Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-48846 |
Description: Cross Site Request Forgery vulnerabilities where found providing a potiential for exposing sensitive information or changing system settings.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-48845 |
Description: Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access.
Affected products:
ABB ASPECT - Enterprise v3.07.02;
NEXUS Series v3.07.02;
MATRIX Series v3.07.02
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-48844 |
Description: Denial of Service vulnerabilities where found providing a potiential for device service disruptions.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
CVSS: HIGH (7.7) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-48843 |
Description: Denial of Service vulnerabilities where found providing a potiential for device service disruptions.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
CVSS: HIGH (7.7) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-48840 |
Description: Unauthorized Access vulnerabilities allow Remote Code Execution.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-48839 |
Description: Improper Input Validation vulnerability allows Remote Code Execution.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
CVSS: CRITICAL (10.0) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-47939 |
Description: Stack-based buffer overflow vulnerability exists in multiple Ricoh laser printers and MFPs which implement Web Image Monitor. If this vulnerability is exploited, receiving a specially crafted request created and sent by an attacker may lead to arbitrary code execution and/or a denial-of-service (DoS) condition. As for the details of affected product names and versions, refer to the information provided by the vendor under [References].
CVSS: CRITICAL (9.8) EPSS Score: 0.05%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-47133 |
Description: UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier allow a remote authenticated attacker with an administrative account to execute arbitrary OS commands.
CVSS: HIGH (7.2) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-45841 |
Description: Incorrect permission assignment for critical resource issue exists in UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier. If an attacker with the guest account of the affected products accesses a specific file, the information containing credentials may be obtained.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|
|
CVE-2024-45319 |
Description: A vulnerability in the SonicWall SMA100 SSLVPN
firmware 10.2.1.13-72sv and earlier versions allows a remote authenticated attacker can circumvent the certificate requirement during authentication.
CVSS: LOW (0.0) EPSS Score: 0.04%
December 6th, 2024 (6 months ago)
|