Lucene search
K

14 matches found

OSV
OSV
added 2026/02/03 7:16 p.m.4 views

CVE-2026-24427

Shenzhen Tenda AC7 firmware version V03.03.03.01cn and prior expose sensitive information in web management responses. Administrative credentials, including the router and/or admin panel password, are included in plaintext within configuration response bodies. In addition, responses lack...

5.5CVSS5.9AI score0.00118EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:3 p.m.5 views

CVE-2021-24427

The W3 Total Cache WordPress plugin before 2.1.3 did not sanitise or escape some of its CDN settings, allowing high privilege users to use JavaScript in them, which will be output in the page, leading to an authenticated Stored Cross-Site Scripting issue...

4.8CVSS5.5AI score0.00622EPSS
Exploits2References1
CVE
CVE
added 2025/02/11 5:37 p.m.86 views

CVE-2025-24427

CVE-2025-24427 affects Adobe Commerce: vulnerable in 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier. The issue is Improper Access Control allowing a low-privilege attacker to bypass security measures and gain unauthorized write access without user interaction. Connected sources...

6.5CVSS7.1AI score0.00609EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/01/21 11:16 p.m.11 views

CVE-2024-24427

creationtimestamp| type| source ---|---|--- 2025-01-21 23:16:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbycrffgj2x...

7.5CVSS6.9AI score0.00386EPSS
Exploits0References1
CVE
CVE
added 2025/01/21 12:0 a.m.73 views

CVE-2024-24427

Open5GS has a vulnerability CVE-2024-24427 in the amf_ue_set_suci function, affecting Open5GS ≤ 2.6.4. A reachable assertion can be triggered by a crafted NAS packet, leading to a Denial of Service. The available connected sources consistently describe this issue and the affected version, but no ...

7.5CVSS6.4AI score0.00386EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/21 12:0 a.m.11 views

CVE-2024-24427

A reachable assertion in the amfuesetsuci function of Open5GS = 2.6.4 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

7.3AI score0.00386EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/21 12:0 a.m.16 views

CVE-2024-24427

A reachable assertion in the amfuesetsuci function of Open5GS = 2.6.4 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

0.00386EPSS
Exploits0References1
Circl
Circl
added 2023/01/27 12:46 a.m.8 views

CVE-2023-24427

creationtimestamp| type| source ---|---|--- 2023-01-27 00:46:51+00:00| seen| https://t.me/cibsecurity/56999 2025-04-02 14:33:55+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10078...

9.8CVSS7.3AI score0.01062EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/01/24 12:0 a.m.8 views

CVE-2023-24427

Jenkins Bitbucket OAuth Plugin 0.12 and earlier does not invalidate the previous session on login...

7.1AI score0.01062EPSS
Exploits0References1
CVE
CVE
added 2023/01/24 12:0 a.m.87 views

CVE-2023-24427

CVE-2023-24427 : Jenkins Bitbucket OAuth Plugin (version 0.12 and earlier) does not invalidate the existing session on login, enabling a session-fixation scenario. Public sources consistently describe the issue as a login-session security defect that could allow a malicious actor with social engi...

9.8CVSS9.3AI score0.01062EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/07/12 7:20 p.m.122 views

CVE-2021-24427

The CVE-2021-24427 entry concerns the WordPress W3 Total Cache plugin prior to 2.1.3. The vulnerability arises because the plugin did not sanitise or escape certain CDN settings, allowing high-privilege users to inject JavaScript that is output in pages, leading to an authenticated Stored XSS. Af...

4.8CVSS4.7AI score0.00622EPSS
Exploits2References2Affected Software1
Circl
Circl
added 2020/11/05 10:50 p.m.7 views

CVE-2020-24427

creationtimestamp| type| source ---|---|--- 2020-11-05 22:50:07+00:00| seen| https://t.me/cibsecurity/15897...

4.3CVSS4.1AI score0.02418EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/11/04 12:0 a.m.26 views

Adobe Acrobat 2017 Security Update (APSB20-67) - Windows

Adobe Acrobat 2017 is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

9.3CVSS7.7AI score0.51275EPSS
Exploits0References1
CVE
CVE
added 1976/01/01 12:0 a.m.29 views

CVE-2022-24427

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

7.4AI score
Exploits0
Rows per page
Query Builder