Report Name: pt_trend_cve_combined2024 report
Generated: 2024-12-04 18:21:31

Product Name	Prevalence	U	C	H	M	L	A	Comment
GitLab	0.9	1					1	GitLab is a DevOps software package that combines the ability to develop, secure, and operate software in a single application
Windows Kernel	0.9	2	1				3	Windows Kernel
nftables	0.9	1					1	nftables is a subsystem of the Linux kernel providing filtering and classification of network packets/datagrams/frames
Juniper JunOS	0.8		1				1	Junos OS is a FreeBSD-based network operating system used in Juniper Networks routing, switching and security devices
Microsoft Exchange	0.8	1	1				2	Microsoft Exchange Server is a mail server and calendaring server developed by Microsoft
PHP	0.8	1					1	PHP is a general-purpose scripting language geared towards web development. It was originally created by Danish-Canadian programmer Rasmus Lerdorf in 1993 and released in 1995.
Windows Ancillary Function Driver for WinSock	0.8	1					1	Windows component
Windows CSC Service	0.8			1			1	Windows component
Windows Common Log File System Driver	0.8		1				1	Common Log File System is a general-purpose logging subsystem that is accessible to both kernel-mode as well as user-mode applications for building high-performance transaction logs
Windows DWM Core Library	0.8	1					1	Windows component
Windows Error Reporting Service	0.8		1				1	Windows component
Windows Installer	0.8	1					1	Windows component
Windows Kernel-Mode Driver	0.8			1			1	Windows component
Windows MSHTML Platform	0.8	2	3				5	Windows component
Windows Mark of the Web	0.8		2				2	Windows component
Windows Power Dependency Coordinator	0.8		1				1	Windows component
Windows Print Spooler	0.8		1				1	Windows component
Windows Remote Desktop Licensing Service	0.8		1				1	Windows component
Windows SmartScreen	0.8	1					1	SmartScreen is a cloud-based anti-phishing and anti-malware component included in several Microsoft products, including operating systems Windows 8 and later, the applications Internet Explorer, Microsoft Edge
Windows Task Scheduler	0.8	1					1	Windows component
Atlassian Confluence	0.7	1	1				2	Confluence is a web-based corporate wiki
Ivanti Connect Secure	0.7	3					3	Ivanti Connect Secure (Pulse Connect Secure) provides a seamless, cost-effective, SSL VPN solution for remote and mobile users from any web- enabled device to corporate resources
TeamCity	0.7	1					1	TeamCity is a build management and continuous integration server from JetBrains
VMware vCenter	0.7	2		2			4	VMware vCenter Server is an advanced server management software that provides a centralized platform for controlling vSphere environments for visibility across hybrid clouds
XWiki Platform	0.7		1				1	XWiki offers a generic platform for developing projects and collaborative applications using the wiki paradigm
Zyxel firewall	0.7			1			1	Firewalls manufactured by Zyxel
needrestart	0.7			1			1	Needrestart is a utility that scans a system to determine the services that need to be restarted after applying shared library updates in a manner that avoids a complete system reboot
Jenkins	0.6	1					1	Jenkins is an open source automation server. It helps automate the parts of software development related to building, testing, and deploying, facilitating continuous integration, and continuous delivery.
LiteSpeed Cache WordPress plugin	0.6			1			1	WordPress plugin
MOVEit Transfer	0.6	1					1	Progress MOVEit is a secure Managed File Transfer (MFT) software. MOVEit enables organizations to meet compliance standards, easily ensure the reliability of core business processes, and secure the transfer of sensitive data between partners, customers, users and systems.
Microsoft Outlook	0.6	1	2				3	Microsoft Outlook is a personal information manager software system from Microsoft, available as a part of the Microsoft 365 software suites
PaperCut NG	0.6	1					1	PaperCut NG is a comprehensive print management system designed to seamlessly monitor and control your resources with easy to use administrative and user tools that can be securely accessed from anywhere on the network though a web browser
Roundcube	0.6	1					1	Roundcube is a web-based IMAP email client
SugarCRM	0.6	1					1	SugarCRM is a comprehensive Customer Relationship Management (CRM) platform designed to connect your sales, marketing, and service teams
The Events Calendar plugin for WordPress	0.6		1				1	The Events Calendar is a plugin for creating an events listing website
Acronis Cyber Infrastructure	0.5	1					1	A hyperconverged solution providing storage, compute, and network resources for businesses and service provider
Barracuda Email Security Gateway	0.5	1					1	The Barracuda Email Security Gateway is an email security gateway that manages and filters all inbound and outbound email traffic to protect organizations from email-borne threats and data leaks
Check Point Security Gateway	0.5	1					1	The Check Point Security Gateway is a core component of Check Point’s cybersecurity architecture, designed to protect networks and data by providing a range of security functions
Fluent Bit	0.5			1			1	Fluent Bit is a fast, lightweight, and scalable telemetry data agent and processor for logs, metrics, and traces
FortiClientEMS	0.5	1					1	FortiClient EMS provides efficient and effective administration of endpoints running FortiClient (a Fabric Agent that delivers protection, compliance, and secure access in a single, modular lightweight client)
FortiManager	0.5	1					1	FortiManager provides centralised policy-based provisioning, device configuration, and update management for FortiGate, FortiWiFi, and FortiMail appliances
FortiOS	0.5	1	1				2	FortiOS is Fortinet's operating system used in their hardware, such as the Fortigate firewall and switches
Internet Shortcut Files	0.5	1					1	Internet Shortcut Files
Microsoft Streaming Service	0.5			1			1	Microsoft Streaming Service
NTLM Hash Disclosure	0.5		1				1	NTLM Hash Disclosure
PAN-OS	0.5	3					3	PAN-OS is the software that runs all Palo Alto Networks next-generation firewalls
Proxy Driver	0.5			1			1	Proxy Driver
SmartScreen Prompt	0.5	1					1	SmartScreen Prompt
Veeam Backup & Replication	0.5	1		1			2	Veeam Backup & Replication is a proprietary backup app developed by Veeam for virtual environments built on VMware vSphere, Nutanix AHV, and Microsoft Hyper-V hypervisors
Artifex Ghostscript	0.3		1				1	Artifex Ghostscript is an interpreter for the PostScript® language and PDF files

