Report Name: pt_trend_cve_combined2024 report
Generated: 2025-01-17 00:24:54

Product Name	Prevalence	U	C	H	M	L	A	Comment
GitLab	0.9	1					1	GitLab is a DevOps software package that combines the ability to develop, secure, and operate software in a single application
Windows Kernel	0.9	2	1				3	Windows Kernel
Windows NTLM	0.9		1				1	A suite of security protocols to authenticate users' identity and protect the integrity and confidentiality of their activity
nftables	0.9	1					1	nftables is a subsystem of the Linux kernel providing filtering and classification of network packets/datagrams/frames
Juniper JunOS	0.8		1				1	Junos OS is a FreeBSD-based network operating system used in Juniper Networks routing, switching and security devices
Microsoft Exchange	0.8	1	1				2	Microsoft Exchange Server is a mail server and calendaring server developed by Microsoft
PHP	0.8	1					1	PHP is a general-purpose scripting language geared towards web development. It was originally created by Danish-Canadian programmer Rasmus Lerdorf in 1993 and released in 1995.
Windows Ancillary Function Driver for WinSock	0.8	1					1	Windows component
Windows CSC Service	0.8		1				1	Windows component
Windows Common Log File System Driver	0.8	1	1				2	Common Log File System is a general-purpose logging subsystem that is accessible to both kernel-mode as well as user-mode applications for building high-performance transaction logs
Windows DWM Core Library	0.8	1					1	Windows component
Windows Error Reporting Service	0.8		1				1	Windows component
Windows Installer	0.8	1					1	Windows component
Windows Kernel-Mode Driver	0.8	1					1	Windows component
Windows MSHTML Platform	0.8	2	3				5	Windows component
Windows Mark of the Web	0.8		2				2	Windows component
Windows Power Dependency Coordinator	0.8		1				1	Windows component
Windows Print Spooler	0.8	1					1	Windows component
Windows Remote Desktop Licensing Service	0.8		1				1	Windows component
Windows SmartScreen	0.8	1					1	SmartScreen is a cloud-based anti-phishing and anti-malware component included in several Microsoft products, including operating systems Windows 8 and later, the applications Internet Explorer, Microsoft Edge
Windows Task Scheduler	0.8	1					1	Windows component
Apache Struts	0.7		1				1	Apache Struts is a free, open-source, MVC framework for creating elegant, modern Java web applications. It favors convention over configuration, is extensible using a plugin architecture, and ships with plugins to support REST, AJAX and JSON
Atlassian Confluence	0.7	1		1			2	Confluence is a web-based corporate wiki
Ivanti Connect Secure	0.7	3					3	Ivanti Connect Secure (Pulse Connect Secure) provides a seamless, cost-effective, SSL VPN solution for remote and mobile users from any web- enabled device to corporate resources
TeamCity	0.7	1					1	TeamCity is a build management and continuous integration server from JetBrains
VMware vCenter	0.7	2		2			4	VMware vCenter Server is an advanced server management software that provides a centralized platform for controlling vSphere environments for visibility across hybrid clouds
XWiki Platform	0.7		1				1	XWiki offers a generic platform for developing projects and collaborative applications using the wiki paradigm
Zyxel firewall	0.7		1				1	Firewalls manufactured by Zyxel
needrestart	0.7		1				1	Needrestart is a utility that scans a system to determine the services that need to be restarted after applying shared library updates in a manner that avoids a complete system reboot
