Total
403 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-21753 | 1 Microsoft | 2 Windows 10, Windows Server 2019 | 2024-05-29 | N/A | 5.5 MEDIUM |
Event Tracing for Windows Information Disclosure Vulnerability | |||||
CVE-2023-38151 | 1 Microsoft | 2 Host Integration Server, Ole Db Provider | 2024-05-29 | N/A | 8.8 HIGH |
Microsoft Host Integration Server 2020 Remote Code Execution Vulnerability | |||||
CVE-2023-36913 | 1 Microsoft | 12 Windows 10, Windows 10 1607, Windows 10 1809 and 9 more | 2024-05-29 | N/A | 7.5 HIGH |
Microsoft Message Queuing Information Disclosure Vulnerability | |||||
CVE-2023-36713 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2024-05-29 | N/A | 5.5 MEDIUM |
Windows Common Log File System Driver Information Disclosure Vulnerability | |||||
CVE-2023-36704 | 1 Microsoft | 2 Windows 10 1809, Windows Server 2019 | 2024-05-29 | N/A | 7.8 HIGH |
Windows Setup Files Cleanup Remote Code Execution Vulnerability | |||||
CVE-2023-36567 | 1 Microsoft | 11 Windows 10 1507, Windows 10 1809, Windows 10 21h1 and 8 more | 2024-05-29 | N/A | 7.5 HIGH |
Windows Deployment Services Information Disclosure Vulnerability | |||||
CVE-2023-36398 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2024-05-29 | N/A | 6.5 MEDIUM |
Windows NTFS Information Disclosure Vulnerability | |||||
CVE-2023-36012 | 1 Microsoft | 5 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 2 more | 2024-05-29 | N/A | 5.3 MEDIUM |
DHCP Server Service Information Disclosure Vulnerability | |||||
CVE-2023-32016 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2024-05-29 | N/A | 5.5 MEDIUM |
Windows Installer Information Disclosure Vulnerability | |||||
CVE-2023-29367 | 1 Microsoft | 4 Windows Server 2012, Windows Server 2016, Windows Server 2019 and 1 more | 2024-05-29 | N/A | 7.8 HIGH |
iSCSI Target WMI Provider Remote Code Execution Vulnerability | |||||
CVE-2023-24941 | 1 Microsoft | 4 Windows Server 2012, Windows Server 2016, Windows Server 2019 and 1 more | 2024-05-29 | N/A | 9.8 CRITICAL |
Windows Network File System Remote Code Execution Vulnerability | |||||
CVE-2023-24886 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2024-05-29 | N/A | 8.8 HIGH |
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | |||||
CVE-2024-20694 | 1 Microsoft | 11 Windows 10 1607, Windows 10 1809, Windows 10 21h2 and 8 more | 2024-05-29 | N/A | 5.5 MEDIUM |
Windows CoreMessaging Information Disclosure Vulnerability | |||||
CVE-2022-48654 | 1 Linux | 1 Linux Kernel | 2024-05-23 | N/A | 5.5 MEDIUM |
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find() nf_osf_find() incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nft_osf which can be used to leak stale kernel stack data to userspace. | |||||
CVE-2022-25737 | 1 Qualcomm | 24 Mdm8207, Mdm8207 Firmware, Mdm9205 and 21 more | 2024-04-12 | N/A | 7.5 HIGH |
Information disclosure in modem due to missing NULL check while reading packets received from local network | |||||
CVE-2024-26220 | 2024-04-10 | N/A | 5.0 MEDIUM | ||
Windows Mobile Hotspot Information Disclosure Vulnerability | |||||
CVE-2024-26209 | 2024-04-10 | N/A | 5.5 MEDIUM | ||
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability | |||||
CVE-2024-3299 | 2024-04-04 | N/A | 7.8 HIGH | ||
Out-Of-Bounds Write, Use of Uninitialized Resource and Use-After-Free vulnerabilities exist in the file reading procedure in eDrawings from Release SOLIDWORKS 2023 through Release SOLIDWORKS 2024. These vulnerabilities could allow an attacker to execute arbitrary code while opening a specially crafted SLDDRW or SLDPRT file. NOTE: this vulnerability was SPLIT from CVE-2024-1847. | |||||
CVE-2021-22925 | 7 Apple, Fedoraproject, Haxx and 4 more | 27 Mac Os X, Macos, Fedora and 24 more | 2024-03-27 | 5.0 MEDIUM | 5.3 MEDIUM |
curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application. | |||||
CVE-2022-40768 | 3 Debian, Fedoraproject, Linux | 3 Debian Linux, Fedora, Linux Kernel | 2024-03-25 | N/A | 5.5 MEDIUM |
drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stex_queuecommand_lck lacks a memset for the PASSTHRU_CMD case. |