Vulnerability Type	Criticality	U	C	H	M	L	A
Remote Code Execution	1.0	12	6	3			21
Authentication Bypass	0.98	7		1			8
Code Injection	0.97	1	1				2
Command Injection	0.97	2					2
Security Feature Bypass	0.9	5	2				7
Elevation of Privilege	0.85	9	5	5			19
Information Disclosure	0.83	1	1				2
Cross Site Scripting	0.8	1					1
Path Traversal	0.7			1			1
Memory Corruption	0.5		1				1
Spoofing	0.4		5	1			6

Urgent (38)

1. Authentication Bypass - GitLab (CVE-2023-7028) - Urgent [979]

Description: {'ms_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, 16.2 prior to 16.2.9, 16.3 prior to 16.3.7, 16.4 prior to 16.4.5, 16.5 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which user account password reset emails could be delivered to an unverified email address.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

2. Remote Code Execution - PHP (CVE-2024-4577) - Urgent [966]

Description: In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use "Best-Fit" behavior to replace characters in command line given to Win32 API functions. PHP CGI module may misinterpret those characters as PHP options, which may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.

3. Remote Code Execution - Atlassian Confluence (CVE-2023-22527) - Urgent [950]

Description: A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server are not affected by this vulnerability as it was ultimately mitigated during regular version updates. However, Atlassian recommends that customers take care to install the latest version to protect their instances from non-critical vulnerabilities outlined in Atlassian’s January Security Bulletin.

4. Authentication Bypass - TeamCity (CVE-2024-27198) - Urgent [946]

Description: In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible

5. Remote Code Execution - PaperCut NG (CVE-2023-27350) - Urgent [933]

Description: This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-18987.

6. Command Injection - Ivanti Connect Secure (CVE-2024-21887) - Urgent [932]

Description: A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.

7. Authentication Bypass - Jenkins (CVE-2024-23897) - Urgent [929]

Description: {'ms_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

8. Code Injection - MOVEit Transfer (CVE-2023-34362) - Urgent [927]

Description: {'ms_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1), a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database, and execute SQL statements that alter or delete database elements. NOTE: this is exploited in the wild in May and June 2023; exploitation of unpatched systems can occur via HTTP or HTTPS. All versions (e.g., 2020.0 and 2019x) before the five explicitly mentioned versions are affected, including older unsupported versions.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

9. Authentication Bypass - Ivanti Connect Secure (CVE-2023-46805) - Urgent [922]

Description: An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.

