K000139608: MySQL Server vulnerability CVE-2024-21087
Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access....
5.7AI Score
0.0004EPSS
KLA67588 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: Use after free...
9.3AI Score
0.0004EPSS
KLA67434 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service, obtain sensitive information. Below is a complete list of...
8.8CVSS
9.7AI Score
0.002EPSS
K000139606: MySQL Server vulnerabiliity CVE-2024-21047
Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to....
5.7AI Score
0.0004EPSS
The Events Calendar < 6.4.0.1 - Reflected XSS
Description The plugin does not properly sanitize user-submitted content when rendering some views via AJAX....
6.6AI Score
0.0004EPSS
K000139607: MySQL Server vulnerabilities CVE-2024-21013 and CVE-2024-21062
Security Advisory Description CVE-2024-21013 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows high privileged attacker with network...
5.6AI Score
0.0004EPSS
Rocky Linux 9 : edk2 (RLSA-2024:2264)
The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:2264 advisory. EDK2 is susceptible to a vulnerability in the Tcg2MeasureGptTable() function, allowing a user to trigger a heap buffer overflow via a local...
8.8CVSS
8.2AI Score
0.006EPSS
The Events Calendar < 6.4.0.1 - Reflected XSS
Description The plugin does not properly sanitize user-submitted content when rendering some views via...
6.8AI Score
0.0004EPSS
KLA67433 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: A remote code...
8.8CVSS
9.8AI Score
0.008EPSS
KLA67587 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: Use after free vulnerability can be...
9.6AI Score
0.0004EPSS
KLA67403 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: An elevation of privilege vulnerability can be exploited remotely...
9CVSS
8.8AI Score
0.001EPSS
We are pleased to announce that Microsoft has been recognized as a Leader in the Gartner® Magic Quadrant™ for Security Information and Event Management (SIEM).1 We believe our position in the Leaders quadrant validates our vision and continued investments in Microsoft Sentinel making it a...
7AI Score
Summary There are multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition that is shipped with IBM WebSphere Application Server and IBM WebSphere Application Server Liberty. The CVE(s) listed in this document might affect some configurations of IBM WebSphere Application Server...
5.9CVSS
7.4AI Score
0.001EPSS
This High severity org.eclipse.jgit:org.eclipse.jgit Dependency vulnerability was introduced in versions 9.0.0, 9.1.0, 9.2.1, 9.3.0, 9.4.0, and 9.5.0 of Bamboo Data Center and Server. The latest LTS Bamboo 9.6.0 is not impacted by this Vulnerability. This org.eclipse.jgit:org.eclipse.jgit...
8.8CVSS
7.3AI Score
0.001EPSS
Security Advisory Description CVE-2024-20994 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows low privileged attacker with...
5.7AI Score
0.0004EPSS
Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect...
6.4CVSS
6.6AI Score
0.0004EPSS
Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect...
6.8CVSS
6.8AI Score
0.0004EPSS
Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect...
6.8CVSS
7AI Score
0.0004EPSS
NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this vulnerability will affect...
5.9CVSS
5.9AI Score
0.0004EPSS
NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this vulnerability will affect...
5.9CVSS
6.9AI Score
0.0004EPSS
Race condition vulnerability in the soundtrigger module Impact: Successful exploitation of this vulnerability will affect...
4.1CVSS
4.8AI Score
0.0004EPSS
Race condition vulnerability in the soundtrigger module Impact: Successful exploitation of this vulnerability will affect...
4.1CVSS
6.9AI Score
0.0004EPSS
Race condition vulnerability in the binder driver module Impact: Successful exploitation of this vulnerability will affect...
8.4CVSS
8.5AI Score
0.0004EPSS
Race condition vulnerability in the binder driver module Impact: Successful exploitation of this vulnerability will affect...
8.4CVSS
6.9AI Score
0.0004EPSS
Privilege escalation vulnerability in the account module Impact: Successful exploitation of this vulnerability will affect...
6.2CVSS
7.2AI Score
0.0004EPSS
Privilege escalation vulnerability in the account module Impact: Successful exploitation of this vulnerability will affect...
6.2CVSS
6.8AI Score
0.0004EPSS
Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this vulnerability will affect...
6.2CVSS
6.9AI Score
0.0004EPSS
Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this vulnerability will affect...
6.2CVSS
6.5AI Score
0.0004EPSS
Out-of-bounds access vulnerability in the memory module Impact: Successful exploitation of this vulnerability will affect...
5.6CVSS
5.8AI Score
0.0004EPSS
Out-of-bounds access vulnerability in the memory module Impact: Successful exploitation of this vulnerability will affect...
5.6CVSS
6.9AI Score
0.0004EPSS
Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect...
4.7CVSS
5.1AI Score
0.0004EPSS
Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect...
4.7CVSS
6.9AI Score
0.0004EPSS
Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect...
4.7CVSS
5.1AI Score
0.0004EPSS
Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect...
4.7CVSS
6.9AI Score
0.0004EPSS
Insufficient verification vulnerability in the baseband module Impact: Successful exploitation of this vulnerability will affect...
7.5CVSS
6.9AI Score
0.0004EPSS
Insufficient verification vulnerability in the baseband module Impact: Successful exploitation of this vulnerability will affect...
7.5CVSS
7.7AI Score
0.0004EPSS
Permission verification vulnerability in the wpa_supplicant module Impact: Successful exploitation of this vulnerability will affect...
7.5CVSS
7.7AI Score
0.0004EPSS
Permission verification vulnerability in the wpa_supplicant module Impact: Successful exploitation of this vulnerability will affect...
7.5CVSS
6.9AI Score
0.0004EPSS
Permission verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect...
6.1CVSS
6.5AI Score
0.0004EPSS
Permission verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect...
6.1CVSS
6.9AI Score
0.0004EPSS
Insufficient verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect...
3.3CVSS
6.9AI Score
0.0004EPSS
Insufficient verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect...
3.3CVSS
4.4AI Score
0.0004EPSS
RHEL 7 : qt (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. qt: QPluginLoader loads plugins relative to CWD which could result in arbitrary code execution ...
7.3AI Score
0.004EPSS
RHEL 6 : squid (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. squid: Heap overflow issue in URN processing (CVE-2019-12526) squid: Buffer overflow in reverse-proxy...
9.8AI Score
0.957EPSS
RHEL 7 : squid (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. squid: Information disclosure in Collapsed forwarding (CVE-2016-10003) This vulnerability allows remote...
8AI Score
0.916EPSS
RHEL 6 : tar (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. tar: Bypassing the extract path name (CVE-2016-6321) GNU Tar through 1.30, when --sparse is used,...
6.4AI Score
0.011EPSS
RHEL 7 : tar (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. tar: Bypassing the extract path name (CVE-2016-6321) GNU Tar through 1.30, when --sparse is used,...
6.7AI Score
0.011EPSS
RHEL 7 : libxml2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. libxml2: Missing validation for external entities in xmlParsePEReference (CVE-2017-7375) libxml2:...
9.5AI Score
0.019EPSS
RHEL 6 : qemu (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. QEMU: net: ignore packets with large size (CVE-2018-17963) Memory leak in hw/watchdog/wdt_i6300esb.c in...
8.8AI Score
0.141EPSS
RHEL 7 : imagemagick (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. ImageMagick: NULL pointer dereference in GetMagickProperty function in MagickCore/property.c ...
8.1AI Score
0.242EPSS