Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... Result(s) : 267762

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2024-10-31 CVE-2024-39719 cve An issue was discovered in Ollama through 0.3.14. File existence disclosure can occur via api/create. When calling the CreateModel route with a path parameter that does not exis...
N/A 2024-10-31 CVE-2024-39720 cve An issue was discovered in Ollama before 0.1.46. An attacker can use two HTTP requests to upload a malformed GGUF file containing just 4 bytes starting with the GGUF custom magi...
N/A 2024-10-31 CVE-2024-39721 cve An issue was discovered in Ollama before 0.1.34. The CreateModelHandler function uses os.Open to read a file until completion. The req.Path parameter is user-controlled and can ...
N/A 2024-10-31 CVE-2024-39722 cve An issue was discovered in Ollama before 0.1.46. It exposes which files exist on the server on which it is deployed via path traversal in the api/push route.
N/A 2024-10-31 CVE-2024-48359 cve Qualitor v8.24 was discovered to contain a remote code execution (RCE) vulnerability via the gridValoresPopHidden parameter.
N/A 2024-10-31 CVE-2024-48360 cve Qualitor v8.24 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /request/viewValidacao.php.
N/A 2024-10-31 CVE-2024-10594 cve A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function docHistory of the file /com/esafenet/servlet/fileManagement/FileDirecto...
N/A 2024-10-31 CVE-2024-10595 cve A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. Affected by this vulnerability is the function delFile/delDifferCourseList of the file /com/esafen...
N/A 2024-10-31 CVE-2024-10596 cve A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. Affected by this issue is the function delEntryptPolicySort of the file /com/esafenet/servlet/system/...
N/A 2024-10-31 CVE-2024-10597 cve A vulnerability classified as critical has been found in ESAFENET CDG 5. This affects the function delPolicyAction of the file /com/esafenet/servlet/system/PolicyActionService.j...
N/A 2024-10-31 CVE-2024-50354 cve gnark is a fast zk-SNARK library that offers a high-level API to design circuits. In gnark 0.11.0 and earlier, deserialization of Groth16 verification keys allocate excessive me...
N/A 2024-10-31 CVE-2024-51255 cve DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the ruequest_certificate function.
N/A 2024-10-31 CVE-2024-51260 cve DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the acme_process function.
N/A 2024-10-31 CVE-2024-8185 cve Vault Community and Vault Enterprise (“Vault”) clusters using Vault’s Integrated Storage backend are vulnerable to a denial-of-service (DoS) attack through memory exhaustion thr...
N/A 2024-10-31 CVE-2024-51430 cve Cross Site Scripting vulnerability in online diagnostic lab management system using php v.1.0 allows a remote attacker to execute arbitrary code via the Test Name parameter on t...
N/A 2024-10-31 CVE-2024-51478 cve YesWiki is a wiki system written in PHP. Prior to 4.4.5, the use of a weak cryptographic algorithm and a hard-coded salt to hash the password reset key allows it to be recovered...
N/A 2024-10-31 CVE-2024-51481 cve Nix is a package manager for Linux and other Unix systems. On macOS, built-in builders (such as `builtin:fetchurl`, exposed to users with `import `) were not executed in the mac...
N/A 2024-10-31 CVE-2024-7883 cve When using Arm Cortex-M Security Extensions (CMSE), Secure stack contents can be leaked to Non-secure state via floating-point registers when a Secure to Non-secure function c...
N/A 2024-10-31 CVE-2024-50347 cve Laravel Reverb provides a real-time WebSocket communication backend for Laravel applications. Prior to 1.4.0, there is an issue where verification signatures for requests sent t...
N/A 2024-10-31 CVE-2024-50356 cve Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service (SaaS). The password could be reset by anyone who...
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... Result(s) : 267762