2024 CVE Vulnerabilities
39,152 CVEs published in 2024.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-47869 | LOW | 2.3 | 0.3% | Oct 10, 2024 | Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **timing attack** ... |
| CVE-2024-47867 | LOW | 2.1 | 0.2% | Oct 10, 2024 | Gradio is an open-source Python package designed for quick prototyping. This vulnerability is a **lack of integrity chec... |
| CVE-2024-47168 | LOW | 2.3 | 0.3% | Oct 10, 2024 | Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves data exposure due to... |
| CVE-2024-47166 | LOW | 2.3 | 0.4% | Oct 10, 2024 | Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **one-level read p... |
| CVE-2024-47164 | LOW | 2.3 | 0.7% | Oct 10, 2024 | Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to the **bypass of di... |
| CVE-2024-45149 | LOW | 2.7 | 0.5% | Oct 10, 2024 | Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control v... |
| CVE-2024-45135 | LOW | 2.7 | 0.6% | Oct 10, 2024 | Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control v... |
| CVE-2024-45134 | LOW | 2.7 | 0.6% | Oct 10, 2024 | Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vuln... |
| CVE-2024-45133 | LOW | 2.7 | 0.6% | Oct 10, 2024 | Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vuln... |
| CVE-2024-45120 | LOW | 3.1 | 0.4% | Oct 10, 2024 | Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Time-of-check Time-of-use ... |
| CVE-2024-7038 | LOW | 2.7 | 0.3% | Oct 9, 2024 | An information disclosure vulnerability exists in open-webui version 0.3.8. The vulnerability is related to the embeddin... |
| CVE-2024-47813 | LOW | 2.9 | 0.2% | Oct 9, 2024 | Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a `wasmtime::Engine`'s int... |
| CVE-2024-27457 | LOW | 1.8 | 0.1% | Oct 8, 2024 | Improper check for unusual or exceptional conditions in Intel(R) TDX Module firmware before version 1.5.06 may allow a p... |
| CVE-2024-8518 | LOW | 3.3 | 0.2% | Oct 8, 2024 | CWE-20: Improper Input Validation vulnerability exists that could cause a crash of the Zelio Soft 2 application when a s... |
| CVE-2024-34672 | LOW | 3.3 | 0.2% | Oct 8, 2024 | Improper input validation in SamsungVideoPlayer prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.... |
| CVE-2024-34664 | LOW | 2.4 | 0.1% | Oct 8, 2024 | Improper check for exception conditions in Knox Guard prior to SMR Oct-2024 Release 1 allows physical attackers to bypas... |
| CVE-2024-9026 | LOW | 3.3 | 0.5% | Oct 8, 2024 | In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, when using PHP-FPM SAPI and it is configu... |
| CVE-2024-41511 | LOW | 3.9 | 0.9% | Oct 4, 2024 | A Path Traversal (Local File Inclusion) vulnerability in "BinaryFileRedirector.ashx" in CADClick v1.11.0 and before allo... |
| CVE-2024-0125 | LOW | 3.3 | 0.2% | Oct 3, 2024 | NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where a user can ca... |
| CVE-2024-0124 | LOW | 3.3 | 0.2% | Oct 3, 2024 | NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where a user can ca... |
| CVE-2024-0123 | LOW | 3.3 | 0.2% | Oct 3, 2024 | NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker m... |
| CVE-2024-24122 | LOW | 3.3 | 0.7% | Oct 2, 2024 | A remote code execution vulnerability in the project management of Wanxing Technology's Yitu project which allows an att... |
| CVE-2024-47612 | LOW | 3.5 | 0.3% | Oct 2, 2024 | DataDump is a MediaWiki extension that provides dumps of wikis. Several interface messages are unescaped (more specifica... |
| CVE-2024-47526 | LOW | 2.4 | 0.4% | Oct 1, 2024 | LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Self Cross-Site Scripting (Self-XSS) vulne... |
| CVE-2024-28808 | LOW | 2.7 | 0.4% | Sep 30, 2024 | An issue was discovered in Infinera hiT 7300 5.60.50. Hidden functionality in the web interface allows a remote authenti... |
Check if your code is affected by 2024 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now