| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07589148; Issue ID: ALPS07589148. |
| The Appointment Hour Booking Plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 1.3.72. This makes it possible for unauthenticated attackers to embed untrusted input into content during booking creation that may be exported as a CSV file when a site's administrator exports booking details. This can result in code execution when these files are downloaded and opened on a local system with a vulnerable configuration. |
| This vulnerability potentially allows unauthorized write operations which may lead to remote code execution. An attacker must already have authenticated admin access and knowledge of both an internal system identifier and details of another valid user to exploit this. |
| giturlparse (aka git-url-parse) through 1.2.2, as used in Semgrep 1.5.2 through 1.24.1, is vulnerable to ReDoS (Regular Expression Denial of Service) if parsing untrusted URLs. This might be relevant if Semgrep is analyzing an untrusted package (for example, to check whether it accesses any Git repository at an http:// URL), and that package's author placed a ReDoS attack payload in a URL used by the package. |
| An malicious BLE device can crash BLE victim device by sending malformed gatt packet |
| An unauthenticated remote attacker can DoS the control agent due to a out-of-bounds read which may prevent or disrupt the charging functionality. |
| Possible buffer overflow in is_mount_point |
| This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| Windows Boot Manager Security Feature Bypass Vulnerability |
| Windows Kernel Elevation of Privilege Vulnerability |
| Visual Studio Information Disclosure Vulnerability |
| Visual Studio Elevation of Privilege Vulnerability |
| Windows DNS Server Information Disclosure Vulnerability |
| Windows DNS Server Remote Code Execution Vulnerability |
| Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability |
| Windows Kernel Elevation of Privilege Vulnerability |
| Windows Kernel Elevation of Privilege Vulnerability |
| Windows Network File System Information Disclosure Vulnerability |
| Windows Common Log File System Driver Information Disclosure Vulnerability |
| Windows Network Load Balancing Remote Code Execution Vulnerability |