Hunk Companion WordPress plugin	0.6	1					1	Hunk Companion is a WordPress plugin designed to complement and enhance the functionality of themes developed by ThemeHunk, a provider of customizable WordPress themes
Jenkins	0.6	1					1	Jenkins is an open source automation server. It helps automate the parts of software development related to building, testing, and deploying, facilitating continuous integration, and continuous delivery.
LiteSpeed Cache WordPress plugin	0.6			1			1	WordPress plugin
MOVEit Transfer	0.6	1					1	Progress MOVEit is a secure Managed File Transfer (MFT) software. MOVEit enables organizations to meet compliance standards, easily ensure the reliability of core business processes, and secure the transfer of sensitive data between partners, customers, users and systems.
Microsoft Outlook	0.6	1	2				3	Microsoft Outlook is a personal information manager software system from Microsoft, available as a part of the Microsoft 365 software suites
PaperCut NG	0.6	1					1	PaperCut NG is a comprehensive print management system designed to seamlessly monitor and control your resources with easy to use administrative and user tools that can be securely accessed from anywhere on the network though a web browser
Roundcube	0.6	1					1	Roundcube is a web-based IMAP email client
SugarCRM	0.6	1					1	SugarCRM is a comprehensive Customer Relationship Management (CRM) platform designed to connect your sales, marketing, and service teams
The Events Calendar plugin for WordPress	0.6		1				1	The Events Calendar is a plugin for creating an events listing website
Acronis Cyber Infrastructure	0.5	1					1	A hyperconverged solution providing storage, compute, and network resources for businesses and service provider
Barracuda Email Security Gateway	0.5	1					1	The Barracuda Email Security Gateway is an email security gateway that manages and filters all inbound and outbound email traffic to protect organizations from email-borne threats and data leaks
Fluent Bit	0.5			1			1	Fluent Bit is a fast, lightweight, and scalable telemetry data agent and processor for logs, metrics, and traces
FortiClientEMS	0.5	1					1	FortiClient EMS provides efficient and effective administration of endpoints running FortiClient (a Fabric Agent that delivers protection, compliance, and secure access in a single, modular lightweight client)
FortiManager	0.5	1					1	FortiManager provides centralised policy-based provisioning, device configuration, and update management for FortiGate, FortiWiFi, and FortiMail appliances
FortiOS	0.5	1	1				2	FortiOS is Fortinet's operating system used in their hardware, such as the Fortigate firewall and switches
Internet Shortcut Files	0.5	1					1	Internet Shortcut Files
Kernel Streaming WOW Thunk Service Driver	0.5			1			1	Kernel Streaming WOW Thunk Service Driver
Microsoft Streaming Service	0.5			1			1	Microsoft Streaming Service
PAN-OS	0.5	3					3	PAN-OS is the software that runs all Palo Alto Networks next-generation firewalls
Proxy Driver	0.5			1			1	Proxy Driver
SmartScreen Prompt	0.5	1					1	SmartScreen Prompt
Veeam Backup & Replication	0.5	1		1			2	Veeam Backup & Replication is a proprietary backup app developed by Veeam for virtual environments built on VMware vSphere, Nutanix AHV, and Microsoft Hyper-V hypervisors
cloudguard_network_security	0.5	1					1	Product detected by a:checkpoint:cloudguard_network_security (does NOT exist in CPE dict)
Artifex Ghostscript	0.3		1				1	Artifex Ghostscript is an interpreter for the PostScript® language and PDF files

