Lista CVE 2024/29xxx

CVE nel gruppo: 29xxx

CVE-2024-29000 (N/A)

CVE-2024-29001 (SolarWinds Platform Reflected XSS Vulnerability)

CVE-2024-29003 (SolarWinds Platform SWQL Injection Vulnerability )

CVE-2024-29004 (SolarWinds Platform Cross Site Scripting Vulnerability )

CVE-2024-29006 (SolarWinds Platform Stored XSS Vulnerability)

CVE-2024-29007 (Apache CloudStack: x-forwarded-for HTTP header parsed by default)

CVE-2024-29008 (Apache CloudStack: When downloading templates or ISOs, the management server and SSVM follow HTTP redirects with potentially dangerous consequences)

CVE-2024-29009 (Apache CloudStack: The extraconfig feature can be abused to load hypervisor resources on a VM instance)

CVE-2024-29010 (N/A)

CVE-2024-29011 (N/A)

CVE-2024-29012 (N/A)

CVE-2024-29013 (N/A)

CVE-2024-29014 (N/A)

CVE-2024-29015 (N/A)

CVE-2024-29018 (N/A)

CVE-2024-29019 (External DNS requests from ‘internal’ networks could lead to data exfiltration)

CVE-2024-29020 (ESPHome vulnerable to Authentication bypass via Cross site request forgery)

CVE-2024-29021 (JumpServer allows nn authorized attacker to get sensitive information in playbook files when playbook_id is leaked)

CVE-2024-29022 (SSRF into Sandbox Escape through Unsafe Default Configuration)

CVE-2024-29023 (Session Hijacking via XSS attack in header and session grid in Xibo CMS)