2024 CVE Vulnerabilities
39,152 CVEs published in 2024.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-30471 | LOW | 3.7 | 0.7% | Jul 17, 2024 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apache StreamPipes in user self-registration. This al... |
| CVE-2024-6807 | LOW | 1.9 | 0.7% | Jul 17, 2024 | A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0 and classified as problemati... |
| CVE-2024-21174 | LOW | 3.1 | 0.3% | Jul 16, 2024 | Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.23, ... |
| CVE-2024-21164 | LOW | 2.5 | 0.5% | Jul 16, 2024 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that a... |
| CVE-2024-21151 | LOW | 3.3 | 0.2% | Jul 16, 2024 | Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The supported version that is a... |
| CVE-2024-21144 | LOW | 3.7 | 1.1% | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Concurrency... |
| CVE-2024-21138 | LOW | 3.7 | 1.3% | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE... |
| CVE-2024-21131 | LOW | 3.7 | 1.0% | Jul 16, 2024 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE... |
| CVE-2024-21123 | LOW | 2.3 | 0.2% | Jul 16, 2024 | Vulnerability in the Oracle Database Core component of Oracle Database Server. Supported versions that are affected are... |
| CVE-2024-40455 | LOW | 2.7 | 0.2% | Jul 16, 2024 | An arbitrary file deletion vulnerability in ThinkSAAS v3.7 allows attackers to delete arbitrary files via a crafted requ... |
| CVE-2024-6326 | LOW | 1.8 | 0.2% | Jul 16, 2024 | An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A mali... |
| CVE-2024-6780 | LOW | 3.3 | 0.2% | Jul 16, 2024 | Improper permission control in the mobile application (com.android.server.telecom) may lead to user information security... |
| CVE-2024-40632 | LOW | 3.7 | 0.4% | Jul 15, 2024 | Linkerd is an open source, ultralight, security-first service mesh for Kubernetes. In affected versions when the applica... |
| CVE-2024-39919 | LOW | 3.1 | 0.4% | Jul 15, 2024 | @jmondi/url-to-png is an open source URL to PNG utility featuring parallel rendering using Playwright for screenshots an... |
| CVE-2024-41007 | LOW | 3.3 | 0.2% | Jul 15, 2024 | In the Linux kernel, the following vulnerability has been resolved: tcp: avoid too many retransmit packets If a TCP so... |
| CVE-2024-5470 | LOW | 2.7 | 0.3% | Jul 11, 2024 | An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to... |
| CVE-2024-5257 | LOW | 2.7 | 0.4% | Jul 11, 2024 | An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to... |
| CVE-2024-2880 | LOW | 2.7 | 0.3% | Jul 11, 2024 | An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 16.11.6, starting from 17.0 p... |
| CVE-2024-23194 | LOW | 3.3 | 0.1% | Jul 11, 2024 | Improper output Neutralization for Logs (CWE-117) in the Command Centre API Diagnostics Endpoint could allow an attacker... |
| CVE-2024-39886 | LOW | 3.7 | 0.3% | Jul 10, 2024 | TONE store App version 3.4.2 and earlier contains an issue with unprotected primary channel. Since TONE store App commun... |
| CVE-2024-36452 | LOW | 3.1 | 0.2% | Jul 10, 2024 | Cross-site request forgery vulnerability exists in ajaxterm module of Webmin versions prior to 2.003. If this vulnerabil... |
| CVE-2024-21832 | LOW | 3.5 | 0.2% | Jul 9, 2024 | A potential JSON injection attack vector exists in PingFederate REST API data stores using the POST method and a JSON re... |
| CVE-2024-6501 | LOW | 3.1 | 0.4% | Jul 9, 2024 | A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 c... |
| CVE-2024-28067 | LOW | 3.7 | 0.3% | Jul 9, 2024 | A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle (MITM) attacker to downgrade the security mode o... |
| CVE-2024-37253 | LOW | 2.7 | 0.3% | Jul 9, 2024 | Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in WpDi... |
Check if your code is affected by 2024 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now