Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

UNIX editor Vim argument list handling vulnerability [CVE-2024-43374]

Luke Simmonds 1549 Views 0 Comments 0 min read

CVE number = CVE-2024-43374 CVSS Score = 4.5 The UNIX editor Vim prior to version 9.1.0678 has a use-after-free error

Read More
NewsSecurity Vulnerabilities

Trix Editor Cross-Site Scripting (XSS) vulnerability on copy & paste [CVE-2024-43368]

Jason Davies 1649 Views 0 Comments 1 min read

CVE number = CVE-2024-43368 CVSS Score = 6.5 The Trix editor, versions prior to 2.1.4, is vulnerable to XSS when

Read More
NewsSecurity Vulnerabilities

ZoneMinder time-based SQL Injection vulnerability [CVE-2024-43360]

Kerry Dean 1324 Views 0 Comments 0 min read

CVE number = CVE-2024-43360 CVSS score = 9.8 ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder is

Read More
NewsSecurity Vulnerabilities

FreeBSD – High-Severity OpenSSH Vulnerability [CVE-2024-7589]

Jason Davies 1554 Views 0 Comments 1 min read

CVE number = CVE-2024-7589 CVSS Score = 7.4 A signal handler in sshd(8) may call a logging function that is

Read More
NewsSecurity Vulnerabilities

Apple macOS VideoToolbox Out-Of-Bounds Read Information Disclosure Vulnerability [CVE-2024-27829]

Luke Simmonds 1488 Views 0 Comments 0 min read

CVE number = CVE-2024-27829 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User

Read More
NewsSecurity Vulnerabilities

Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities [CVE-2024-20443 and CVE-2024-20479]

Jason Davies 1619 Views 0 Comments 2 min read

CVE numbers = CVE-2024-20443 and CVE-2024-20479 Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could

Read More
NewsSecurity Vulnerabilities

Cisco Small Business SPA300 Series and SPA500 Series IP Phones Web UI Vulnerabilities

Luke Simmonds 1334 Views 0 Comments 2 min read

CVE numbers = CVE-2024-20450 and CVE-2024-20451 and CVE-2024-20452 and CVE-2024-20453 and CVE-2024-20454 Multiple vulnerabilities in the web-based management interface of

Read More
NewsSecurity Vulnerabilities

Apache OFBiz resolveURI Authentication Bypass Vulnerability [CVE-2024-38856]

Jason Davies 1838 Views 0 Comments 0 min read

CVE number = CVE-2024-38856 CVSS score = 9.8 This vulnerability allows remote attackers to bypass authentication on affected installations of

Read More
NewsSecurity Vulnerabilities

Apple macOS Metal Framework KTX Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability [CVE-2024-27802]

Jason Davies 1309 Views 0 Comments 0 min read

CVE number = CVE-2024-27802 CVSS Score = 3.3 This vulnerability allows remote attackers to disclose sensitive information on affected installations

Read More
NewsSecurity Vulnerabilities

Microsoft PowerShell Reference for Office Products officedocs-cdn Uncontrolled Search Path Element Remote Code Execution Vulnerability

Luke Simmonds 1401 Views 0 Comments 0 min read

CVE Number = TBC CVSS Score = 9.8 This vulnerability allows remote attackers to execute arbitrary code on affected installations

Read More