CVE-2024-40712

A path traversal vulnerability allows an attacker with a low-privileged account and local access to the system to perform local privilege escalation LPE...

CVE-2024-38171

Microsoft PowerPoint Remote Code Execution Vulnerability...

CVE-2024-38120

Windows Routing and Remote Access Service RRAS Remote Code Execution Vulnerability...

UBUNTU-CVE-2024-36460

The front-end audit log allows viewing of unprotected plaintext passwords, where the passwords are displayed in plain text...

UBUNTU-CVE-2024-7522

Editor code failed to check an attribute value. This could have led to an out-of-bounds read. This vulnerability affects Firefox 129, Firefox ESR 115.14, Firefox ESR 128.1, Thunderbird 128.1, and Thunderbird 115.14...

BELL-CVE-2024-42065

Bulletin has no description...

UBUNTU-CVE-2024-39501

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

UBUNTU-CVE-2024-6602

A mismatch between allocator and deallocator could have led to memory corruption. This vulnerability affects Firefox 128, Firefox ESR 115.13, Thunderbird 115.13, and Thunderbird 128...

CVE-2024-38054

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability...

CVE-2024-38032

Microsoft Xbox Remote Code Execution Vulnerability...

CVE-2024-38013

Microsoft Windows Server Backup Elevation of Privilege Vulnerability...

CVE-2024-37224

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in smartypants SP Project & Document Manager.This issue affects SP Project & Document Manager: from n/a through 4.71...

CVE-2024-35265

Windows Perception Service Elevation of Privilege Vulnerability...

CVE-2024-30091

Win32k Elevation of Privilege Vulnerability...

CVE-2024-30067

Winlogon Elevation of Privilege Vulnerability...

Waxlab wax 安全漏洞

Waxlab wax is a Waxlab open source set of multi-purpose modules for extending the Lua standard library. A security vulnerability exists in Waxlab wax v.0.9-3 and earlier versions that originated from allowing an attacker to cause a denial of service via a Lua library component...

CVE-2024-23561

HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability due to insufficient obfuscation of sensitive values...

CVE-2024-25545

An issue in Weave Weave Desktop v.7.78.10 allows a local attacker to execute arbitrary code via a crafted script to the nwjs framework component...

CVE-2024-29053

Microsoft Defender for IoT Remote Code Execution Vulnerability...

CVE-2024-28904

Microsoft Brokering File System Elevation of Privilege Vulnerability...