Vulnerability Type	Criticality	U	C	H	M	L	A
Remote Code Execution	1.0	12	6	4			22
Authentication Bypass	0.98	8		1			9
Code Injection	0.97	1	1				2
Command Injection	0.97	2					2
Security Feature Bypass	0.9	5	3				8
Elevation of Privilege	0.85	12	6	3			21
Information Disclosure	0.83	1	1				2
Cross Site Scripting	0.8	1					1
Path Traversal	0.7		1				1
Spoofing	0.4		5	1			6

Urgent (42)

1. Authentication Bypass - GitLab (CVE-2023-7028) - Urgent [979]

Description: An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, 16.2 prior to 16.2.9, 16.3 prior to 16.3.7, 16.4 prior to 16.4.5, 16.5 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which user account password reset emails could be delivered to an unverified email address.

2. Remote Code Execution - PHP (CVE-2024-4577) - Urgent [966]

Description: In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use "Best-Fit" behavior to replace characters in command line given to Win32 API functions. PHP CGI module may misinterpret those characters as PHP options, which may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.

3. Remote Code Execution - Atlassian Confluence (CVE-2023-22527) - Urgent [950]

Description: A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated attacker to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence Data Center and Server are not affected by this vulnerability as it was ultimately mitigated during regular version updates. However, Atlassian recommends that customers take care to install the latest version to protect their instances from non-critical vulnerabilities outlined in Atlassian’s January Security Bulletin.

4. Remote Code Execution - VMware vCenter (CVE-2023-34048) - Urgent [950]

Description: vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bounds write potentially leading to remote code execution.

5. Authentication Bypass - TeamCity (CVE-2024-27198) - Urgent [946]

Description: In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible

6. Remote Code Execution - PaperCut NG (CVE-2023-27350) - Urgent [933]

Description: This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-18987.

7. Command Injection - Ivanti Connect Secure (CVE-2024-21887) - Urgent [932]

Description: A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.

8. Authentication Bypass - Jenkins (CVE-2024-23897) - Urgent [929]

Description: {'nvd_cve_data_all': 'Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.', 'bdu_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}

9. Code Injection - MOVEit Transfer (CVE-2023-34362) - Urgent [927]

Description: In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1), a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database, and execute SQL statements that alter or delete database elements. NOTE: this is exploited in the wild in May and June 2023; exploitation of unpatched systems can occur via HTTP or HTTPS. All versions (e.g., 2020.0 and 2019x) before the five explicitly mentioned versions are affected, including older unsupported versions.

10. Authentication Bypass - Ivanti Connect Secure (CVE-2023-46805) - Urgent [922]

Description: An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.

11. Authentication Bypass - Ivanti Connect Secure (CVE-2024-21893) - Urgent [922]

Description: A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attacker to access certain restricted resources without authentication.

12. Remote Code Execution - FortiClientEMS (CVE-2023-48788) - Urgent [916]

Description: A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets.

13. Remote Code Execution - FortiManager (CVE-2024-47575) - Urgent [916]

Description: A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through 7.4.4, FortiManager 7.2.0 through 7.2.7, FortiManager 7.0.0 through 7.0.12, FortiManager 6.4.0 through 6.4.14, FortiManager 6.2.0 through 6.2.12, Fortinet FortiManager Cloud 7.4.1 through 7.4.4, FortiManager Cloud 7.2.1 through 7.2.7, FortiManager Cloud 7.0.1 through 7.0.12, FortiManager Cloud 6.4.1 through 6.4.7 allows attacker to execute arbitrary code or commands via specially crafted requests.

14. Remote Code Execution - PAN-OS (CVE-2024-3400) - Urgent [916]

Description: A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. Cloud NGFW, Panorama appliances, and Prisma Access are not impacted by this vulnerability.

15. Remote Code Execution - Veeam Backup & Replication (CVE-2024-40711) - Urgent [916]

Description: A deserialization of untrusted data vulnerability in Veeam Backup & Replication can allow an unauthenticated remote code execution (RCE).

16. Remote Code Execution - VMware vCenter (CVE-2024-38812) - Urgent [914]

Description: The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution.

17. Authentication Bypass - Acronis Cyber Infrastructure (CVE-2023-45249) - Urgent [913]

Description: Remote command execution due to use of default passwords. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.0.1-61, Acronis Cyber Infrastructure (ACI) before build 5.1.1-71, Acronis Cyber Infrastructure (ACI) before build 5.2.1-69, Acronis Cyber Infrastructure (ACI) before build 5.3.1-53, Acronis Cyber Infrastructure (ACI) before build 5.4.4-132.

18. Authentication Bypass - PAN-OS (CVE-2024-0012) - Urgent [913]

Description: An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to gain PAN-OS administrator privileges to perform administrative actions, tamper with the configuration, or exploit other authenticated privilege escalation vulnerabilities like CVE-2024-9474 https://security.paloaltonetworks.com/CVE-2024-9474 . The risk of this issue is greatly reduced if you secure access to the management web interface by restricting access to only trusted internal IP addresses according to our recommended  best practice deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue is applicable only to PAN-OS 10.2, PAN-OS 11.0, PAN-OS 11.1, and PAN-OS 11.2 software. Cloud NGFW and Prisma Access are not impacted by this vulnerability.

