Export limit exceeded: 363690 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 363690 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (363690 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-57544 | 1 Linksys | 2 E8450, E8450 Firmware | 2025-04-22 | 5.5 Medium |
| Linksys E8450 v1.2.00.360516 was discovered to contain a buffer overflow vulnerability. The parsed field (lan_ipaddr) is copied to the stack without length verification. | ||||
| CVE-2024-57545 | 1 Linksys | 2 E8450, E8450 Firmware | 2025-04-22 | 5.5 Medium |
| Linksys E8450 v1.2.00.360516 was discovered to contain a buffer overflow vulnerability. The parsed field (hidden_dhcp_num) is copied to the stack without length verification. | ||||
| CVE-2024-44724 | 2 Autocms, Autocms Project | 2 Autocms, Autocms | 2025-04-22 | 7.2 High |
| AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value. | ||||
| CVE-2024-44725 | 2 Autocms, Autocms Project | 2 Autocms, Autocms | 2025-04-22 | 7.2 High |
| AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php. | ||||
| CVE-2024-44838 | 1 Openrapid | 1 Rapidcms | 2025-04-22 | 9.8 Critical |
| RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the username parameter at /resource/runlogin.php. | ||||
| CVE-2024-44839 | 1 Openrapid | 1 Rapidcms | 2025-04-22 | 9.8 Critical |
| RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the articleid parameter at /default/article.php. | ||||
| CVE-2024-45771 | 1 Openrapid | 1 Rapidcms | 2025-04-22 | 9.8 Critical |
| RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the password parameter at /resource/runlogin.php. | ||||
| CVE-2024-41375 | 1 Icecoder | 1 Icecoder | 2025-04-22 | 6.1 Medium |
| ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/terminal-xhr.php | ||||
| CVE-2024-41374 | 1 Icecoder | 1 Icecoder | 2025-04-22 | 6.1 Medium |
| ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/settings-screen.php | ||||
| CVE-2024-41373 | 1 Icecoder | 1 Icecoder | 2025-04-22 | 6.3 Medium |
| ICEcoder 8.1 contains a Path Traversal vulnerability via lib/backup-versions-preview-loader.php. | ||||
| CVE-2024-20130 | 2 Google, Mediatek | 30 Android, Mt6739, Mt6761 and 27 more | 2025-04-22 | 6.7 Medium |
| In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09193374; Issue ID: MSV-1982. | ||||
| CVE-2024-20131 | 1 Mediatek | 33 Mt2737, Mt2739, Mt6789 and 30 more | 2025-04-22 | 6.7 Medium |
| In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1873. | ||||
| CVE-2024-20133 | 1 Mediatek | 12 Mt6879, Mt6886, Mt6895 and 9 more | 2025-04-22 | 6.7 Medium |
| In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1871. | ||||
| CVE-2024-20134 | 2 Google, Mediatek | 14 Android, Mt6835, Mt6878 and 11 more | 2025-04-22 | 6.7 Medium |
| In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09154589; Issue ID: MSV-1866. | ||||
| CVE-2024-20135 | 2 Google, Mediatek | 13 Android, Mt6768, Mt6781 and 10 more | 2025-04-22 | 6.7 Medium |
| In soundtrigger, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09142526; Issue ID: MSV-1841. | ||||
| CVE-2024-20136 | 4 Google, Mediatek, Openwrt and 1 more | 32 Android, Mt2737, Mt6781 and 29 more | 2025-04-22 | 6.2 Medium |
| In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09121847; Issue ID: MSV-1821. | ||||
| CVE-2024-20119 | 2 Google, Mediatek | 20 Android, Mt6739, Mt6761 and 17 more | 2025-04-22 | 6.7 Medium |
| In mms, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09062301; Issue ID: MSV-1620. | ||||
| CVE-2024-20120 | 2 Google, Mediatek | 30 Android, Mt6765, Mt6768 and 27 more | 2025-04-22 | 6.7 Medium |
| In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; Issue ID: MSV-1575. | ||||
| CVE-2024-20121 | 2 Google, Mediatek | 29 Android, Mt6765, Mt6768 and 26 more | 2025-04-22 | 6.7 Medium |
| In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; Issue ID: MSV-1574. | ||||
| CVE-2024-20122 | 2 Google, Mediatek | 9 Android, Mt6761, Mt6765 and 6 more | 2025-04-22 | 4.4 Medium |
| In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09008925; Issue ID: MSV-1572. | ||||