10. Authentication Bypass - Ivanti Connect Secure (CVE-2024-21893) - Urgent [922]

Description: A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attacker to access certain restricted resources without authentication.

11. Remote Code Execution - Windows MSHTML Platform (CVE-2023-35628) - Urgent [919]

Description: Windows MSHTML Platform Remote Code Execution Vulnerability

12. Remote Code Execution - FortiClientEMS (CVE-2023-48788) - Urgent [916]

Description: A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets.

13. Remote Code Execution - FortiManager (CVE-2024-47575) - Urgent [916]

Description: A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through 7.4.4, FortiManager 7.2.0 through 7.2.7, FortiManager 7.0.0 through 7.0.12, FortiManager 6.4.0 through 6.4.14, FortiManager 6.2.0 through 6.2.12, Fortinet FortiManager Cloud 7.4.1 through 7.4.4, FortiManager Cloud 7.2.1 through 7.2.7, FortiManager Cloud 7.0.1 through 7.0.12, FortiManager Cloud 6.4.1 through 6.4.7 allows attacker to execute arbitrary code or commands via specially crafted requests.

14. Remote Code Execution - PAN-OS (CVE-2024-3400) - Urgent [916]

Description: A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.

15. Remote Code Execution - Veeam Backup & Replication (CVE-2024-40711) - Urgent [916]

Description: A deserialization of untrusted data vulnerability in Veeam Backup & Replication can allow an unauthenticated remote code execution (RCE).

16. Remote Code Execution - VMware vCenter (CVE-2024-38812) - Urgent [914]

Description: The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution.

17. Authentication Bypass - Acronis Cyber Infrastructure (CVE-2023-45249) - Urgent [913]

Description: {'ms_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Remote command execution due to use of default passwords. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.0.1-61, Acronis Cyber Infrastructure (ACI) before build 5.1.1-71, Acronis Cyber Infrastructure (ACI) before build 5.2.1-69, Acronis Cyber Infrastructure (ACI) before build 5.3.1-53, Acronis Cyber Infrastructure (ACI) before build 5.4.4-132.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

18. Authentication Bypass - PAN-OS (CVE-2024-0012) - Urgent [913]

Description: An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege escalation vulnerabilities like CVE-2024-9474 https://security.paloaltonetworks.com/CVE-2024-9474 . The risk of this issue is greatly reduced if you secure access to the management web interface by restricting access to only trusted internal IP addresses according to our recommended  best practice deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue is applicable only to PAN-OS 10.2, PAN-OS 11.0, PAN-OS 11.1, and PAN-OS 11.2 software. Cloud NGFW and Prisma Access are not impacted by this vulnerability.

19. Elevation of Privilege - Windows Task Scheduler (CVE-2024-49039) - Urgent [904]

Description: Windows Task Scheduler Elevation of Privilege Vulnerability

20. Remote Code Execution - FortiOS (CVE-2024-21762) - Urgent [904]

Description: A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to execute unauthorized code or commands via specifically crafted requests

21. Security Feature Bypass - SugarCRM (CVE-2023-22952) - Urgent [903]

Description: {'ms_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the EmailTemplates because of missing input validation.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

22. Command Injection - Barracuda Email Security Gateway (CVE-2023-2868) - Urgent [899]

Description: A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.

23. Elevation of Privilege - nftables (CVE-2024-1086) - Urgent [897]

Description: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT. We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.

24. Information Disclosure - Check Point Security Gateway (CVE-2024-24919) - Urgent [874]

Description: {'ms_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

25. Elevation of Privilege - Windows Kernel (CVE-2024-30088) - Urgent [861]

Description: Windows Kernel Elevation of Privilege Vulnerability

26. Elevation of Privilege - PAN-OS (CVE-2024-9474) - Urgent [854]

Description: A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges. Cloud NGFW and Prisma Access are not impacted by this vulnerability.