19. Elevation of Privilege - Windows Task Scheduler (CVE-2024-49039) - Urgent [904]

Description: Windows Task Scheduler Elevation of Privilege Vulnerability

20. Remote Code Execution - FortiOS (CVE-2024-21762) - Urgent [904]

Description: A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to execute unauthorized code or commands via specifically crafted requests

21. Security Feature Bypass - SugarCRM (CVE-2023-22952) - Urgent [903]

Description: In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the EmailTemplates because of missing input validation.

22. Command Injection - Barracuda Email Security Gateway (CVE-2023-2868) - Urgent [899]

Description: A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.

23. Elevation of Privilege - Windows Kernel (CVE-2024-30088) - Urgent [897]

Description: Windows Kernel Elevation of Privilege Vulnerability

24. Elevation of Privilege - nftables (CVE-2024-1086) - Urgent [897]

Description: A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT. We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.

25. Remote Code Execution - Windows MSHTML Platform (CVE-2023-35628) - Urgent [895]

Description: Windows MSHTML Platform Remote Code Execution Vulnerability

26. Elevation of Privilege - Windows Installer (CVE-2024-38014) - Urgent [892]

Description: Windows Installer Elevation of Privilege Vulnerability

27. Elevation of Privilege - Windows Kernel (CVE-2024-21338) - Urgent [885]

Description: Windows Kernel Elevation of Privilege Vulnerability

28. Elevation of Privilege - Windows DWM Core Library (CVE-2024-30051) - Urgent [880]

Description: Windows DWM Core Library Elevation of Privilege Vulnerability

29. Security Feature Bypass - SmartScreen Prompt (CVE-2024-29988) - Urgent [875]

Description: SmartScreen Prompt Security Feature Bypass Vulnerability

30. Information Disclosure - cloudguard_network_security (CVE-2024-24919) - Urgent [874]

Description: Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.

31. Security Feature Bypass - Internet Shortcut Files (CVE-2024-21412) - Urgent [863]

Description: Internet Shortcut Files Security Feature Bypass Vulnerability

32. Elevation of Privilege - Windows Kernel-Mode Driver (CVE-2024-35250) - Urgent [856]

Description: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

33. Elevation of Privilege - PAN-OS (CVE-2024-9474) - Urgent [854]

Description: A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS administrator with access to the management web interface to perform actions on the firewall with root privileges. Cloud NGFW and Prisma Access are not impacted by this vulnerability.

34. Cross Site Scripting - Roundcube (CVE-2024-37383) - Urgent [838]

Description: Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes.

35. Remote Code Execution - Microsoft Outlook (CVE-2024-21378) - Urgent [838]

Description: Microsoft Outlook Remote Code Execution Vulnerability

36. Elevation of Privilege - Windows Common Log File System Driver (CVE-2024-49138) - Urgent [832]

Description: Windows Common Log File System Driver Elevation of Privilege Vulnerability

37. Elevation of Privilege - Microsoft Exchange (CVE-2024-21410) - Urgent [826]

Description: Microsoft Exchange Server Elevation of Privilege Vulnerability

38. Authentication Bypass - Hunk Companion WordPress plugin (CVE-2024-11972) - Urgent [822]

Description: The Hunk Companion WordPress plugin before 1.9.0 does not correctly authorize some REST API endpoints, allowing unauthenticated requests to install and activate arbitrary Hunk Companion WordPress plugin before 1.9.0 from the WordPress.org repo, including vulnerable Hunk Companion WordPress plugin before 1.9.0 that have been closed.

