CVE List - 2024 / February
Showing 2001 - 2100 of 2784 CVEs for February 2024 (Page 21 of 28)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-23127 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23128 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23129 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23130 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23131 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23132 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23133 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23134 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23135 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23136 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-23137 | 2024-02-22 | Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software |
| CVE-2024-0903 | 2024-02-22 | The User Feedback – Create Interactive Feedback Form, User Surveys,... |
| CVE-2024-1053 | 2024-02-22 | The Event Tickets and Registration plugin for WordPress is vulnerable... |
| CVE-2024-26578 | 2024-02-22 | Apache Answer: Repeated submission at registration created duplicate users with the same name |
| CVE-2023-29181 | 2024-02-22 | A use of externally-controlled format string in Fortinet FortiOS 7.2.0... |
| CVE-2023-29179 | 2024-02-22 | A null pointer dereference in Fortinet FortiOS version 7.2.0 through... |
| CVE-2023-29180 | 2024-02-22 | A null pointer dereference in Fortinet FortiOS version 7.2.0 through... |
| CVE-2024-23349 | 2024-02-22 | Apache Answer: XSS vulnerability when submitting summary |
| CVE-2024-22393 | 2024-02-22 | Apache Answer: Pixel Flood Attack by uploading the large pixel file |
| CVE-2024-0220 | 2024-02-22 | B&R products use insufficient communication encryption |
| CVE-2024-1104 | 2024-02-22 | Temporary denial of service during a brute force attack |
| CVE-2024-25021 | 2024-02-22 | IBM AIX command execution |
| CVE-2023-3966 | 2024-02-22 | Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet |
| CVE-2023-44379 | 2024-02-22 | baserCMS Cross-site Scripting vulnerability in Site search Feature |
| CVE-2023-51450 | 2024-02-22 | baserCMS OS command injection vulnerability in Installer |
| CVE-2024-26284 | 2024-02-22 | Utilizing a 302 redirect, an attacker could have conducted a... |
| CVE-2024-1563 | 2024-02-22 | An attacker could have executed unauthorized scripts on top origin... |
| CVE-2024-26283 | 2024-02-22 | An attacker could have executed unauthorized scripts on top origin... |
| CVE-2024-26282 | 2024-02-22 | Using an AMP url with a canonical element, an attacker... |
| CVE-2024-26281 | 2024-02-22 | Upon scanning a JavaScript URI with the QR code scanner,... |
| CVE-2023-51653 | 2024-02-22 | Hertzbeat JMX JNDI RCE |
| CVE-2023-51388 | 2024-02-22 | HertzBeat AviatorScript Inject RCE |
| CVE-2023-51389 | 2024-02-22 | HertzBeat SnakeYAML Deser RCE |
| CVE-2023-52443 | 2024-02-22 | apparmor: avoid crash when parsed profile name is empty |
| CVE-2024-26586 | 2024-02-22 | mlxsw: spectrum_acl_tcam: Fix stack corruption |
| CVE-2024-26587 | 2024-02-22 | net: netdevsim: don't try to destroy PHC on VFs |
| CVE-2024-26588 | 2024-02-22 | LoongArch: BPF: Prevent out-of-bounds memory access |
| CVE-2024-26589 | 2024-02-22 | bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS |
| CVE-2024-26590 | 2024-02-22 | erofs: fix inconsistent per-file compression format |
| CVE-2023-52444 | 2024-02-22 | f2fs: fix to avoid dirent corruption |
| CVE-2023-52445 | 2024-02-22 | media: pvrusb2: fix use after free on context disconnection |
| CVE-2023-52446 | 2024-02-22 | bpf: Fix a race condition between btf_put() and map_free() |
| CVE-2023-52447 | 2024-02-22 | bpf: Defer the free of inner map when necessary |
| CVE-2023-52448 | 2024-02-22 | gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump |
| CVE-2023-52449 | 2024-02-22 | mtd: Fix gluebi NULL pointer dereference caused by ftl notifier |
| CVE-2023-52450 | 2024-02-22 | perf/x86/intel/uncore: Fix NULL pointer dereference issue in upi_fill_topology() |
| CVE-2023-52451 | 2024-02-22 | powerpc/pseries/memhp: Fix access beyond end of drmem array |
| CVE-2023-52452 | 2024-02-22 | bpf: Fix accesses to uninit stack slots |
| CVE-2024-26591 | 2024-02-22 | bpf: Fix re-attachment branch in bpf_tracing_prog_attach |
| CVE-2024-26592 | 2024-02-22 | ksmbd: fix UAF issue in ksmbd_tcp_new_connection() |
| CVE-2024-24817 | 2024-02-22 | User can see invitees in events created in PMs and private categories |
| CVE-2024-25129 | 2024-02-22 | Limited data exfiltration in CodeQL CLI |
| CVE-2024-25130 | 2024-02-22 | Tuleap's mass update clears the permissions on artifact field |