27. Security Feature Bypass - Internet Shortcut Files (CVE-2024-21412) - Urgent [851]

Description: Internet Shortcut Files Security Feature Bypass Vulnerability

28. Security Feature Bypass - SmartScreen Prompt (CVE-2024-29988) - Urgent [851]

Description: SmartScreen Prompt Security Feature Bypass Vulnerability

29. Elevation of Privilege - Windows Kernel (CVE-2024-21338) - Urgent [849]

Description: Windows Kernel Elevation of Privilege Vulnerability

30. Elevation of Privilege - Windows DWM Core Library (CVE-2024-30051) - Urgent [844]

Description: Windows DWM Core Library Elevation of Privilege Vulnerability

31. Elevation of Privilege - Windows Installer (CVE-2024-38014) - Urgent [844]

Description: Windows Installer Elevation of Privilege Vulnerability

32. Cross Site Scripting - Roundcube (CVE-2024-37383) - Urgent [838]

Description: Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes.

33. Elevation of Privilege - Microsoft Exchange (CVE-2024-21410) - Urgent [838]

Description: Microsoft Exchange Server Elevation of Privilege Vulnerability

34. Remote Code Execution - Microsoft Outlook (CVE-2024-21378) - Urgent [838]

Description: Microsoft Outlook Remote Code Execution Vulnerability

35. Remote Code Execution - VMware vCenter (CVE-2023-34048) - Urgent [836]

Description: vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bounds write potentially leading to remote code execution.

36. Elevation of Privilege - Windows Ancillary Function Driver for WinSock (CVE-2024-38193) - Urgent [820]

Description: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

37. Security Feature Bypass - Windows MSHTML Platform (CVE-2024-30040) - Urgent [811]

Description: Windows MSHTML Platform Security Feature Bypass Vulnerability

38. Security Feature Bypass - Windows SmartScreen (CVE-2024-21351) - Urgent [811]

Description: Windows SmartScreen Security Feature Bypass Vulnerability

Critical (21)

39. Security Feature Bypass - Windows Mark of the Web (CVE-2024-38213) - Critical [764]

Description: Windows Mark of the Web Security Feature Bypass Vulnerability

40. Security Feature Bypass - Windows Mark of the Web (CVE-2024-38217) - Critical [740]

Description: Windows Mark of the Web Security Feature Bypass Vulnerability

41. Spoofing - Windows MSHTML Platform (CVE-2024-38112) - Critical [734]

Description: Windows MSHTML Platform Spoofing Vulnerability

42. Spoofing - Windows MSHTML Platform (CVE-2024-43461) - Critical [734]

Description: Windows MSHTML Platform Spoofing Vulnerability

43. Remote Code Execution - Juniper JunOS (CVE-2024-21591) - Critical [728]

Description: An Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS), or Remote Code Execution (RCE) and obtain root privileges on the device. This issue is caused by use of an insecure function allowing an attacker to overwrite arbitrary memory. This issue affects Juniper Networks Junos OS SRX Series and EX Series: * Junos OS versions earlier than 20.4R3-S9; * Junos OS 21.2 versions earlier than 21.2R3-S7; * Junos OS 21.3 versions earlier than 21.3R3-S5; * Junos OS 21.4 versions earlier than 21.4R3-S5; * Junos OS 22.1 versions earlier than 22.1R3-S4; * Junos OS 22.2 versions earlier than 22.2R3-S3; * Junos OS 22.3 versions earlier than 22.3R3-S2; * Junos OS 22.4 versions earlier than 22.4R2-S2, 22.4R3.

44. Remote Code Execution - Atlassian Confluence (CVE-2024-21683) - Critical [723]

Description: This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 7.2, allows an authenticated attacker to execute arbitrary code which has high impact to confidentiality, high impact to integrity, high impact to availability, and requires no user interaction.  Atlassian recommends that Confluence Data Center and Server customers upgrade to latest version. If you are unable to do so, upgrade your instance to one of the specified supported fixed versions. See the release notes https://confluence.atlassian.com/doc/confluence-release-notes-327.html You can download the latest version of Confluence Data Center and Server from the download center https://www.atlassian.com/software/confluence/download-archives. This vulnerability was found internally.

45. Memory Corruption - Artifex Ghostscript (CVE-2024-29510) - Critical [722]

Description: Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device.

