NA - CVE-2024-31881 - IBM Db2 for Linux, UNIX and Windows (includes...
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash when using a specially crafted query on certain...
NA - CVE-2024-5798 - Vault and Vault Enterprise did not properly...
Vault and Vault Enterprise did not properly validate the JSON Web Token (JWT) role-bound audience claim when using the Vault JWT auth method. This may have resulted in Vault validating a JWT the...
NA - CVE-2023-49559 - An issue in vektah gqlparser...
An issue in vektah gqlparser open-source-library v.2.5.10 allows a remote attacker to cause a denial of service via a crafted script to the parserDirectives function.
NA - CVE-2024-36523 - An access control issue in Wvp GB28181 Pro 2.0...
An access control issue in Wvp GB28181 Pro 2.0 allows users to continue to access information in the application after deleting their own or administrator accounts. This is provided that the users...
NA - CVE-2024-3467 - There is a vulnerability in AVEVA PI Asset...
There is a vulnerability in AVEVA PI Asset Framework Client that could allow malicious code to execute on the PI System Explorer environment under the privileges of an interactive user that was...
NA - CVE-2024-3468 - There is a vulnerability in AVEVA PI Web API...
There is a vulnerability in AVEVA PI Web API that could allow malicious code to execute on the PI Web API environment under the privileges of an interactive user that was socially engineered to use...
NA - CVE-2024-1576 - SQL Injection vulnerability in MegaBIP software...
SQL Injection vulnerability in MegaBIP software allows attacker to obtain site administrator privileges, including access to the administration panel and the ability to change the administrator...
NA - CVE-2024-1577 - Remote Code Execution vulnerability in MegaBIP...
Remote Code Execution vulnerability in MegaBIP software allows to execute arbitrary code on the server without requiring authentication by saving crafted by the attacker PHP code to one of the...
NA - CVE-2024-1659 - Arbitrary File Upload vulnerability in MegaBIP...
Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the server (including a PHP code file) without an authentication. This issue affects MegaBIP software...