| CVE-2024-26128 | 2024-02-22 | baserCMS Cross-site Scripting vulnerability in Content Management |
| CVE-2024-26151 | 2024-02-22 | Potentially untrusted input is rendered as HTML in final output |
| CVE-2024-1748 | 2024-02-22 | van_der_Schaar LAB AutoPrognosis Release Note load_model_from_file deserialization |
| CVE-2024-1749 | 2024-02-22 | Bdtask Bhojon Best Restaurant Management Software Message Page message cross site scripting |
| CVE-2024-1750 | 2024-02-22 | TemmokuMVC Image Download images_get_down.php img_replace deserialization |
| CVE-2024-26152 | 2024-02-22 | Label Studio vulnerable to Cross-site Scripting if `<Choices>` or `<Labels>` are used in labeling config |
| CVE-2024-22776 | 2024-02-23 | Wallos 0.9 is vulnerable to Cross Site Scripting (XSS) in... |
| CVE-2024-24309 | 2024-02-23 | In the module "Survey TMA" (ecomiz_survey_tma) up to version 2.0.0... |
| CVE-2024-24310 | 2024-02-23 | In the module "Generate barcode on invoice / delivery slip"... |
| CVE-2024-25469 | 2024-02-23 | SQL Injection vulnerability in CRMEB crmeb_java v.1.3.4 and before allows... |
| CVE-2024-25730 | 2024-02-23 | Hitron CODA-4582 and CODA-4589 devices have default PSKs that are... |
| CVE-2024-22988 | 2024-02-23 | ZKteco ZKBio WDMS before 9.0.2 Build 20250526 allows an attacker... |
| CVE-2024-24681 | 2024-02-23 | An issue was discovered in Yealink Configuration Encrypt Tool (AES... |
| CVE-2024-1781 | 2024-02-23 | Totolink X6000R AX3000 shttpd cstecgi.cgi setWizardCfg command injection |
| CVE-2024-1783 | 2024-02-23 | Totolink LR1200GB Web Interface cstecgi.cgi loginAuth stack-based overflow |
| CVE-2024-1683 | 2024-02-23 | DLL Injection in Tenable Identity Exposure Secure Relay |
| CVE-2024-1784 | 2024-02-23 | Limbas main_admin.php sql injection |
| CVE-2024-1786 | 2024-02-23 | D-Link DIR-600M C1 Telnet Service buffer overflow |
| CVE-2024-22243 | 2024-02-23 | CVE-2024-22243: Spring Framework URL Parsing with Host Validation |
| CVE-2024-1779 | 2024-02-23 | The Admin side data storage for Contact Form 7 plugin... |
| CVE-2024-1776 | 2024-02-23 | The Admin side data storage for Contact Form 7 plugin... |
| CVE-2024-1777 | 2024-02-23 | The Admin side data storage for Contact Form 7 plugin... |
| CVE-2024-1778 | 2024-02-23 | The Admin side data storage for Contact Form 7 plugin... |
| CVE-2023-37540 | 2024-02-23 | HCL Sametime Chat is affected by an unimplemented feature in the UI |
| CVE-2024-0563 | 2024-02-23 | Denial of service condition in M-Files Server |
| CVE-2024-26593 | 2024-02-23 | i2c: i801: Fix block process call transactions |
| CVE-2023-4826 | 2024-02-23 | Socialdriver < 2024 - Prototype Pollution to XSS |
| CVE-2024-1590 | 2024-02-23 | The Page Builder: Pagelayer – Drag and Drop website builder... |
| CVE-2024-1361 | 2024-02-23 | The Colibri Page Builder plugin for WordPress is vulnerable to... |
| CVE-2024-1362 | 2024-02-23 | The Colibri Page Builder plugin for WordPress is vulnerable to... |
| CVE-2024-1360 | 2024-02-23 | The Colibri WP theme for WordPress is vulnerable to Cross-Site... |
| CVE-2023-24416 | 2024-02-23 | WordPress All In One Favicon Plugin <= 4.7 is vulnerable to Arbitrary File Deletion |
| CVE-2024-25915 | 2024-02-23 | WordPress Pexels: Free Stock Photos Plugin <= 1.2.2 is vulnerable to Server Side Request Forgery (SSRF) |
| CVE-2024-25928 | 2024-02-23 | WordPress Sitepact's Contact Form 7 Extension For Klaviyo Plugin <= 1.0.5 is vulnerable to SQL Injection |
| CVE-2024-26594 | 2024-02-23 | ksmbd: validate mech token in session setup |
| CVE-2024-1817 | 2024-02-23 | Demososo DM Enterprise Website Building System Cookie indexDM_load.php dmlogin improper authentication |
| CVE-2024-1818 | 2024-02-23 | CodeAstro Membership Management System Logo unrestricted upload |
| CVE-2024-1819 | 2024-02-23 | CodeAstro Membership Management System Add Members Tab unrestricted upload |
| CVE-2023-52453 | 2024-02-23 | hisi_acc_vfio_pci: Update migration data pointer correctly on saving/resume |
| CVE-2023-52454 | 2024-02-23 | nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length |
| CVE-2023-52455 | 2024-02-23 | iommu: Don't reserve 0-length IOVA region |
| CVE-2023-52456 | 2024-02-23 | serial: imx: fix tx statemachine deadlock |
| CVE-2023-52457 | 2024-02-23 | serial: 8250: omap: Don't skip resource freeing if pm_runtime_resume_and_get() failed |
| CVE-2023-52458 | 2024-02-23 | block: add check that partition length needs to be aligned with block size |
| CVE-2023-52459 | 2024-02-23 | media: v4l: async: Fix duplicated list deletion |
| CVE-2023-52460 | 2024-02-23 | drm/amd/display: Fix NULL pointer dereference at hibernate |
| CVE-2023-52461 | 2024-02-23 | drm/sched: Fix bounds limiting when given a malformed entity |