2024 CVE Vulnerabilities
39,152 CVEs published in 2024.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-13121 | LOW | 3.5 | 0.3% | Feb 13, 2025 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress pl... |
| CVE-2024-34521 | LOW | 3.5 | 0.6% | Feb 12, 2025 | A directory traversal vulnerability exists in the Mavenir SCE Application Provisioning Portal, version PORTAL-LBS-R_1_0_... |
| CVE-2024-39286 | LOW | 2 | 0.2% | Feb 12, 2025 | Incorrect execution-assigned permissions in the Linux kernel mode driver for the Intel(R) 800 Series Ethernet Driver bef... |
| CVE-2024-39271 | LOW | 2 | 0.2% | Feb 12, 2025 | Improper restriction of communication channel to intended endpoints in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ ... |
| CVE-2024-51324 | LOW | 3.8 | 0.5% | Feb 11, 2025 | An issue in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 allows attackers to terminate arbitrary process via ex... |
| CVE-2024-12548 | LOW | 3.3 | 0.3% | Feb 11, 2025 | Tungsten Automation Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability a... |
| CVE-2024-52966 | LOW | 2.3 | 0.2% | Feb 11, 2025 | An exposure of sensitive information to an unauthorized actor in Fortinet FortiAnalyzer 6.4.0 through 7.6.0 allows attac... |
| CVE-2024-52611 | LOW | 3.5 | 0.3% | Feb 11, 2025 | The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the dat... |
| CVE-2024-56467 | LOW | 3.3 | 0.1% | Feb 6, 2025 | IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is ret... |
| CVE-2024-55416 | LOW | 3.5 | 23.9% | Jan 30, 2025 | DevDojo Voyager through version 1.8.0 is vulnerable to reflected XSS via /admin/compass. By manipulating an authenticate... |
| CVE-2024-54462 | LOW | 2.1 | 0.2% | Jan 29, 2025 | The file names constructed within image_picker are missing sanitization checks leaving them vulnerable to malicious docu... |
| CVE-2024-54461 | LOW | 2.1 | 0.2% | Jan 29, 2025 | The file names constructed within file_selector are missing sanitization checks leaving them vulnerable to malicious doc... |
| CVE-2024-0149 | LOW | 3.3 | 0.2% | Jan 28, 2025 | NVIDIA GPU Display Driver for Linux contains a vulnerability which could allow an attacker unauthorized access to files.... |
| CVE-2024-54516 | LOW | 3.3 | 0.2% | Jan 27, 2025 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.2, macOS Sonoma ... |
| CVE-2024-54475 | LOW | 3.3 | 0.2% | Jan 27, 2025 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia... |
| CVE-2024-44172 | LOW | 3.3 | 0.2% | Jan 27, 2025 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia... |
| CVE-2024-43446 | LOW | 3.5 | 0.2% | Jan 27, 2025 | An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even ... |
| CVE-2024-13116 | LOW | 3.8 | 0.3% | Jan 27, 2025 | The Crelly Slider WordPress plugin before 1.4.7 does not sanitise and escape some of its settings, which could allow hig... |
| CVE-2024-35122 | LOW | 2.8 | 0.2% | Jan 24, 2025 | IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to a file level local denial of service caused by an insufficient authority r... |
| CVE-2024-52328 | LOW | 1.8 | 0.2% | Jan 23, 2025 | ECOVACS robot lawnmowers and vacuums insecurely store audio files used to indicate that the camera is on. An attacker wi... |
| CVE-2024-42186 | LOW | 2.8 | 0.1% | Jan 23, 2025 | BigFix Patch Download Plug-ins are affected by an insecure protocol support. The application can allow improper handlin... |
| CVE-2024-42185 | LOW | 2.5 | 0.1% | Jan 23, 2025 | BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks. This ... |
| CVE-2024-42184 | LOW | 2.5 | 0.1% | Jan 23, 2025 | BigFix Patch Download Plug-ins are affected by insecure support for file URI scheme. It could allow a malicious operato... |
| CVE-2024-42183 | LOW | 2.5 | 0.1% | Jan 23, 2025 | BigFix Patch Download Plug-ins are affected by an arbitrary file download vulnerability. It could allow a malicious ope... |
| CVE-2024-42182 | LOW | 2.5 | 0.1% | Jan 23, 2025 | BigFix Patch Download Plug-ins are affected by Server-Side Request Forgery (SSRF) vulnerability. It may allow the appli... |
Check if your code is affected by 2024 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now