2024 CVE Vulnerabilities
39,152 CVEs published in 2024.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-28811 | LOW | 3.3 | 0.3% | Sep 30, 2024 | An issue was discovered in Infinera hiT 7300 5.60.50. A web application allows a remote privileged attacker to execute a... |
| CVE-2024-47531 | LOW | 3.5 | 0.3% | Sep 30, 2024 | Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it is possible bypass in... |
| CVE-2024-47124 | LOW | 2.3 | 0.1% | Sep 26, 2024 | The goTenna Pro App does not encrypt callsigns in messages. It is recommended to not use sensitive information in calls... |
| CVE-2024-45838 | LOW | 2.3 | 0.1% | Sep 26, 2024 | The goTenna Pro ATAK Plugin does not encrypt callsigns in messages. It is advised to not use sensitive information in c... |
| CVE-2024-9203 | LOW | 2 | 0.1% | Sep 26, 2024 | A vulnerability, which was classified as problematic, has been found in Enpass Password Manager up to 6.9.5 on Windows. ... |
| CVE-2024-4278 | LOW | 2.7 | 0.2% | Sep 26, 2024 | An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2... |
| CVE-2024-0133 | LOW | 3.4 | 0.2% | Sep 26, 2024 | NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a speciall... |
| CVE-2024-8350 | LOW | 2.7 | 0.4% | Sep 25, 2024 | The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to user group add due to a missing capability check ... |
| CVE-2024-45599 | LOW | 3.8 | 0.2% | Sep 25, 2024 | Cursor is an artificial intelligence code editor. Prior to version 0.41.0, if a user on macOS has granted Cursor access ... |
| CVE-2024-45453 | LOW | 3.7 | 0.3% | Sep 23, 2024 | Authentication Bypass by Spoofing vulnerability in Peter Hardy-vanDoorn Maintenance Redirect jf3-maintenance-mode.This i... |
| CVE-2024-9075 | LOW | 2.3 | 0.4% | Sep 21, 2024 | A vulnerability was found in Stirling-Tools Stirling-PDF up to 0.28.3. It has been declared as problematic. This vulnera... |
| CVE-2024-8612 | LOW | 3.8 | 0.2% | Sep 20, 2024 | A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-crypto devices. The size for virtqueue_push as set ... |
| CVE-2024-46794 | LOW | 3.3 | 0.2% | Sep 18, 2024 | In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_rea... |
| CVE-2024-46792 | LOW | 3.3 | 0.2% | Sep 18, 2024 | In the Linux kernel, the following vulnerability has been resolved: riscv: misaligned: Restrict user access to kernel m... |
| CVE-2024-44180 | LOW | 2.4 | 0.2% | Sep 17, 2024 | The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical acc... |
| CVE-2024-44139 | LOW | 2.4 | 0.2% | Sep 17, 2024 | The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical acc... |
| CVE-2024-40838 | LOW | 3.3 | 0.2% | Sep 17, 2024 | A privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Sequoia 15.... |
| CVE-2024-40830 | LOW | 3.3 | 0.2% | Sep 17, 2024 | This issue was addressed with improved data protection. This issue is fixed in iOS 18 and iPadOS 18. An app may be able ... |
| CVE-2024-40791 | LOW | 3.3 | 0.2% | Sep 17, 2024 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.7 and ... |
| CVE-2024-8869 | LOW | 2.3 | 1.7% | Sep 15, 2024 | A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the function exportOvpn. The ... |
| CVE-2024-36066 | LOW | 3.1 | 0.2% | Sep 12, 2024 | The CMP CLI client in KeyFactor EJBCA before 8.3.1 has only 6 octets of salt, and is thus not compliant with the securit... |
| CVE-2024-6446 | LOW | 3.5 | 0.4% | Sep 12, 2024 | An issue has been discovered in GitLab affecting all versions starting from 17.1 to 17.1.7, 17.2 prior to 17.2.5 and 17.... |
| CVE-2024-44575 | LOW | 3.7 | 0.3% | Sep 11, 2024 | RELY-PCIe v22.2.1 to v23.1.0 does not set the Secure attribute for sensitive cookies in HTTPS sessions, which could caus... |
| CVE-2024-1656 | LOW | 2.6 | 0.2% | Sep 11, 2024 | Affected versions of Octopus Server had a weak content security policy. |
| CVE-2024-45323 | LOW | 2.7 | 0.4% | Sep 10, 2024 | An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6.0 all versions may all... |
Check if your code is affected by 2024 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now