Lista CVE 2024/8xxx

CVE nel gruppo: 8xxx

CVE-2024-8000 (N/A)

CVE-2024-8001 (On affected platforms running Arista EOS with 802.1X configured, certain conditions may occur where a dynamic ACL is received from the AAA server resulting in only the first line of the ACL being installed after an Accelerated Software Upgrade (ASU) restar)

CVE-2024-8002 (VIWIS LMS Print authorization)

CVE-2024-8003 (VIWIS LMS File Upload cross site scripting)

CVE-2024-8004 (Go-Tribe gotribe-admin Log routes.go InitRoutes deserialization)

CVE-2024-8005 (Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x)

CVE-2024-8006 (demozx gf_cms JWT Authentication auth.go init hard-coded credentials)

CVE-2024-8007 (NULL pointer dereference in libpcap before 1.10.5 with remote packet capture support)

CVE-2024-8011 (Openstack-tripleo-common: rhosp director disables tls verification for registry mirrors)

CVE-2024-8012 (N/A)

CVE-2024-8013 (N/A)

CVE-2024-8014 (CSFLE and Queryable Encryption self-lookup may fail to encrypt values in subpipelines)

CVE-2024-8015 (Telerik Reporting EntityDataSource Insecure Type Resolution)

CVE-2024-8016 (Telerik Report Server Insecure Type Resolution)

CVE-2024-8017 (The Events Calendar Pro <= 7.0.2 - Authenticated (Administrator+) PHP Object Injection to Remote Code Execution)

CVE-2024-8018 (Cross-site Scripting (XSS) in open-webui/open-webui)

CVE-2024-8019 (Denial of Service (DOS) in imartinez/privategpt)

CVE-2024-8020 (Arbitrary File Write/Overwrite in lightning-ai/pytorch-lightning)

CVE-2024-8021 (Denial of Service in lightning-ai/pytorch-lightning)

CVE-2024-8022 (Open Redirect in gradio-app/gradio)