CVE-2024-53357 |
Description: In EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0, the AES encryption keys used to encrypt passwords are not stored securely.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-53356 |
Description: EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to privilege escalation as the password token suffers from weak encryption making it possible to brute-force the password token.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-53355 |
Description: EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to Incorrect Access Control. This vulnerability allows the api to be used to create/modify/delete information about aliases (users) / users (groups) / roles.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-53354 |
Description: EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to SQL Injection.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-53320 |
Description: Qualisys C++ SDK commit a32a21a was discovered to contain multiple stack buffer overflows via the GetCurrentFrame, SaveCapture, and LoadProject functions.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-53319 |
Description: A heap buffer overflow in the XML Text Escaping component of Qualisys C++ SDK commit a32a21a allows attackers to cause Denial of Service (DoS) via escaping special XML characters.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-52936 |
Description: Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to write data outside the Guest's virtualised GPU memory.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-52318 |
Description: Incorrect object recycling and reuse vulnerability in Apache Tomcat.
This issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96.
Users are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-47900 |
Description: Software installed and run as a non-privileged user may conduct improper GPU system calls to access OOB kernel memory.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|
CVE-2024-47899 |
Description: Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions.
EPSS Score: 0.04%
February 1st, 2025 (5 months ago)
|