High
|
16 Sep 2024 |
15 Oct 2024 |
CPAI-2024-0704
|
|
|
HTML Entity Encoding Multiple Vulnerabilities
|
High
|
15 Oct 2024 |
15 Oct 2024 |
CPAI-2024-0963
|
|
CVE-2024-9380
|
Ivanti Cloud Services Appliance Command Injection (CVE-2024-9380)
|
Critical
|
2 Jul 2024 |
15 Oct 2024 |
CPAI-2024-0542
|
|
CVE-2024-37032
|
Ollama Directory Traversal (CVE-2024-37032)
|
Medium
|
15 Oct 2024 |
15 Oct 2024 |
CPAI-2024-0955
|
|
CVE-2024-3346
|
Byzoro Smart S80 Command Injection (CVE-2024-3346)
|
High
|
15 Oct 2024 |
15 Oct 2024 |
CPAI-2024-0931
|
|
CVE-2024-35388
|
TOTOLINK NR1800X Buffer Overflow (CVE-2024-35388)
|
Critical
|
15 Oct 2024 |
15 Oct 2024 |
CPAI-2024-0962
|
|
CVE-2024-8963
|
Ivanti Cloud Services Appliance Path Traversal (CVE-2024-8963)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2023-1916
|
|
CVE-2023-44860
|
Netis Systems N3M Denial of Service (CVE-2023-44860)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2024-0942
|
|
CVE-2024-5016
|
Progress WhatsUp Gold Insecure Deserialization (CVE-2024-5016)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2024-0940
|
|
CVE-2024-7855
|
WordPress Hotel Booking Plugin Arbitrary File Upload (CVE-2024-7855)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2020-4203
|
|
CVE-2020-25078
|
D-Link DCS-2530L Authentication Bypass (CVE-2020-25078)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2023-1915
|
|
CVE-2023-29804
|
I-O DATA WFS-SR03W Command Injection (CVE-2023-29804)
|
Critical
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2024-0936
|
|
CVE-2024-20017
|
MediaTek Multiple Products Buffer Overflow (CVE-2024-20017)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2017-1937
|
|
CVE-2017-9946
|
Siemens Muiltiple Products Information Disclosure (CVE-2017-9946)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2024-0928
|
|
CVE-2024-5565
|
Vanna Remote Code Execution (CVE-2024-5565)
|
Critical
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2024-0912
|
|
CVE-2024-44087
|
Siemens Automation License Manager Denial of Service (CVE-2024-44087)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2024-0908
|
|
CVE-2024-46313
|
TP-Link WR941ND Stack Overflow (CVE-2024-46313)
|
High
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2023-1909
|
|
CVE-2023-1163 CVE-2023-6265
|
DrayTek Vigor2960 Directory Traversal (CVE-2023-1163; CVE-2023-6265)
|
Medium
|
14 Oct 2024 |
14 Oct 2024 |
CPAI-2024-0873
|
|
CVE-2024-27564
|
OpenAI ChatGPT Server-Side Request Forgery (CVE-2024-27564)
|
Critical
|
8 Aug 2024 |
14 Oct 2024 |
CPAI-2021-2201
|
|
CVE-2021-21887 CVE-2021-21889 CVE-2021-21890 CVE-2021-21891 CVE-2021-21892
|
Lantronix PremierWave 2050 Buffer Overflow (CVE-2021-21887; CVE-2021-21889; CVE-2021-21890; CVE-2021-21891; CVE-2021-21892)
|
Critical
|
29 Feb 2024 |
14 Oct 2024 |
CPAI-2023-1557
|
|
CVE-2023-24343 CVE-2023-24344 CVE-2023-24345 CVE-2023-24346 CVE-2023-24347 CVE-2023-24348 CVE-2023-24349 CVE-2023-24350 CVE-2023-24351 CVE-2023-24352 CVE-2024-9514 CVE-2024-9515 CVE-2024-9532 CVE-2024-9533
|
D-Link DIR-605L Buffer Overflow (CVE-2023-24343; CVE-2023-24344; CVE-2023-24345; CVE-2023-24346; CVE-2023-24347; CVE-2023-24348; CVE-2023-24349; CVE-2023-24350; CVE-2023-24351; CVE-2023-24352; CVE-2024-9514; CVE-2024-9515; CVE-2024-9532; CVE-2024-9533)
|
Critical
|
18 Jan 2024 |
14 Oct 2024 |
CPAI-2024-0016
|
|
CVE-2024-21887
|
Ivanti Command Injection (CVE-2024-21887)
|
High
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2024-0954
|
|
CVE-2024-9463
|
Palo Alto Networks Expedition Command Injection (CVE-2024-9463)
|
Medium
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2020-4204
|
|
CVE-2020-2140
|
Jenkins Audit Trail Plugin Cross-Site Scripting (CVE-2020-2140)
|
Critical
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2024-0944
|
|
CVE-2024-46419 CVE-2024-46451
|
TOTOLINK AC1200 Buffer Overflow (CVE-2024-46419; CVE-2024-46451)
|
Critical
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2024-0935
|
|
CVE-2024-8275
|
WordPress The Events Calendar Plugin SQL Injection (CVE-2024-8275)
|
Medium
