CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2024-53975
Description: Accessing a non-secure HTTP site that uses a non-existent port may cause the SSL padlock icon in the location URL bar to, misleadingly, appear secure. This vulnerability affects Firefox for iOS < 133.

CVSS: MEDIUM (5.4)

EPSS Score: 0.04%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53930
Description: WikiDocs before 1.0.65 allows stored XSS by authenticated users via data that comes after $$\\, which is mishandled by a KaTeX parser.

CVSS: MEDIUM (5.4)

EPSS Score: 0.04%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53915
Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53914
Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53913
Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53912
Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53911
Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53910
Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53909
Description: An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24334. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

CVSS: CRITICAL (9.8)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (7 months ago)

CVE-2024-53849
Several stack buffer overflows and pointer overflows in editorconfig-core-c
Description: editorconfig-core-c is theEditorConfig core library written in C (for use by plugins supporting EditorConfig parsing). In affected versions several overflows may occur in switch case '[' when the input pattern contains many escaped characters. The added backslashes leave too little space in the output pattern when processing nested brackets such that the remaining input length exceeds the output capacity. This issue has been addressed in release version 0.12.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS: MEDIUM (4.8)

EPSS Score: 0.05%

Source: CVE
November 27th, 2024 (7 months ago)