Lista CVE 2024/4xxx

CVE nel gruppo: 4xxx

CVE-2024-4000 (N/A)

CVE-2024-4001 (N/A)

CVE-2024-4003 (Download Manager <= 3.2.93 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpdm_modal_login_form Shortcode)

CVE-2024-4005 (N/A)

CVE-2024-4006 (Social Pixel <= 2.1 - Admin+ Stored XSS)

CVE-2024-4007 (Incorrect Authorization in GitLab)

CVE-2024-4008 (Hard coded default credential contained in install package)

CVE-2024-4009 (FDSK Leak in KNX Secure Devices)

CVE-2024-4010 (Replay Attack in KNX Secure Devices)

CVE-2024-4011 (Email Subscribers by Icegram Express <= 5.7.19 - Missing Authorization in handle_ajax_request)

CVE-2024-4012 (Improper Access Control in GitLab)

CVE-2024-4013 (N/A)

CVE-2024-4014 (Failure to update BT Mesh Replay Protection List)

CVE-2024-4017 (N/A)

CVE-2024-4018 (Privilege Escalation in U-Series Appliance)

CVE-2024-4019 (Privilege Escalation in U-Series Appliance)

CVE-2024-4020 (Byzoro Smart S80 Management Platform importhtml.php deserialization)

CVE-2024-4021 (Tenda FH1206 addressNat fromAddressNat buffer overflow)

CVE-2024-4022 (Keenetic KN-1010/KN-1410/KN-1711/KN-1810/KN-1910 Configuration Setting ndmComponents.js information disclosure)

CVE-2024-4023 (Keenetic KN-1010/KN-1410/KN-1711/KN-1810/KN-1910 Version Data version.js information disclosure)