39. Security Feature Bypass - Windows MSHTML Platform (CVE-2024-30040) - Urgent [811]

Description: Windows MSHTML Platform Security Feature Bypass Vulnerability

40. Elevation of Privilege - Windows Ancillary Function Driver for WinSock (CVE-2024-38193) - Urgent [808]

Description: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

41. Elevation of Privilege - Windows Print Spooler (CVE-2022-38028) - Urgent [802]

Description: Windows Print Spooler Elevation of Privilege Vulnerability

42. Security Feature Bypass - Windows SmartScreen (CVE-2024-21351) - Urgent [800]

Description: Windows SmartScreen Security Feature Bypass Vulnerability

Critical (23)

43. Path Traversal - Zyxel firewall (CVE-2024-11667) - Critical [795]

Description: A directory traversal vulnerability in the web management interface of Zyxel firewall firmware could allow an attacker to download or upload files via a crafted URL.

44. Security Feature Bypass - Artifex Ghostscript (CVE-2024-29510) - Critical [794]

Description: Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device.

45. Elevation of Privilege - Windows Error Reporting Service (CVE-2024-26169) - Critical [791]

Description: Windows Error Reporting Service Elevation of Privilege Vulnerability

46. Security Feature Bypass - Windows Mark of the Web (CVE-2024-38213) - Critical [776]

Description: Windows Mark of the Web Security Feature Bypass Vulnerability

47. Security Feature Bypass - Windows Mark of the Web (CVE-2024-38217) - Critical [764]

Description: Windows Mark of the Web Security Feature Bypass Vulnerability

48. Spoofing - Windows MSHTML Platform (CVE-2024-43461) - Critical [734]

Description: Windows MSHTML Platform Spoofing Vulnerability

49. Remote Code Execution - Juniper JunOS (CVE-2024-21591) - Critical [728]

Description: An Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS), or Remote Code Execution (RCE) and obtain root privileges on the device. This issue is caused by use of an insecure function allowing an attacker to overwrite arbitrary memory. This issue affects Juniper Networks Junos OS SRX Series and EX Series: * Junos OS versions earlier than 20.4R3-S9; * Junos OS 21.2 versions earlier than 21.2R3-S7; * Junos OS 21.3 versions earlier than 21.3R3-S5; * Junos OS 21.4 versions earlier than 21.4R3-S5; * Junos OS 22.1 versions earlier than 22.1R3-S4; * Junos OS 22.2 versions earlier than 22.2R3-S3; * Junos OS 22.3 versions earlier than 22.3R3-S2; * Junos OS 22.4 versions earlier than 22.4R2-S2, 22.4R3.

50. Spoofing - Windows NTLM (CVE-2024-43451) - Critical [715]

Description: NTLM Hash Disclosure Spoofing Vulnerability

51. Elevation of Privilege - Windows Kernel (CVE-2024-38106) - Critical [712]

Description: Windows Kernel Elevation of Privilege Vulnerability

52. Spoofing - Windows MSHTML Platform (CVE-2024-38112) - Critical [710]

Description: Windows MSHTML Platform Spoofing Vulnerability

53. Spoofing - Windows MSHTML Platform (CVE-2024-43573) - Critical [710]

Description: Windows MSHTML Platform Spoofing Vulnerability

54. Elevation of Privilege - Windows Power Dependency Coordinator (CVE-2024-38107) - Critical [707]

Description: Windows Power Dependency Coordinator Elevation of Privilege Vulnerability

55. Remote Code Execution - Windows Remote Desktop Licensing Service (CVE-2024-38077) - Critical [657]

Description: Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability

56. Remote Code Execution - XWiki Platform (CVE-2024-31982) - Critical [652]

Description: XWiki Platform is a generic wiki platform. Starting in version 2.4-milestone-1 and prior to versions 4.10.20, 15.5.4, and 15.10-rc-1, XWiki's database search allows remote code execution through the search text. This allows remote code execution for any visitor of a public wiki or user of a closed wiki as the database search is by default accessible for all users. This impacts the confidentiality, integrity and availability of the whole XWiki installation. This vulnerability has been patched in XWiki 14.10.20, 15.5.4 and 15.10RC1. As a workaround, one may manually apply the patch to the page `Main.DatabaseSearch`. Alternatively, unless database search is explicitly used by users, this page can be deleted as this is not the default search interface of XWiki.

