CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2024/06/24 3:3 p.m.•71 views

CVE-2024-33687

CVE-2024-33687 concerns Omron NJ/NX series CPU units (all versions) with an insufficient verification of data authenticity (CWE-345). The issue allows altered user programs to potentially go undetected. Root cause is improper verification of data authenticity in affected devices. Impact notes fro...

7.5CVSS6.4AI score0.00193EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/06/24 3:3 p.m.•20 views

CVE-2024-33687

0.00193EPSS

Openbugbounty•added 2024/06/24 8:18 a.m.•10 views

poderjudicialqro.gob.mx Cross Site Scripting vulnerability OBB-3938340

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Openbugbounty•added 2024/06/24 7:28 a.m.•11 views

shop.davidbowie.com Cross Site Scripting vulnerability OBB-3938238

Openbugbounty•added 2024/06/24 3:42 a.m.•21 views

phoneky.co.uk Cross Site Scripting vulnerability OBB-3938204

Positive Technologies•added 2024/06/24 12:0 a.m.•5 views

PT-2024-27029 · Faronics · Winselect

Name of the Vulnerable Software and Affected Versions: Faronics WINSelect Standard + Enterprise affected versions not specified Description: The application saves its configuration in an encrypted file on the file system, which "Everyone" has read and write access to. The paths to the configurati...

7.7CVSS6.8AI score0.0031EPSS

Exploits1References6

Hacker One•added 2024/06/22 4:36 a.m.•43 views

HackerOne: Reports submitted by a non 2fa setupped user account can be transferred to a 2fa require submission program

Vulnerability description not provided...

7.1AI score

Openbugbounty•added 2024/06/21 9:15 p.m.•10 views

coolhouseplans.com Cross Site Scripting vulnerability OBB-3937495

RedhatCVE•added 2024/06/21 1:52 p.m.•26 views

CVE-2024-38662

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.4CVSS7.2AI score0.0022EPSS

Exploits0References4

NVD•added 2024/06/21 12:15 p.m.•22 views

CVE-2024-38662

4.7CVSS0.0022EPSS

Exploits0References8

Openbugbounty•added 2024/06/21 11:19 a.m.•11 views

nsmbl.nl Cross Site Scripting vulnerability OBB-3937421

Vulnrichment•added 2024/06/21 11:15 a.m.•28 views

CVE-2024-38662 bpf: Allow delete from sockmap/sockhash only if update is allowed

6.9AI score0.0022EPSS

Exploits0References6

CVE•added 2024/06/21 11:15 a.m.•164 views

CVE-2024-38662

CVE-2024-38662 affects the Linux kernel (BPF) where deletion from sockmap/sockhash is allowed only if the program was previously allowed to update that map. The issue arises when a BPF program attached to a tracepoint performs map_delete on these maps, triggering a locking-rule violation. The ver...

4.7CVSS7AI score0.0022EPSS

Exploits0References8Affected Software1

Cvelist•added 2024/06/21 11:15 a.m.•28 views

CVE-2024-38662 bpf: Allow delete from sockmap/sockhash only if update is allowed

0.0022EPSS

Exploits0References6

NVD•added 2024/06/21 11:15 a.m.•24 views

CVE-2024-38626

In the Linux kernel, the following vulnerability has been resolved: fuse: clear FRSENT when re-adding requests into pending list The following warning was reported by lee bruce: ------------ cut here ------------ WARNING: CPU: 0 PID: 8264 at fs/fuse/dev.c:300 fuserequestend+0x685/0x7e0...

5.5CVSS0.00191EPSS

Openbugbounty•added 2024/06/21 10:43 a.m.•7 views

skladsardoc.it Cross Site Scripting vulnerability OBB-3937324

Vulnrichment•added 2024/06/21 10:18 a.m.•15 views

CVE-2024-38626 fuse: clear FR_SENT when re-adding requests into pending list

6.5AI score0.00191EPSS