Lucene search
K

5126 matches found

OpenVAS
OpenVAS
added 2024/09/17 12:0 a.m.10 views

Mageia: Security Advisory (MGASA-2024-0303)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00317EPSS
Exploits1References4
CVE
CVE
added 2024/09/16 11:22 p.m.47 views

CVE-2024-44189

CVE-2024-44189 affects macOS WindowServer and relates to a logic issue where a process could capture screen contents without user consent. The public records indicate this was addressed with improved checks and that macOS Sequoia 15 includes the fix. The Red Hat and Apple advisories corroborate t...

7.5CVSS6.1AI score0.00522EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/16 11:22 p.m.20 views

CVE-2024-44189

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...

5.8AI score0.00522EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/16 11:22 p.m.16 views

CVE-2024-44189

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. A logic issue existed where a process may be able to capture screen contents without user consent...

0.00522EPSS
Exploits0References1
Mageia
Mageia
added 2024/09/16 5:44 p.m.16 views

Updated wireshark packages fix security vulnerability

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.2.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file. CVE-2024-8250...

7.8CVSS7.5AI score0.00317EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2024/09/16 3:32 p.m.17 views

Mattermost Desktop App fails to safeguard screen capture functionality

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

5.3CVSS6.7AI score0.00312EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/09/16 3:32 p.m.7 views

GHSA-5777-RCJJ-9P22 Mattermost Desktop App fails to safeguard screen capture functionality

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

6.3CVSS4.6AI score0.00312EPSS
Exploits0References3
OSV
OSV
added 2024/09/16 3:15 p.m.10 views

CVE-2024-39772

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

5.3CVSS5.2AI score
Exploits0References1
NVD
NVD
added 2024/09/16 3:15 p.m.12 views

CVE-2024-39772

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

5.3CVSS0.00312EPSS
Exploits0References1
CVE
CVE
added 2024/09/16 2:27 p.m.39 views

CVE-2024-39772

Summary: CVE-2024-39772 affects Mattermost Desktop App versions

5.3CVSS4.6AI score0.00312EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/09/16 2:27 p.m.21 views

CVE-2024-39772 Silent Desktop Screenshot Capture

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

3.7CVSS0.00312EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/16 2:27 p.m.20 views

CVE-2024-39772 Silent Desktop Screenshot Capture

Mattermost Desktop App versions =5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs...

3.7CVSS6.8AI score0.00312EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/16 12:0 a.m.4 views

PT-2024-31022 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to Sequoia 15 Description: A logic issue existed where a process may be able to capture screen contents without user consent. The issue was addressed with improved checks. Recommendations: For versions prior to macOS...

7.5CVSS6AI score0.00522EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/09/16 12:0 a.m.2 views

Mattermost Desktop App 安全漏洞

Mattermost Desktop App is a messaging desktop application from Mattermost USA. A security vulnerability exists in Mattermost Desktop App version 5.8.0 and prior versions, which stems from a failure to protect the screen capture functionality. An attacker can exploit the vulnerability to silently...

5.3CVSS6.5AI score0.00312EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/16 12:0 a.m.7 views

PT-2024-28668 · Mattermost · Mattermost Desktop App

Name of the Vulnerable Software and Affected Versions: Mattermost Desktop App versions =5.8.0 Description: The issue concerns a flaw in the screen capture functionality of the Mattermost Desktop App, allowing an attacker to silently capture high-quality screenshots via JavaScript APIs...

6.3CVSS6.8AI score0.00312EPSS
Exploits0References9
CVE
CVE
added 2024/09/13 5:27 p.m.49 views

CVE-2024-45101

The CVE-2024-45101 issue affects Lenovo XClarity Administrator (LXCA) where enabling Single Sign-On (SSO) can lead to privilege escalation by intercepting a valid authenticated user’s XCC session. The vulnerability arises when a user is tricked into clicking a specially crafted URL, enabling an a...

6.8CVSS6.9AI score0.00191EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/13 12:0 a.m.8 views

Lenovo XClarity Controller 安全漏洞

Lenovo XClarity Controller Lenovo XCC is a server embedded management engine from Lenovo China. It is primarily used to standardize and automate basic server management tasks. A security vulnerability exists in Lenovo XClarity Controller, which stems from a vulnerability that could allow a validl...

7.2CVSS7AI score0.01032EPSS
Exploits0References2
OSV
OSV
added 2024/09/11 8:42 p.m.9 views

MGASA-2024-0295 Updated libpcap packages fix security vulnerabilities

In affected libpcap versions during the setup of a remote packet capture the internal function sockinitaddress calls getaddrinfo and possibly freeaddrinfo, but does not clearly indicate to the caller function whether freeaddrinfo still remains to be called after the function returns. This makes i...

4.4CVSS4.8AI score0.0022EPSS
Exploits0References3
Mageia
Mageia
added 2024/09/11 8:42 p.m.33 views

Updated libpcap packages fix security vulnerabilities

In affected libpcap versions during the setup of a remote packet capture the internal function sockinitaddress calls getaddrinfo and possibly freeaddrinfo, but does not clearly indicate to the caller function whether freeaddrinfo still remains to be called after the function returns. This makes i...

4.4CVSS7.4AI score0.0022EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/09/11 3:14 a.m.2 views

SUSE CVE-2024-8645

SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file...

5.5CVSS7AI score0.00207EPSS
Exploits0References5
Rows per page
Query Builder