57. Spoofing - Microsoft Exchange (CVE-2024-49040) - Critical [651]

Description: Microsoft Exchange Server Spoofing Vulnerability

58. Elevation of Privilege - needrestart (CVE-2024-48990) - Critical [637]

Description: Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlled PYTHONPATH environment variable.

59. Remote Code Execution - Microsoft Outlook (CVE-2024-21413) - Critical [635]

Description: Microsoft Outlook Remote Code Execution Vulnerability

60. Code Injection - The Events Calendar plugin for WordPress (CVE-2024-8275) - Critical [630]

Description: The The Events Calendar plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the 'tribe_has_next_event' function in all versions up to, and including, 6.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. Only sites that have manually added tribe_has_next_event() will be vulnerable to this SQL injection.

61. Remote Code Execution - FortiOS (CVE-2023-42789) - Critical [630]

Description: A out-of-bounds write in Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, FortiProxy 7.4.0, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 2.0.0 through 2.0.13 allows attacker to execute unauthorized code or commands via specially crafted HTTP requests.

62. Information Disclosure - Microsoft Outlook (CVE-2023-35636) - Critical [629]

Description: Microsoft Outlook Information Disclosure Vulnerability

63. Elevation of Privilege - Windows Common Log File System Driver (CVE-2023-36424) - Critical [618]

Description: Windows Common Log File System Driver Elevation of Privilege Vulnerability

64. Remote Code Execution - Apache Struts (CVE-2024-53677) - Critical [616]

Description: File upload logic in Apache Struts is flawed. An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. This issue affects Apache Struts: from 2.0.0 before 6.4.0. Users are recommended to upgrade to version 6.4.0 at least and migrate to the new file upload mechanism https://struts.apache.org/core-developers/file-upload . If you are not using an old file upload logic based on FileuploadInterceptor your application is safe. You can find more details in  https://cwiki.apache.org/confluence/display/WW/S2-067

65. Elevation of Privilege - Windows CSC Service (CVE-2024-26229) - Critical [606]

Description: Windows CSC Service Elevation of Privilege Vulnerability

High (9)

66. Remote Code Execution - Fluent Bit (CVE-2024-4323) - High [595]

Description: A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the embedded http server’s parsing of trace requests and may result in denial of service conditions, information disclosure, or remote code execution.

67. Elevation of Privilege - Kernel Streaming WOW Thunk Service Driver (CVE-2024-38144) - High [592]

Description: Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

68. Authentication Bypass - Veeam Backup & Replication (CVE-2024-29849) - High [591]

Description: Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise manager web interface.

69. Elevation of Privilege - LiteSpeed Cache WordPress plugin (CVE-2024-28000) - High [585]

Description: Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from 1.9 through 6.3.0.1.

70. Spoofing - Proxy Driver (CVE-2024-26234) - High [577]

Description: Proxy Driver Spoofing Vulnerability

71. Remote Code Execution - Atlassian Confluence (CVE-2024-21683) - High [569]

Description: This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 7.2, allows an admin-authenticated attacker to execute arbitrary code which has high impact to confidentiality, high impact to integrity, high impact to availability, and requires no user interaction.

72. Elevation of Privilege - Microsoft Streaming Service (CVE-2024-30090) - High [544]

Description: Microsoft Streaming Service Elevation of Privilege Vulnerability

73. Remote Code Execution - VMware vCenter (CVE-2024-37079) - High [461]

Description: vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution.

74. Remote Code Execution - VMware vCenter (CVE-2024-37080) - High [461]

Description: vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution.

