …

Aug 13, 2024
CVE-2023-20512
1.9 LOW

A hardcoded AES key in PMFW may result in a privileged attacker gaining access to the key, potentially resulting in internal debug information leakage.

Aug 13, 2024
CVE-2021-46772
3.9 LOW

Insufficient input validation in the ABL may allow a privileged attacker with access to the BIOS menu or UEFI shell to tamper with the structure …

Aug 13, 2024
CVE-2021-26387
3.9 LOW

Insufficient access controls in ASP kernel may allow a privileged attacker with access to AMD signing keys and the BIOS menu or UEFI shell to …

Aug 13, 2024
CVE-2022-45862
3.7 LOW

An insufficient session expiration vulnerability [CWE-613] vulnerability in FortiOS 7.2.5 and below, 7.0 all versions, 6.4 all versions; FortiProxy 7.2 all versions, 7.0 all versions; …

Aug 13, 2024
CVE-2024-41731
3.1 LOW

SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload malicious code over the network, that could be executed by the application. On successful …

Aug 13, 2024
CVE-2024-28166
3.7 LOW

SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload malicious code over the network, that could be executed by the application. On successful …

Aug 13, 2024
CVE-2024-7686
3.5 LOW

A vulnerability, which was classified as problematic, was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. This affects an unknown part of the …

Aug 12, 2024
CVE-2024-7685
3.5 LOW

A vulnerability, which was classified as problematic, has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected by this issue is some …

Aug 12, 2024
CVE-2024-7684
3.5 LOW

A vulnerability classified as problematic was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected by this vulnerability is an unknown functionality of …

Aug 12, 2024
CVE-2024-7683
3.5 LOW

A vulnerability classified as problematic has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected is an unknown function of the file …

Aug 12, 2024
CVE-2024-7678
3.5 LOW

A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown …

Aug 12, 2024
CVE-2024-7677
3.5 LOW

A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been declared as problematic. Affected by this vulnerability is the function …

Aug 12, 2024
CVE-2024-7660
3.5 LOW

A vulnerability has been found in SourceCodester File Manager App 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the …

Aug 12, 2024
CVE-2024-7659
3.7 LOW

A vulnerability, which was classified as problematic, was found in projectsend up to r1605. Affected is the function generate_random_string of the file includes/functions.php of the …

Aug 12, 2024
CVE-2024-7657
3.5 LOW

A vulnerability classified as problematic was found in Gila CMS 1.10.9. This vulnerability affects unknown code of the file /cm/update_rows/page?id=2 of the component HTTP POST …

Aug 12, 2024

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.