46. Elevation of Privilege - Windows Error Reporting Service (CVE-2024-26169) - Critical [719]

Description: Windows Error Reporting Service Elevation of Privilege Vulnerability

47. Elevation of Privilege - Windows Print Spooler (CVE-2022-38028) - Critical [719]

Description: Windows Print Spooler Elevation of Privilege Vulnerability

48. Elevation of Privilege - Windows Kernel (CVE-2024-38106) - Critical [712]

Description: Windows Kernel Elevation of Privilege Vulnerability

49. Elevation of Privilege - Windows Power Dependency Coordinator (CVE-2024-38107) - Critical [707]

Description: Windows Power Dependency Coordinator Elevation of Privilege Vulnerability

50. Spoofing - Windows MSHTML Platform (CVE-2024-43573) - Critical [698]

Description: Windows MSHTML Platform Spoofing Vulnerability

51. Remote Code Execution - Windows Remote Desktop Licensing Service (CVE-2024-38077) - Critical [680]

Description: Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability

52. Elevation of Privilege - Windows Common Log File System Driver (CVE-2023-36424) - Critical [677]

Description: Windows Common Log File System Driver Elevation of Privilege Vulnerability

53. Remote Code Execution - XWiki Platform (CVE-2024-31982) - Critical [652]

Description: XWiki Platform is a generic wiki platform. Starting in version 2.4-milestone-1 and prior to versions 4.10.20, 15.5.4, and 15.10-rc-1, XWiki's database search allows remote code execution through the search text. This allows remote code execution for any visitor of a public wiki or user of a closed wiki as the database search is by default accessible for all users. This impacts the confidentiality, integrity and availability of the whole XWiki installation. This vulnerability has been patched in XWiki 14.10.20, 15.5.4 and 15.10RC1. As a workaround, one may manually apply the patch to the page `Main.DatabaseSearch`. Alternatively, unless database search is explicitly used by users, this page can be deleted as this is not the default search interface of XWiki.

54. Spoofing - NTLM Hash Disclosure (CVE-2024-43451) - Critical [648]

Description: NTLM Hash Disclosure Spoofing Vulnerability

55. Remote Code Execution - Microsoft Outlook (CVE-2024-21413) - Critical [647]

Description: Microsoft Outlook Remote Code Execution Vulnerability

56. Spoofing - Microsoft Exchange (CVE-2024-49040) - Critical [642]

Description: Microsoft Exchange Server Spoofing Vulnerability

57. Code Injection - The Events Calendar plugin for WordPress (CVE-2024-8275) - Critical [630]

Description: The The Events Calendar plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the 'tribe_has_next_event' function in all versions up to, and including, 6.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. Only sites that have manually added tribe_has_next_event() will be vulnerable to this SQL injection.

58. Remote Code Execution - FortiOS (CVE-2023-42789) - Critical [630]

Description: A out-of-bounds write in Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, FortiProxy 7.4.0, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 2.0.0 through 2.0.13 allows attacker to execute unauthorized code or commands via specially crafted HTTP requests.

59. Information Disclosure - Microsoft Outlook (CVE-2023-35636) - Critical [629]

Description: Microsoft Outlook Information Disclosure Vulnerability

High (11)

60. Remote Code Execution - Fluent Bit (CVE-2024-4323) - High [595]

Description: A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the embedded http server’s parsing of trace requests and may result in denial of service conditions, information disclosure, or remote code execution.

61. Elevation of Privilege - Windows CSC Service (CVE-2024-26229) - High [594]

Description: Windows CSC Service Elevation of Privilege Vulnerability

62. Elevation of Privilege - Windows Kernel-Mode Driver (CVE-2024-35250) - High [594]

Description: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

63. Authentication Bypass - Veeam Backup & Replication (CVE-2024-29849) - High [591]

Description: {'ms_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise manager web interface.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

64. Elevation of Privilege - needrestart (CVE-2024-48990) - High [589]

Description: Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlled PYTHONPATH environment variable.

65. Elevation of Privilege - LiteSpeed Cache WordPress plugin (CVE-2024-28000) - High [585]

Description: Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from 1.9 through 6.3.0.1.

66. Spoofing - Proxy Driver (CVE-2024-26234) - High [565]

Description: Proxy Driver Spoofing Vulnerability

67. Path Traversal - Zyxel firewall (CVE-2024-11667) - High [563]

Description: A directory traversal vulnerability in the web management interface of Zyxel firewall firmware could allow an attacker to download or upload files via a crafted URL.

68. Elevation of Privilege - Microsoft Streaming Service (CVE-2024-30090) - High [532]

Description: Microsoft Streaming Service Elevation of Privilege Vulnerability

69. Remote Code Execution - VMware vCenter (CVE-2024-37079) - High [461]

Description: vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution.