Medium (0)

Low (0)

Exploitation in the wild detected (55)

Authentication Bypass (8)

• GitLab (CVE-2023-7028)
• TeamCity (CVE-2024-27198)
• Jenkins (CVE-2024-23897)
• Ivanti Connect Secure (CVE-2023-46805, CVE-2024-21893)
• Acronis Cyber Infrastructure (CVE-2023-45249)
• PAN-OS (CVE-2024-0012)
• Hunk Companion WordPress plugin (CVE-2024-11972)

Remote Code Execution (12)

• PHP (CVE-2024-4577)
• Atlassian Confluence (CVE-2023-22527)
• VMware vCenter (CVE-2023-34048, CVE-2024-38812)
• PaperCut NG (CVE-2023-27350)
• FortiClientEMS (CVE-2023-48788)
• FortiManager (CVE-2024-47575)
• PAN-OS (CVE-2024-3400)
• Veeam Backup & Replication (CVE-2024-40711)
• FortiOS (CVE-2024-21762)
• Windows MSHTML Platform (CVE-2023-35628)
• Microsoft Outlook (CVE-2024-21378)

Command Injection (2)

• Ivanti Connect Secure (CVE-2024-21887)
• Barracuda Email Security Gateway (CVE-2023-2868)

Code Injection (1)

• MOVEit Transfer (CVE-2023-34362)

Elevation of Privilege (15)

• Windows Task Scheduler (CVE-2024-49039)
• Windows Kernel (CVE-2024-21338, CVE-2024-30088, CVE-2024-38106)
• nftables (CVE-2024-1086)
• Windows Installer (CVE-2024-38014)
• Windows DWM Core Library (CVE-2024-30051)
• Windows Kernel-Mode Driver (CVE-2024-35250)
• PAN-OS (CVE-2024-9474)
• Windows Common Log File System Driver (CVE-2024-49138)
• Microsoft Exchange (CVE-2024-21410)
• Windows Ancillary Function Driver for WinSock (CVE-2024-38193)
• Windows Print Spooler (CVE-2022-38028)
• Windows Error Reporting Service (CVE-2024-26169)
• Windows Power Dependency Coordinator (CVE-2024-38107)

Security Feature Bypass (8)

• SugarCRM (CVE-2023-22952)
• SmartScreen Prompt (CVE-2024-29988)
• Internet Shortcut Files (CVE-2024-21412)
• Windows MSHTML Platform (CVE-2024-30040)
• Windows SmartScreen (CVE-2024-21351)
• Artifex Ghostscript (CVE-2024-29510)
• Windows Mark of the Web (CVE-2024-38213, CVE-2024-38217)

Information Disclosure (1)

• cloudguard_network_security (CVE-2024-24919)

Cross Site Scripting (1)

• Roundcube (CVE-2024-37383)

Path Traversal (1)

• Zyxel firewall (CVE-2024-11667)

Spoofing (6)

• Windows MSHTML Platform (CVE-2024-38112, CVE-2024-43461, CVE-2024-43573)
• Windows NTLM (CVE-2024-43451)
• Microsoft Exchange (CVE-2024-49040)
• Proxy Driver (CVE-2024-26234)

Public exploit exists, but exploitation in the wild is NOT detected (17)

Remote Code Execution (8)

• Juniper JunOS (CVE-2024-21591)
• Windows Remote Desktop Licensing Service (CVE-2024-38077)
• XWiki Platform (CVE-2024-31982)
• Microsoft Outlook (CVE-2024-21413)
• FortiOS (CVE-2023-42789)
• Apache Struts (CVE-2024-53677)
• Fluent Bit (CVE-2024-4323)
• Atlassian Confluence (CVE-2024-21683)

Elevation of Privilege (6)

• needrestart (CVE-2024-48990)
• Windows Common Log File System Driver (CVE-2023-36424)
• Windows CSC Service (CVE-2024-26229)
• Kernel Streaming WOW Thunk Service Driver (CVE-2024-38144)
• LiteSpeed Cache WordPress plugin (CVE-2024-28000)
• Microsoft Streaming Service (CVE-2024-30090)

Code Injection (1)

• The Events Calendar plugin for WordPress (CVE-2024-8275)

Information Disclosure (1)

• Microsoft Outlook (CVE-2023-35636)

Authentication Bypass (1)

• Veeam Backup & Replication (CVE-2024-29849)

Other Vulnerabilities (2)

Remote Code Execution (2)

• VMware vCenter (CVE-2024-37079, CVE-2024-37080)