Free Trial

CVE-2024-39069 : IFOOD ORDER MANAGER 3.35.5 GESTOR DE PEDDIOS.EXE UNCONTROLLED SEARCH PATH

Description

An issue in ifood Order Manager v3.35.5 ‘Gestor de Peddios.exe’ allows attackers to execute arbitrary code via a DLL hijacking attack.

References

https://youtu.be/oMIobV2M0T8

https://github.com/AungSoePaing/CVE-2024-39069

For More Information

CVERecord

Common Vulnerabilityies and Exposures

CVE-2024-39069 : IFOOD ORDER MANAGER 3.35.5 GESTOR DE PEDDIOS.EXE UNCONTROLLED SEARCH PATH
CVE-2024-39069 : IFOOD ORDER MANAGER 3.35.5 GESTOR DE PEDDIOS.EXE UNCONTROLLED SEARCH PATH

Contact us to get started

CVE-2024-9473 : PALO ALTO GLOBALPROTECT APP UP TO 5.1/6.1/6.2.4/6.3 ON WINDOWS REPAIR UNNECESSARY PRIVILEGES

CVE-2024-9473 : PALO ALTO GLOBALPROTECT APP UP TO 5.1/6.1/6.2.4/6.3 ON WINDOWS REPAIR UNNECESSARY PRIVILEGES

Description A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows

Learn more
CVE-2024-9463 : PALO ALTO EXPEDITION UP TO 1.2.95 DEVICE CONFIGURATION OS COMMAND INJECTION

CVE-2024-9463 : PALO ALTO EXPEDITION UP TO 1.2.95 DEVICE CONFIGURATION OS COMMAND INJECTION

Description An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to run arbitrary OS commands

Learn more
CVE-2024-47763 : BYTECODEALLIANCE WASMTIME UP TO 21.0.1/22.0.0/23.0.2/24.0.0/25.0.1 CONTROL FLOW

CVE-2024-47763 : BYTECODEALLIANCE WASMTIME UP TO 21.0.1/22.0.0/23.0.2/24.0.0/25.0.1 CONTROL FLOW

Description Wasmtime is an open source runtime for WebAssembly. Wasmtime’s implementation of WebAssembly tail calls combined with stack traces can

Learn more