A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device.
UnDisruptable27 Project Wants to Shore Up Critical Infrastructure Security
The Institute for Security and Technology's UnDisruptable27 project connects technology firms with the public sector to strengthen US cyber defenses in case of attacks on critical infrastructure.
NA - CVE-2024-28981 - Hitachi Vantara Pentaho Data Integration &...
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.1.0.0 and 9.3.0.8, including 8.3.x, discloses database passwords when searching metadata injectable fields.
NA - CVE-2024-8706 - A vulnerability was found in JFinalCMS up to...
A vulnerability was found in JFinalCMS up to 20240903. It has been classified as problematic. This affects the function update of the file /admin/template/update of the component...
NA - CVE-2024-8707 - A vulnerability was found in ?????????? Yunke...
A vulnerability was found in ?????????? Yunke Online School System up to 3.0.6. It has been declared as problematic. This vulnerability affects the function downfile of the file...
NA - CVE-2024-29847 - Deserialization of untrusted data in the agent...
Deserialization of untrusted data in the agent portal of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution.