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2022-2135
|
|
CVE-2022-45362
|
WordPress Paytm Payment Gateway Plugin Server-Side Request Forgery (CVE-2022-45362)
|
Critical
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2024-0923
|
|
CVE-2024-29847
|
Ivanti Endpoint Manager Insecure Deserialization (CVE-2024-29847)
|
High
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2024-0914
|
|
CVE-2024-8669
|
WordPress Softaculous Backuply Plugin SQL Injection (CVE-2024-8669)
|
Critical
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2021-2220
|
|
CVE-2021-40323
|
Cobbler Project Cobbler Remote Code Execution (CVE-2021-40323)
|
High
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2021-2219
|
|
CVE-2021-40324
|
Cobbler Project Cobbler Arbitrary File Write (CVE-2021-40324)
|
Critical
|
13 Oct 2024 |
13 Oct 2024 |
CPAI-2020-4200
|
|
CVE-2020-17523
|
Apache Shiro Authentication Bypass (CVE-2020-17523)
|
Critical
|
29 Aug 2024 |
13 Oct 2024 |
CPAI-2021-2207
|
|
CVE-2021-33045
|
Dahua Security Multiple Products Authentication Bypass (CVE-2021-33045)
|
High
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0952
|
|
CVE-2024-9466
|
Palo Alto Networks Expedition Information Disclosure (CVE-2024-9466)
|
High
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0949
|
|
CVE-2024-9465
|
Palo Alto Networks Expedition SQL Injection (CVE-2024-9465)
|
High
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0947
|
|
CVE-2024-9464
|
Palo Alto Networks Expedition Command Injection (CVE-2024-9464)
|
Critical
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0945
|
|
CVE-2024-37404
|
Ivanti Remote Code Execution (CVE-2024-37404)
|
High
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0943
|
|
CVE-2024-5910
|
Palo Alto Networks Expedition Authentication Bypass (CVE-2024-5910)
|
High
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0927
|
|
CVE-2024-36728
|
TRENDnet TEW-827DRU Buffer Overflow (CVE-2024-36728)
|
Medium
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2023-1914
|
|
CVE-2023-52085
|
Winter CMS Local File Inclusion (CVE-2023-52085)
|
High
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0924
|
|
CVE-2024-6209
|
ABB ASPECT Directory Traversal (CVE-2024-6209)
|
Critical
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2023-1913
|
|
CVE-2023-0635 CVE-2023-0636
|
ABB ASPECT Command Injection (CVE-2023-0635; CVE-2023-0636)
|
Critical
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0919
|
|
CVE-2024-6298
|
ABB ASPECT Remote Code Execution (CVE-2024-6298)
|
Critical
|
8 Oct 2024 |
10 Oct 2024 |
CPAI-2024-0918
|
|
CVE-2024-45519
|
Zimbra Collaboration Remote Command Execution (CVE-2024-45519)
|
High
|
10 Oct 2024 |
10 Oct 2024 |
CPAI-2016-1387
|
|
CVE-2016-0742
|
F5 Nginx Denial of Service (CVE-2016-0742)
|
Critical
|
27 Jun 2024 |
10 Oct 2024 |
CPAI-2023-1809
|
|
CVE-2023-4873 CVE-2023-5684 CVE-2023-6575 CVE-2023-7039
|
Byzoro Multiple Products SQL Injection (CVE-2023-4873; CVE-2023-5684; CVE-2023-6575; CVE-2023-7039)
|
Critical
|
7 Mar 2024 |
10 Oct 2024 |
CPAI-2022-2028
|
|
CVE-2020-10973 CVE-2020-12127 CVE-2022-31847 CVE-2022-34045 CVE-2022-34046 CVE-2022-34047 CVE-2022-34049 CVE-2022-34576 CVE-2022-48165
|
Wavlink Routers Authentication Bypass (CVE-2020-10973; CVE-2020-12127; CVE-2022-31847; CVE-2022-34045; CVE-2022-34046; CVE-2022-34047; CVE-2022-34049; CVE-2022-34576; CVE-2022-48165)
|
Medium
|
8 Oct 2024 |
9 Oct 2024 |
CPAI-2024-0920
|
Microsoft CVE-2024-43573
|
CVE-2024-43573
|
Microsoft Windows MSHTML Platform Spoofing (CVE-2024-43573)
|
High
|
8 Oct 2024 |
8 Oct 2024 |
CPAI-2024-0921
|
Microsoft CVE-2024-43572
|
CVE-2024-43572
|
Microsoft Management Console Remote Code Execution (CVE-2024-43572)
|
High
|
8 Oct 2024 |
8 Oct 2024 |
CPAI-2024-0917
|
Microsoft CVE-2024-43560
|
CVE-2024-43560
|
Microsoft Windows Storage Port Driver Elevation of Privilege (CVE-2024-43560)
|
High
|
8 Oct 2024 |
8 Oct 2024 |
CPAI-2024-0896
|
Microsoft CVE-2024-43502
|
CVE-2024-43502
|
Microsoft Windows Kernel Elevation of Privilege (CVE-2024-43502)
|