Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:35 a.m.5 views

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

5.1CVSS6.5AI score0.0002EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-51080

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00066EPSS
Exploits4References2
NVD
NVDadded 2024/05/05 3:15 a.m.13 views

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

5.1CVSS6.3AI score0.0002EPSS
Exploits0References1
OSV
OSVadded 2024/05/05 3:15 a.m.3 views

DEBIAN-CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

5.1CVSS5.7AI score0.0002EPSS
Exploits0References1
OSV
OSVadded 2024/05/05 3:15 a.m.7 views

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

6.5AI score
Exploits0References1
OSV
OSVadded 2024/05/05 3:15 a.m.0 views

UBUNTU-CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

5.1CVSS5.8AI score0.0002EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2024/05/05 3:15 a.m.14 views

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

5.1CVSS5.8AI score0.0002EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/05/05 12:0 a.m.13 views

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

6.5AI score0.0002EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2024/05/05 12:0 a.m.15 views

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

5.1CVSS5.1AI score0.0002EPSS
Exploits0
CVE
CVEadded 2024/05/05 12:0 a.m.44 views

CVE-2024-34490

CVE-2024-34490 affects Maxima up to 5.47.0 before 51704c. The plotting facilities (e.g., plot2d) use predictable file names under /tmp, allowing a local attacker to pre-create files and influence contents. This is a local-impact condition as described in multiple connected sources (Red Hat, NVD/o...

5.1CVSS6.5AI score0.0002EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/05/05 12:0 a.m.2 views

Maxima 安全漏洞

Maxima is a computer algebra system written in Lisp from the Maxima open source. A security vulnerability exists in Maxima version 5.47.0 up to and including 51704c. A local attacker can exploit the vulnerability to create files ahead of time...

5.1CVSS6.2AI score0.0002EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/05/05 12:0 a.m.9 views

CVE-2024-34490

In Maxima through 5.47.0 before 51704c, the plotting facilities make use of predictable names under /tmp. Thus, the contents may be controlled by a local attacker who can create files in advance with these names. This affects, for example, plot2d...

6.6AI score0.0002EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/05/04 12:0 a.m.4 views

PT-2024-25940 · Maxima +1 · Maxima +1

Name of the Vulnerable Software and Affected Versions: Maxima versions prior to 5.47.0 before 51704c Description: The plotting facilities in the affected software make use of predictable names under /tmp, allowing a local attacker to control the contents by creating files in advance with these...

5.1CVSS6.3AI score0.0002EPSS
Exploits0References13
0day.today
0day.todayadded 2024/03/04 12:0 a.m.347 views

Maxima Max Pro Power - BLE Traffic Replay (Unauthenticated) Vulnerability

Exploit Title: Maxima Max Pro Power - BLE Traffic Replay Unauthenticated Exploit Author: Alok kumar email protected, Cyberpwn Technologies Pvt. Ltd. Vendor Homepage: https://www.maximawatches.com Product Link: https://www.maximawatches.com/products/max-pro-power Firmware Version: v1.0 486A Tested...

4.3CVSS4.7AI score0.00066EPSS
Exploits4
Exploit DB
Exploit DBadded 2024/03/03 12:0 a.m.319 views

Maxima Max Pro Power - BLE Traffic Replay (Unauthenticated)

Exploit Title: Maxima Max Pro Power - BLE Traffic Replay Unauthenticated Date: 13-Nov-2023 Exploit Author: Alok kumar [email protected], Cyberpwn Technologies Pvt. Ltd. Vendor Homepage: https://www.maximawatches.com Product Link: https://www.maximawatches.com/products/max-pro-power Firmware...

4.3CVSS4.7AI score0.00066EPSS
Exploits4
ATTACKERKB
ATTACKERKBadded 2023/12/07 6:15 a.m.2 views

CVE-2023-46916

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor...

4.3CVSS5.8AI score0.00066EPSS
Exploits4References3
NVD
NVDadded 2023/12/07 6:15 a.m.15 views

CVE-2023-46916

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor...

4.3CVSS0.00066EPSS
Exploits4References2
CNNVD
CNNVDadded 2023/12/07 12:0 a.m.1 views

Maxima Max Pro Power Security Vulnerability

The Maxima Max Pro Power is a smartwatch from Maxima. A security vulnerability exists in Maxima Max Pro Power 1.0 486A, which originates from allowing BLE traffic replay, and can be exploited by an attacker to perform destructive actions, such as activating the heart rate monitor, using GATT...

4.3CVSS4.8AI score0.00066EPSS
Exploits4References4
Vulnrichment
Vulnrichmentadded 2023/12/07 12:0 a.m.9 views

CVE-2023-46916

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor...

6.9AI score0.00066EPSS
Exploits4References2
CVE
CVEadded 2023/12/07 12:0 a.m.37 views

CVE-2023-46916

CVE-2023-46916 affects Maxima Max Pro Power 1.0 486A watches. The BLE threat is a replay at GATT handle 0x0012, enabling unauthorized actions such as starting/changing the heart‑rate monitor and related display/notification changes. Public exploit notes describe unauthenticated access demonstrati...

4.3CVSS4.6AI score0.00066EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder