2024 CVE Vulnerabilities
39,152 CVEs published in 2024.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-10560 | LOW | 3.5 | 0.3% | Mar 25, 2025 | The Form Maker by 10Web WordPress plugin before 1.15.30 does not sanitise and escape some of its settings, which could ... |
| CVE-2024-10554 | LOW | 3.5 | 0.3% | Mar 25, 2025 | The WordPress WP-Advanced-Search WordPress plugin before 3.3.9.3 does not sanitise and escape some of its settings, whic... |
| CVE-2024-13124 | LOW | 3.5 | 0.2% | Mar 24, 2025 | The Photo Gallery by 10Web WordPress plugin before 1.8.33 does not sanitise and escape some of its settings, which coul... |
| CVE-2024-10558 | LOW | 3.5 | 0.2% | Mar 24, 2025 | The Form Maker by 10Web WordPress plugin before 1.15.30 does not sanitise and escape some of its settings, which could ... |
| CVE-2024-7598 | LOW | 3.1 | 0.3% | Mar 20, 2025 | A security issue was discovered in Kubernetes where a malicious or compromised pod could bypass network restrictions enf... |
| CVE-2024-7296 | LOW | 2.7 | 0.3% | Mar 13, 2025 | An issue was discovered in GitLab EE affecting all versions from 16.5 prior to 17.7.7, 17.8 prior to 17.8.5, and 17.9 pr... |
| CVE-2024-13870 | LOW | 1.8 | 0.2% | Mar 12, 2025 | An improper access control vulnerability exists in Bitdefender Box 1 (firmware version 1.3.52.928 and below) that allows... |
| CVE-2024-13838 | LOW | 3.8 | 0.3% | Mar 12, 2025 | The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnera... |
| CVE-2024-55592 | LOW | 3.8 | 0.2% | Mar 11, 2025 | An incorrect authorization vulnerability [CWE-863] in FortiSIEM 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.... |
| CVE-2024-28607 | LOW | 2.9 | 0.1% | Mar 11, 2025 | The ip-utils package through 2.4.0 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are improperl... |
| CVE-2024-13615 | LOW | 3.5 | 0.2% | Mar 11, 2025 | The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap WordPress plugin thr... |
| CVE-2024-41760 | LOW | 3.7 | 0.2% | Mar 11, 2025 | IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an attacker to obtain sensitive information due... |
| CVE-2024-54558 | LOW | 2.8 | 0.2% | Mar 10, 2025 | A clickjacking issue was addressed with improved out-of-process view handling. This issue is fixed in iOS 18 and iPadOS ... |
| CVE-2024-44179 | LOW | 2.4 | 0.3% | Mar 10, 2025 | This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 17.7 and iPadOS 1... |
| CVE-2024-52905 | LOW | 2.7 | 0.3% | Mar 10, 2025 | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 could disclose sensitiv... |
| CVE-2024-53699 | LOW | 2.1 | 0.5% | Mar 7, 2025 | An out-of-bounds write vulnerability has been reported to affect several QNAP operating system versions. If exploited, t... |
| CVE-2024-53698 | LOW | 2.1 | 0.4% | Mar 7, 2025 | A double free vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulner... |
| CVE-2024-53697 | LOW | 2.1 | 0.5% | Mar 7, 2025 | An out-of-bounds write vulnerability has been reported to affect several QNAP operating system versions. If exploited, t... |
| CVE-2024-38638 | LOW | 2.1 | 0.5% | Mar 7, 2025 | An out-of-bounds write vulnerability has been reported to affect several QNAP operating system versions. If exploited, t... |
| CVE-2024-12975 | LOW | 1 | 0.2% | Mar 7, 2025 | A buffer overread can occur in the CPC application when operating in full duplex SPI upon receiving an invalid packet ov... |
| CVE-2024-11035 | LOW | 2.5 | 0.1% | Mar 5, 2025 | Carbon Black Cloud Windows Sensor, prior to 4.0.3, may be susceptible to an Information Leak vulnerability, which s a ty... |
| CVE-2024-56811 | LOW | 3.3 | 0.1% | Feb 27, 2025 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is ret... |
| CVE-2024-56810 | LOW | 3.3 | 0.1% | Feb 27, 2025 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is ret... |
| CVE-2024-56496 | LOW | 3.3 | 0.1% | Feb 27, 2025 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is ret... |
| CVE-2024-56495 | LOW | 3.3 | 0.1% | Feb 27, 2025 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is ret... |
Check if your code is affected by 2024 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now