CVE-2026-24324

SAP BusinessObjects Business Intelligence Platform AdminTools allows an authenticated attacker with user privileges to execute a specific query in AdminTools that could cause the Content Management Server CMS to crash, rendering the CMS partially or completely unavailable and resulting in the...

K000157121: Intel 800 Series ethernet driver vulnerabilities CVE-2025-22836, CVE-2025-22893, CVE-2025-24324

Security Advisory Description CVE-2025-22836 Integer overflow or wraparound in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-22893 Insufficient control...

CVE-2025-24324

creationtimestamp| type| source ---|---|--- 2025-08-14 04:04:19+00:00| seen| Telegram/ofE-iymWkt9aSo97eh798VdcbYHGqibXtVJmwcmDNb5sE...

CVE-2021-24324

The 404 SEO Redirection WordPress plugin through 1.3 is lacking CSRF checks in all its settings, allowing attackers to make a logged in user change the plugin's settings. Due to the lack of sanitisation and escaping in some fields, it could also lead to Stored Cross-Site Scripting issues...

CVE-2024-24324

creationtimestamp| type| source ---|---|--- 2024-01-30 16:22:04+00:00| seen| https://t.me/ctinow/176038 2024-02-01 08:16:39+00:00| seen| https://t.me/ctinow/177369 2024-02-22 07:36:39+00:00| seen| https://t.me/ctinow/190507...

CVE-2024-24324

TOTOLINK A8000RU v7.1cu.643B20200521 was discovered to contain a hardcoded password for root stored in /etc/shadow...

CVE-2024-24324

CVE-2024-24324 affects TOTOLINK A8000RU, firmware version 7.1cu.643_B20200521, which is reported to store a hardcoded root password in /etc/shadow. The CVE has a high impact (CVSSv3.1: 9.8, CRITICAL) with network access, no user interaction, and no privileges required, per existing metrics. Conne...

CVE-2022-24324

creationtimestamp| type| source ---|---|--- 2023-02-01 07:14:10+00:00| seen| https://t.me/cibsecurity/57252...

CVE-2022-24324

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Products: IGSS Data Server - IGSSdataServer.exe Versions prior to...

CVE-2022-24324

CVE-2022-24324 affects Schneider Electric IGSS Data Server (IGSSdataServer.exe) prior to v15.0.0.22073. Root cause is a CWE-120 buffer copy without checking input size, leading to a stack-based buffer overflow and potential remote code execution when a specially crafted message is received. Affec...

CVE-2022-24324

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Products: IGSS Data Server - IGSSdataServer.exe Versions prior to...

CVE-2022-24324

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow potentially leading to remote code execution when an attacker sends a specially crafted message. Affected Products: IGSS Data Server - IGSSdataServer.exe Versions prior to...

CVE-2021-24324

CVE-2021-24324 affects the WordPress plugin “404 SEO Redirection” (versions up to and including 1.3). The root cause is missing CSRF checks in all settings, with some fields lacking proper sanitisation/escaping, which could enable a logged-in attacker to change plugin settings and potentially tri...