70. Remote Code Execution - VMware vCenter (CVE-2024-37080) - High [461]

Description: vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution.

Medium (0)

Low (0)

Exploitation in the wild detected (52)

Authentication Bypass (7)

• GitLab (CVE-2023-7028)
• TeamCity (CVE-2024-27198)
• Jenkins (CVE-2024-23897)
• Ivanti Connect Secure (CVE-2023-46805, CVE-2024-21893)
• Acronis Cyber Infrastructure (CVE-2023-45249)
• PAN-OS (CVE-2024-0012)

Remote Code Execution (12)

• PHP (CVE-2024-4577)
• Atlassian Confluence (CVE-2023-22527)
• PaperCut NG (CVE-2023-27350)
• Windows MSHTML Platform (CVE-2023-35628)
• FortiClientEMS (CVE-2023-48788)
• FortiManager (CVE-2024-47575)
• PAN-OS (CVE-2024-3400)
• Veeam Backup & Replication (CVE-2024-40711)
• VMware vCenter (CVE-2023-34048, CVE-2024-38812)
• FortiOS (CVE-2024-21762)
• Microsoft Outlook (CVE-2024-21378)

Command Injection (2)

• Ivanti Connect Secure (CVE-2024-21887)
• Barracuda Email Security Gateway (CVE-2023-2868)

Code Injection (1)

• MOVEit Transfer (CVE-2023-34362)

Elevation of Privilege (13)

• Windows Task Scheduler (CVE-2024-49039)
• nftables (CVE-2024-1086)
• Windows Kernel (CVE-2024-21338, CVE-2024-30088, CVE-2024-38106)
• PAN-OS (CVE-2024-9474)
• Windows DWM Core Library (CVE-2024-30051)
• Windows Installer (CVE-2024-38014)
• Microsoft Exchange (CVE-2024-21410)
• Windows Ancillary Function Driver for WinSock (CVE-2024-38193)
• Windows Error Reporting Service (CVE-2024-26169)
• Windows Print Spooler (CVE-2022-38028)
• Windows Power Dependency Coordinator (CVE-2024-38107)

Security Feature Bypass (7)

• SugarCRM (CVE-2023-22952)
• Internet Shortcut Files (CVE-2024-21412)
• SmartScreen Prompt (CVE-2024-29988)
• Windows MSHTML Platform (CVE-2024-30040)
• Windows SmartScreen (CVE-2024-21351)
• Windows Mark of the Web (CVE-2024-38213, CVE-2024-38217)

Information Disclosure (1)

• Check Point Security Gateway (CVE-2024-24919)

Cross Site Scripting (1)

• Roundcube (CVE-2024-37383)

Spoofing (6)

• Windows MSHTML Platform (CVE-2024-38112, CVE-2024-43461, CVE-2024-43573)
• NTLM Hash Disclosure (CVE-2024-43451)
• Microsoft Exchange (CVE-2024-49040)
• Proxy Driver (CVE-2024-26234)

Memory Corruption (1)

• Artifex Ghostscript (CVE-2024-29510)

Path Traversal (1)

• Zyxel firewall (CVE-2024-11667)

Public exploit exists, but exploitation in the wild is NOT detected (16)

Remote Code Execution (7)

• Juniper JunOS (CVE-2024-21591)
• Atlassian Confluence (CVE-2024-21683)
• Windows Remote Desktop Licensing Service (CVE-2024-38077)
• XWiki Platform (CVE-2024-31982)
• Microsoft Outlook (CVE-2024-21413)
• FortiOS (CVE-2023-42789)
• Fluent Bit (CVE-2024-4323)

Elevation of Privilege (6)

• Windows Common Log File System Driver (CVE-2023-36424)
• Windows CSC Service (CVE-2024-26229)
• Windows Kernel-Mode Driver (CVE-2024-35250)
• needrestart (CVE-2024-48990)
• LiteSpeed Cache WordPress plugin (CVE-2024-28000)
• Microsoft Streaming Service (CVE-2024-30090)

Code Injection (1)

• The Events Calendar plugin for WordPress (CVE-2024-8275)

Information Disclosure (1)

• Microsoft Outlook (CVE-2023-35636)

Authentication Bypass (1)

• Veeam Backup & Replication (CVE-2024-29849)

Other Vulnerabilities (2)

Remote Code Execution (2)

• VMware vCenter (CVE-2024-37079, CVE-2024-37080)