CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE-2024-53975

Description: Accessing a non-secure HTTP site that uses a non-existent port may cause the SSL padlock icon in the location URL bar to, misleadingly, appear secure. This vulnerability affects Firefox for iOS < 133.

CVSS: MEDIUM (5.4)

EPSS Score: 0.04%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53930

Description: WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\\, which is mishandled by a KaTeX parser.

CVSS: MEDIUM (5.4)

EPSS Score: 0.04%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53915

Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53914

Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53913

Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53912

Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53911

Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53910

Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53909

Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24334. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53849

Description: editorconfig-core-c is theEditorConfig core library written in C (for use by plugins supporting EditorConfig parsing). In affected versions several overflows may occur in switch case '[' when the input pattern contains many escaped characters. The added backslashes leave too little space in the output pattern when processing nested brackets such that the remaining input length exceeds the output capacity. This issue has been addressed in release version 0.12.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS: MEDIUM (4.8)

EPSS Score: 0.05%

Source: CVE
November 27th, 2024 (7 months ago)