2024 CVE Vulnerabilities
39,152 CVEs published in 2024.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-38858 | LOW | 2.3 | 0.3% | Sep 2, 2024 | Improper neutralization of input in Checkmk before version 2.3.0p14 allows attackers to inject and run malicious scripts... |
| CVE-2024-0109 | LOW | 3.3 | 0.2% | Aug 31, 2024 | NVIDIA CUDA Toolkit contains a vulnerability in command `cuobjdump` where a user may cause a crash by passing in a malfo... |
| CVE-2024-44918 | LOW | 3.5 | 0.3% | Aug 30, 2024 | A cross-site scripting (XSS) vulnerability in the component admin_datarelate.php of SeaCMS v12.9 allows attackers to exe... |
| CVE-2024-39300 | LOW | 3.7 | 0.5% | Aug 30, 2024 | Missing authentication vulnerability exists in Telnet function of WAB-I1750-PS v1.5.10 and earlier. When Telnet function... |
| CVE-2024-2502 | LOW | 2 | 0.2% | Aug 29, 2024 | An application can be configured to block boot attempts after consecutive tamper resets are detected, which may not occu... |
| CVE-2024-43944 | LOW | 3.7 | 0.4% | Aug 29, 2024 | Authentication Bypass by Spoofing vulnerability in ilyasine Maintenance & Coming Soon Redirect Animation maintenance-com... |
| CVE-2024-43265 | LOW | 3.5 | 0.2% | Aug 26, 2024 | Cross-Site Request Forgery (CSRF) vulnerability in Analytify.This issue affects Analytify: from n/a through 5.3.1. |
| CVE-2024-42792 | LOW | 3.5 | 0.2% | Aug 26, 2024 | A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System v1.0 via /music/ajax.ph... |
| CVE-2024-8165 | LOW | 2.1 | 0.6% | Aug 26, 2024 | A vulnerability was identified in Chengdu Everbrite Network Technology BeikeShop up to 1.5.5. This vulnerability affects... |
| CVE-2024-8164 | LOW | 2.1 | 0.5% | Aug 26, 2024 | A vulnerability was determined in Chengdu Everbrite Network Technology BeikeShop up to 1.5.5. This affects the function ... |
| CVE-2024-8163 | LOW | 2.1 | 0.8% | Aug 26, 2024 | A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.5.5. Affected by this issue is the f... |
| CVE-2024-8011 | LOW | 2 | 0.1% | Aug 25, 2024 | Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abus... |
| CVE-2024-40884 | LOW | 2.7 | 0.4% | Aug 22, 2024 | Mattermost versions 9.5.x <= 9.5.7, 9.10.x <= 9.10.0 fail to properly enforce permissions which allows a team admin user... |
| CVE-2024-43785 | LOW | 2.5 | 0.2% | Aug 22, 2024 | gitoxide An idiomatic, lean, fast & safe pure Rust implementation of Git. gitoxide-core, which provides most underlying ... |
| CVE-2024-32939 | LOW | 3.7 | 0.2% | Aug 22, 2024 | Mattermost versions 9.9.x <= 9.9.1, 9.5.x <= 9.5.7, 9.10.x <= 9.10.0, 9.8.x <= 9.8.2, when shared channels are enabled, ... |
| CVE-2024-43411 | LOW | 3.1 | 0.4% | Aug 21, 2024 | CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A theoretical vulnerability has been identified in... |
| CVE-2024-7998 | LOW | 2.6 | 0.2% | Aug 21, 2024 | In affected versions of Octopus Server OIDC cookies were using the wrong expiration time which could result in them usin... |
| CVE-2024-43379 | LOW | 3.1 | 0.3% | Aug 19, 2024 | TruffleHog is a secrets scanning tool. Prior to v3.81.9, this vulnerability allows a malicious actor to craft data in a ... |
| CVE-2024-43845 | LOW | 3.3 | 0.2% | Aug 17, 2024 | In the Linux kernel, the following vulnerability has been resolved: udf: Fix bogus checksum computation in udf_rename()... |
| CVE-2024-43841 | LOW | 3.3 | 0.2% | Aug 17, 2024 | In the Linux kernel, the following vulnerability has been resolved: wifi: virt_wifi: avoid reporting connection success... |
| CVE-2024-7868 | LOW | 2.1 | 0.4% | Aug 15, 2024 | In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT ... |
| CVE-2024-7867 | LOW | 2.1 | 0.2% | Aug 15, 2024 | In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow and divide-by-zero. |
| CVE-2024-7866 | LOW | 2.1 | 0.2% | Aug 15, 2024 | In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource leads to infinite recursion and a stack overflow. |
| CVE-2024-24973 | LOW | 1 | 0.1% | Aug 14, 2024 | Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authentic... |
| CVE-2024-41907 | LOW | 2.1 | 0.2% | Aug 13, 2024 | A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V2.0). The affected a... |
Check if your code is affected by 2024 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now