ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
CVE-2024-10443
Currently trending CVE - Hype Score: 2 - Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Task Manager component in Synology BeePhotos before 1.0.2-10026 and 1.1
Red Hat Warns of Malware Code Embedded in Popular Linux Tool Allow Unauthorized Access to Systems
Red Hat has issued a critical security warning regarding malicious code discovered in recent versions of the “xz” compression tools and libraries. Tracked as CVE-2024-3094, this highly sophisticated supply chain compromi
CVE-2024-54676
Currently trending CVE - Hype Score: 2 - Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.1.0 before 8.0.0 Description: Default clustering instructions at https://openmeetings.apach
CVE-2024-58341 - OpenCart Core 4.0.2.3 SQL Injection via search Parameter
CVE ID :CVE-2024-58341 Published : March 25, 2026, 4:16 p.m. | 18 minutes ago Description :OpenCart Core 4.0.2.3 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database q
CVE-2024-51348 - BS Producten Petcam P2P API Stack-Based Buffer Overflow Remote Code Execution
CVE ID :CVE-2024-51348 Published : March 25, 2026, 2:16 p.m. | 2 hours, 18 minutes ago Description :A stack-based buffer overflow vulnerability in the P2P API service in BS Producten Petcam with firmware 33.1.0.081
CVE-2024-7399
Currently trending CVE - Hype Score: 5 - Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1050 allows attackers to write arbitrary file as system a
CVE-2024-48990
Currently trending CVE - Hype Score: 4 - Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with a
CVE-2024-21320
Currently trending CVE - Hype Score: 5 - Windows Themes Spoofing Vulnerability
CVE-2024-0044
Currently trending CVE - Hype Score: 4 - In createSessionInternal of PackageInstallerService.java, there is a possible run-as any app due to improper input validation. This could lead to local escalation of privilege wit
CVE-2024-45163
Currently trending CVE - Hype Score: 4 - The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command and control) server. Unauthenticated sessions remain open, causing resource consump
CVE-2024-23222
Currently trending CVE - Hype Score: 5 - A type confusion issue was addressed with improved checks. This issue is fixed in iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, tvOS 17.3, iOS 16.7.5 and iPadOS 16.7.5, iOS 15.8.7
CVE-2024-23296
Currently trending CVE - Hype Score: 6 - A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 17.4 and iPadOS 17.4. An attacker with arbitrary kernel read and write capability may
CVE-2024-23225
Currently trending CVE - Hype Score: 6 - A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4. An attacker with arbitrary kernel
CVE-2024-30085
Currently trending CVE - Hype Score: 4 - Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2024-55024 - Weintek cMT-3072XH2 easyweb Authentication Bypass Vulnerability
CVE ID : CVE-2024-55024 Published : March 3, 2026, 8:16 p.m. | 1 hour, 27 minutes ago Description : An authentication bypass vulnerability in the authorization mechanism of Weintek cMT-3072XH2 easyweb v2.1.53, OS v202
CVE-2024-55020 - Weintek cMT-3072XH2 easyweb Command Injection Vulnerability
CVE ID : CVE-2024-55020 Published : March 3, 2026, 8:16 p.m. | 1 hour, 27 minutes ago Description : A command injection vulnerability in the DHCP activation feature of Weintek cMT-3072XH2 easyweb Web Version v2.1.53,
CVE-2024-31328 - Android BroadcastController arbitrary activity launch vulnerability
CVE ID : CVE-2024-31328 Published : March 2, 2026, 7:16 p.m. | 2 hours, 5 minutes ago Description : In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities fr
CVE-2024-47886 - Chamilo: Post-Auth Remote Code Execution
CVE ID : CVE-2024-47886 Published : March 2, 2026, 3:16 p.m. | 21 minutes ago Description : Chamilo is a learning management system. Chamillo is affected by a post-authentication phar unserialize which leads to a remo
CVE-2025-46646
Currently trending CVE - Hype Score: 3 - In Artifex Ghostscript before 10.05.0, decode_utf8 in base/gp_utf8.c mishandles overlong UTF-8 encoding. NOTE: this issue exists because of an incomplete fix for CVE-2024-46954.
CVE-2024-50050
Currently trending CVE - Hype Score: 2 - Llama Stack prior to revision 7a8aa775e5a267cf8660d83140011a0b7f91e005 used pickle as a serialization format for socket communication, potentially allowing for remote code executi