Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-49533 |
Description: Acrobat Reader versions 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS: MEDIUM (5.5) EPSS Score: 0.04%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-49531 |
Description: Acrobat Reader versions 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVSS: MEDIUM (4.7) EPSS Score: 0.05%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-49103 |
Description: Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability
CVSS: MEDIUM (4.3) EPSS Score: 0.05%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-49101 |
Description: Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability
CVSS: MEDIUM (6.6) EPSS Score: 0.05%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-49078 |
Description: Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
CVSS: MEDIUM (6.8) EPSS Score: 0.05%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-49077 |
Description: Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
CVSS: MEDIUM (6.8) EPSS Score: 0.05%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-49062 |
Description: Microsoft SharePoint Information Disclosure Vulnerability
CVSS: MEDIUM (6.5) EPSS Score: 0.05%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-49041 |
Description: Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVSS: MEDIUM (4.3) EPSS Score: 0.05%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-47585 |
Description: SAP NetWeaver Application Server for ABAP and ABAP Platform allows an authenticated attacker to gain higher access levels than they should have by exploiting improper authorization checks, resulting in privilege escalation. While authorizations for import and export are distinguished, a single authorization is applied for both, which may contribute to these risks. On successful exploitation, this can result in potential security concerns. However, it has no impact on the integrity and availability of the application and may have only a low impact on data confidentiality.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 11th, 2024 (4 months ago)
|
|
CVE-2024-47582 |
Description: Due to missing validation of XML input, an unauthenticated attacker could send malicious input to an endpoint which leads to XML Entity Expansion attack. This causes limited impact on availability of the application.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
December 11th, 2024 (4 months ago)
|