CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-32605 |
Description: HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VM_memcpyvv in H5VM.c (called from H5D__compact_readvv in H5Dcompact.c).
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32355 |
Description: TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection vulnerability via the 'password' parameter in the setSSServer function.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32354 |
Description: TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection vulnerability via the 'timeout' parameter in the setSSServer function at /cgi-bin/cstecgi.cgi.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32353 |
Description: TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection vulnerability via the 'port' parameter in the setSSServer function at /cgi-bin/cstecgi.cgi.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32352 |
Description: TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "ipsecL2tpEnable" parameter in the "cstecgi.cgi" binary.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32351 |
Description: TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "mru" parameter in the "cstecgi.cgi" binary.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32350 |
Description: TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "ipsecPsk" parameter in the "cstecgi.cgi" binary.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32349 |
Description: TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the "mtu" parameters in the "cstecgi.cgi" binary.
EPSS Score: 0.04%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32113 |
Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13.
Users are recommended to upgrade to version 18.12.13, which fixes the issue.
EPSS Score: 93.84%
February 14th, 2025 (5 months ago)
|
|
CVE-2024-32077 |
Description: Apache Airflow version 2.9.0 has a vulnerability that allows an authenticated attacker to inject malicious data into the task instance logs.
Users are recommended to upgrade to version 2.9.1, which fixes this issue.
EPSS Score: 0.14%
February 14th, 2025 (5 months ago)
|