CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2024/11/08 7:15 p.m.•18 views

CVE-2024-50811

9.1CVSS0.00354EPSS

Cvelist•added 2024/11/08 12:0 a.m.•16 views

CVE-2024-50811

0.00354EPSS

Vulnrichment•added 2024/11/08 12:0 a.m.•8 views

CVE-2024-50811

7AI score0.00354EPSS

Positive Technologies•added 2024/11/08 12:0 a.m.•3 views

PT-2024-34420 · Unknown · Hopetree Izone Lts

Name of the Vulnerable Software and Affected Versions: hopetree izone lts version c011b48 Description: The issue is related to a server-side request forgery SSRF vulnerability in the active push function. This vulnerability occurs because the apps/tool/apis/bd push.py file does not securely filte...

9.1CVSS7.2AI score0.00354EPSS

Exploits0References6

CVE•added 2024/11/08 12:0 a.m.•70 views

CVE-2024-50811

The CVE-2024-50811 entry concerns hopetree izone lts, version c011b48, which contains a server-side request forgery (SSRF) in the active push function. The vulnerability is caused by inadequate input filtering in the internal functions push_urls() and get_urls() within apps/tool/apis/bd_push.py, ...

9.1CVSS7AI score0.00354EPSS

RedHat Linux•added 2024/11/07 3:26 p.m.•4 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

RedHat Linux•added 2024/11/07 3:23 p.m.•7 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

RedHat Linux•added 2024/11/07 3:23 p.m.•7 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

RedHat Linux•added 2024/11/07 3:19 p.m.•3 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

RedHat Linux•added 2024/11/07 3:13 p.m.•4 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

SUSE CVE•added 2024/11/06 3:56 a.m.•4 views

SUSE CVE-2024-39722

An issue was discovered in Ollama before 0.1.46. It exposes which files exist on the server on which it is deployed via path traversal in the api/push route...

7.5CVSS7.1AI score0.03938EPSS

Exploits2References3

RedHat Linux•added 2024/11/04 2:3 a.m.•3 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

RedHat Linux•added 2024/11/04 1:46 a.m.•3 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

Tenable Nessus•added 2024/11/04 12:0 a.m.•16 views

AlmaLinux 8 : firefox (ALSA-2024:8729)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2024:8729 advisory. firefox: thunderbird: History interface could have been used to cause a Denial of Service condition in the browser CVE-2024-10464 firefox: thunderbird: XS...

9.8CVSS7.3AI score0.00815EPSS

Exploits0References12

IBM Security Bulletins•added 2024/11/01 10:12 p.m.•32 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v4.8.6 is vulnerable to multiple Operator package issues

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v4.8.6 is vulnerable to multiple Operator package issues. We have performed updates to the Operators used by our Speech Services. The following vulnerabilities have been addressed in this update. Please read the details for...

9.1CVSS10AI score0.36081EPSS

Exploits3Affected Software1

RedHat Linux•added 2024/10/31 8:14 p.m.•4 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

RedHat Linux•added 2024/10/31 8:14 p.m.•20 views

Moderate: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.9AI score0.00815EPSS

Exploits0References11

RedHat Linux•added 2024/10/31 8:5 p.m.•3 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...

RedHat Linux•added 2024/10/31 8:2 p.m.•3 views

firefox: DOM push subscription message could hang Firefox

The Mozilla Foundation's Security Advisory: By sending a specially crafted push message, a remote server could hang the parent process, causing the browser to become unresponsive...