Vulnerabilities (CVE)

Filtered by NVD-CWE-noinfo
Total 27847 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-38086 1 Microsoft 1 Azure Kinect Software Development Kit 2024-07-12 N/A 6.4 MEDIUM
Azure Kinect SDK Remote Code Execution Vulnerability
CVE-2024-38089 1 Microsoft 1 Defender For Iot 2024-07-12 N/A 9.9 CRITICAL
Microsoft Defender for IoT Elevation of Privilege Vulnerability
CVE-2024-38091 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2024-07-12 N/A 7.5 HIGH
Microsoft WS-Discovery Denial of Service Vulnerability
CVE-2024-38092 1 Microsoft 1 Azure Cyclecloud 2024-07-12 N/A 8.8 HIGH
Azure CycleCloud Elevation of Privilege Vulnerability
CVE-2024-28067 1 Samsung 2 Exynos Modem 5300, Exynos Modem 5300 Firmware 2024-07-12 N/A 3.7 LOW
A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle (MITM) attacker to downgrade the security mode of packets going to the victim, enabling the attacker to send messages to the victim in plaintext.
CVE-2024-38970 1 Vaethink 1 Vaethink 2024-07-12 N/A 4.9 MEDIUM
vaeThink 1.0.2 is vulnerable to Information Disclosure via the system backend,access management administrator function.
CVE-2024-6171 1 Unlimited-elements 1 Unlimited Elements For Elementor \(free Widgets\, Addons\, Templates\) 2024-07-12 N/A 5.3 MEDIUM
The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to IP Address Spoofing in all versions up to, and including, 1.5.112 due to insufficient IP address validation and/or use of user-supplied HTTP headers as a primary method for IP retrieval. This makes it possible for unauthenticated attackers to bypass antispam functionality in the Form Builder widgets.
CVE-2024-38102 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2024-07-11 N/A 6.5 MEDIUM
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-38105 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2024-07-11 N/A 6.5 MEDIUM
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-39118 1 Mommyheather 1 Advanced Backups 2024-07-11 N/A 5.5 MEDIUM
Mommy Heather Advanced Backups up to v3.5.3 allows attackers to write arbitrary files via restoring a crafted back up.
CVE-2024-38095 1 Microsoft 2 .net, Visual Studio 2022 2024-07-11 N/A 7.5 HIGH
.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-38099 1 Microsoft 6 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 3 more 2024-07-11 N/A 5.9 MEDIUM
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
CVE-2024-38101 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2024-07-11 N/A 6.5 MEDIUM
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-38059 1 Microsoft 7 Windows 10 21h2, Windows 10 22h2, Windows 11 21h2 and 4 more 2024-07-11 N/A 7.8 HIGH
Win32k Elevation of Privilege Vulnerability
CVE-2024-38057 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2024-07-11 N/A 7.8 HIGH
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38056 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2024-07-11 N/A 5.5 MEDIUM
Microsoft Windows Codecs Library Information Disclosure Vulnerability
CVE-2024-38055 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2024-07-11 N/A 5.5 MEDIUM
Microsoft Windows Codecs Library Information Disclosure Vulnerability
CVE-2024-38052 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2024-07-11 N/A 7.8 HIGH
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38047 1 Microsoft 11 Windows 10 1607, Windows 10 1809, Windows 10 21h2 and 8 more 2024-07-11 N/A 7.8 HIGH
PowerShell Elevation of Privilege Vulnerability
CVE-2013-5221 1 Esri 1 Arcgis Server 2024-07-11 3.5 LOW N/A
The mobile-upload feature in Esri ArcGIS for Server 10.1 through 10.2 allows remote authenticated users to upload .exe files by leveraging (1) publisher or (2) administrator privileges.