NA - CVE-2024-52798 - path-to-regexp turns path strings into a...
path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. The regular...
NA - CVE-2024-11479 - A HTML Injection vulnerability was identified...
A HTML Injection vulnerability was identified in Issuetrak version 17.1 that could be triggered by an authenticated user. HTML markup could be added to comments of tickets, which when submitted...
NA - CVE-2024-11985 - An improper input validation vulnerability...
An improper input validation vulnerability leads to device crashes in certain ASUS router models. Refer to the '12/03/2024 ASUS Router Improper Input Validation' section on the ASUS...
NA - CVE-2024-40717 - A vulnerability in Veeam Backup & Replication...
A vulnerability in Veeam Backup & Replication allows a low-privileged user with certain roles to perform remote code execution (RCE) by updating existing jobs. These jobs can be configured to run...
NA - CVE-2024-42449 - From the VSPC management agent machine, under...
From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to remove arbitrary files on the VSPC server machine.