CVE-2024-41123 : RUBY REXML GEM UP TO 3.3.2 RESOURCE CONSUMPTION

Description REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses

Description There is a MEDIUM severity vulnerability affecting CPython. The email module didn’t properly quote newlines for email headers when

Description Dell InsightIQ, Verion 5.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker

Description A vulnerability was found in SourceCodester Tracking Monitoring Management System 1.0. It has been classified as critical. This affects

Description A vulnerability was found in Point B Ltd Getscreen Agent 2.19.6 on Windows. It has been declared as critical.

Description ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-600 up to 2.18. It has been rated

Description An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the getCacheFileName function in

Description A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially

Description OS command injection vulnerability exists in ELECOM wireless LAN routers. A specially crafted request may be sent to the

Description slpd-lite is a unicast SLP UDP server. Any OpenBMC system that includes the slpd-lite package is impacted. Installing this

Description Stack-based buffer overflow vulnerability in Tenda AC18 V15.03.3.10_EN allows a remote attacker to execute arbitrary code via the ssid

Description FOG is a cloning/imaging/rescue suite/inventory management system. An improperly restricted file upload feature allows authenticated users to execute arbitrary

Description Remote Code Execution in Cato Windows SDP client via crafted URLs. This issue affects Windows SDP Client before 5.10.34.

Description The Weave server API allows remote users to fetch files from a specific directory, but due to a lack

Description XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Any user

Description A “CWE-732: Incorrect Permission Assignment for Critical Resource” in the ThermoscanIP installation folder allows a local attacker to perform

Description A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224. It has been classified as critical. This affects an unknown part

Description A vulnerability classified as critical was found in Xinhu RockOA 2.6.2. This vulnerability affects the function dataAction of the

Description A vulnerability classified as critical has been found in IObit DualSafe Password Manager 1.4.0.3. This affects an unknown part

Description Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit

Description Hosted services do not verify the sender of an email against authenticated users, allowing an attacker to spoof the

Description Xibo is a content management system (CMS). An SQL injection vulnerability was discovered in the API routes inside the

Description A vulnerability was found in SourceCodester Establishment Billing Management System 1.0 and classified as critical. This issue affects some

Description Web Authentication vulnerability in Apache SeaTunnel. Since the jwt key is hardcoded in the application, an attacker can forge